Routers & dual zones
-
I have half a dozen or so machines here and everything, including all the cat5 in the house and the wireless router I use for the laptop, is plugged into a couple of 24 port hubs. Everything talks to everything. Since it's just me, that's not been a problem. However, the place is about to be flooded on a regular basis with cast & crew for the show, and I'd like to set things up so that there are two paths. One wireless router would have access to the Internet only, and nothing on the LAN. (I have a NAS on the hubs that doesn't care about Windows user/password security so I want the LAN completely blocked off.) That would let visitors get to the Internet without exposing my company & personal data. The other wireless router would stay as it is for my laptop, having full access to the LAN & Internet and I'd be the only one to access that one. I've never delved very deeply into network system administration so I thought you guys might be able to recommend a cheap router / gizmo and a bit of sage advice on configuration.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.modified on Friday, January 21, 2011 10:01 AM
Easy. Get the 2nd wireless router, and give it it's own subnet. So if your LAN is 192.168.1.xxx, make this new router 192.168.2.xxx. Setup a WEP password, and give it to the strangers (make sure your existing wireless router is passworded as well, and with a significantly different password). Plug the new router into your cable modem, supply the router with the DNS server info, and Bob's your uncle.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997 -
Easy. Get the 2nd wireless router, and give it it's own subnet. So if your LAN is 192.168.1.xxx, make this new router 192.168.2.xxx. Setup a WEP password, and give it to the strangers (make sure your existing wireless router is passworded as well, and with a significantly different password). Plug the new router into your cable modem, supply the router with the DNS server info, and Bob's your uncle.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997 -
John Simmons / outlaw programmer wrote:
, and Bob's your uncle
I must remember this one as conclusion of my business presentations :-D
Or there is the more refined version:
"and Robert's your mother's brother"
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.” I wouldn't let CG touch my Abacus!
-
Easy. Get the 2nd wireless router, and give it it's own subnet. So if your LAN is 192.168.1.xxx, make this new router 192.168.2.xxx. Setup a WEP password, and give it to the strangers (make sure your existing wireless router is passworded as well, and with a significantly different password). Plug the new router into your cable modem, supply the router with the DNS server info, and Bob's your uncle.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997John Simmons / outlaw programmer wrote:
Plug the new router into your cable modem
Okay, so currently the modem goes to wireless router 1 (which also serves as the main entry point firewall) and from there to the hubs. In order to get router 2 into the mix, if I just plug it into the hub will it be able to hop across router 1, talk to the modem and get out to the web? Said modem has only one cat 5 output, so I'm trying to understand how to connect the hip bone to the thigh bone here.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help. -
John Simmons / outlaw programmer wrote:
Plug the new router into your cable modem
Okay, so currently the modem goes to wireless router 1 (which also serves as the main entry point firewall) and from there to the hubs. In order to get router 2 into the mix, if I just plug it into the hub will it be able to hop across router 1, talk to the modem and get out to the web? Said modem has only one cat 5 output, so I'm trying to understand how to connect the hip bone to the thigh bone here.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.So, you only have one cat5 OUT? I've never seen that on a standard consumer cable modem. Most of them have a coax/phone/cat5 IN, and provides four CAT5 for hooking up machines. Is this NOT what you have? Can you provide a manufacturer/model number?
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997 -
So, you only have one cat5 OUT? I've never seen that on a standard consumer cable modem. Most of them have a coax/phone/cat5 IN, and provides four CAT5 for hooking up machines. Is this NOT what you have? Can you provide a manufacturer/model number?
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997Actually, it's not a cable modem but rather a DSL modem and yes, it has only one cat 5 output along with a USB out. SpeedStream 5200. Sounds like I may need to stick a 4 port hub hub between the modem and the two wireless routers. Assuming that's the case, if the subnet keeps traffic off my LAN, then it should be Modem -> small hub -> router 1 -> LAN Modem -> small hub -> router 2 (visitors) Correct?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.modified on Thursday, January 20, 2011 3:10 PM
-
So, you only have one cat5 OUT? I've never seen that on a standard consumer cable modem. Most of them have a coax/phone/cat5 IN, and provides four CAT5 for hooking up machines. Is this NOT what you have? Can you provide a manufacturer/model number?
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997 -
Actually, it's not a cable modem but rather a DSL modem and yes, it has only one cat 5 output along with a USB out. SpeedStream 5200. Sounds like I may need to stick a 4 port hub hub between the modem and the two wireless routers. Assuming that's the case, if the subnet keeps traffic off my LAN, then it should be Modem -> small hub -> router 1 -> LAN Modem -> small hub -> router 2 (visitors) Correct?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.modified on Thursday, January 20, 2011 3:10 PM
Correct (but I'd use a switch versus a hub). However, if you already have a hub, then by all means, that will do.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997 -
Correct (but I'd use a switch versus a hub). However, if you already have a hub, then by all means, that will do.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
"Why don't you tie a kerosene-soaked rag around your ankles so the ants won't climb up and eat your candy ass." - Dale Earnhardt, 1997Might be worth buying one. What's the advantage of a switch over a hub in this scenario?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help. -
Or there is the more refined version:
"and Robert's your mother's brother"
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.” I wouldn't let CG touch my Abacus!
That's way too confusing and in some parts of the country could be construed as a come on.
¡El diablo está en mis pantalones! ¡Mire, mire! SELECT * FROM User WHERE Clue > 0 0 rows returned Save an Orange - Use the VCF! Personal 3D projects Just Say No to Web 2 Point Blow
-
Might be worth buying one. What's the advantage of a switch over a hub in this scenario?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.Christopher Duncan wrote:
What's the advantage of a switch over a hub
Fewer collisions and better throughput. A hub echos every packet received to every port. A switch "learns" what's attached to each port and only forwards incoming packages to the port which leads to the destination. The prices have dropped to the point where there's little difference in cost; in fact, it's a little hard to find an old fashioned hub anymore.
Will Rogers never met me.
-
Might be worth buying one. What's the advantage of a switch over a hub in this scenario?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.A switch has more configuration controls and (I think, not 100% sure) better handling of the multiple inputs/outputs. It might even support more physical connections(?) - something like a hub might only support 4, while a switch will do 16, 24, or something like that?
¡El diablo está en mis pantalones! ¡Mire, mire! SELECT * FROM User WHERE Clue > 0 0 rows returned Save an Orange - Use the VCF! Personal 3D projects Just Say No to Web 2 Point Blow
-
Christopher Duncan wrote:
What's the advantage of a switch over a hub
Fewer collisions and better throughput. A hub echos every packet received to every port. A switch "learns" what's attached to each port and only forwards incoming packages to the port which leads to the destination. The prices have dropped to the point where there's little difference in cost; in fact, it's a little hard to find an old fashioned hub anymore.
Will Rogers never met me.
Given the amount of audio and video flying across the network, not to mention the freakin' incessant software updates from just about everyone, it would probably would be a good idea to replace those 24 port hubs sometime, too.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help. -
A switch has more configuration controls and (I think, not 100% sure) better handling of the multiple inputs/outputs. It might even support more physical connections(?) - something like a hub might only support 4, while a switch will do 16, 24, or something like that?
¡El diablo está en mis pantalones! ¡Mire, mire! SELECT * FROM User WHERE Clue > 0 0 rows returned Save an Orange - Use the VCF! Personal 3D projects Just Say No to Web 2 Point Blow
Given I'm a control freak, the more controls the better. :)
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help. -
That's way too confusing and in some parts of the country could be construed as a come on.
¡El diablo está en mis pantalones! ¡Mire, mire! SELECT * FROM User WHERE Clue > 0 0 rows returned Save an Orange - Use the VCF! Personal 3D projects Just Say No to Web 2 Point Blow
You must be from Bill Clinton country
"If your actions inspire others to dream more, learn more, do more and become more, you are a leader." - John Quincy Adams
-
I have half a dozen or so machines here and everything, including all the cat5 in the house and the wireless router I use for the laptop, is plugged into a couple of 24 port hubs. Everything talks to everything. Since it's just me, that's not been a problem. However, the place is about to be flooded on a regular basis with cast & crew for the show, and I'd like to set things up so that there are two paths. One wireless router would have access to the Internet only, and nothing on the LAN. (I have a NAS on the hubs that doesn't care about Windows user/password security so I want the LAN completely blocked off.) That would let visitors get to the Internet without exposing my company & personal data. The other wireless router would stay as it is for my laptop, having full access to the LAN & Internet and I'd be the only one to access that one. I've never delved very deeply into network system administration so I thought you guys might be able to recommend a cheap router / gizmo and a bit of sage advice on configuration.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.modified on Friday, January 21, 2011 10:01 AM
What is your wireless router and does it support a guest wireless network? Some like the Netgear WNR3500v2 that I have already have a setting for a guest wireless network which when I enable, with different credential than my main wireless network, gives other people access to the internet but not the rest of my LAN.
People are more violently opposed to fur than leather because it's safer to harass rich women than motorcycle gangs
-
John Simmons / outlaw programmer wrote:
Plug the new router into your cable modem
Okay, so currently the modem goes to wireless router 1 (which also serves as the main entry point firewall) and from there to the hubs. In order to get router 2 into the mix, if I just plug it into the hub will it be able to hop across router 1, talk to the modem and get out to the web? Said modem has only one cat 5 output, so I'm trying to understand how to connect the hip bone to the thigh bone here.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.Christopher Duncan wrote:
ohn Simmons / outlaw programmer wrote: Plug the new router into your cable modem
I don't think it is that simple but let me preface this by saying I am in the UK so it may be different here Normally a cable MODEM (as distinct from a cable router) has 1 cat 5 port on the back and this has a real world IP address and you then plug a cable router (may be wireless) into the back of this which then gives 4 ports which are on private IP addresses Unless you have multiple IP addresses (not usually) you cannot use a hub or a switch to plug two routers in to this so the best route would be to replace your original router with one that has the ability to have two separate wireless lan's configured. Over here we have Vigor (also known as draytek) routers that can provide a guest wireless lan which can be configured to be isolated from the normal wireless users and other lan users Mike
-
Might be worth buying one. What's the advantage of a switch over a hub in this scenario?
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.As Roger says, there will be fewer collisions. However, two of the main advantages of switches over hubs are switches can accommodate different network speeds on the same network infrastructure, whereas a hub will bring everyones speed down to the lowest on the network. If internal network security is a concern, a switch will thwart 'sniffing' by anyone on the network whereas the hub will quite gladly forward every packet to every computer and make network sniffing extremely easy which you don't want!
Nobody can get the truth out of me because even I don't know what it is. I keep myself in a constant state of utter confusion. - Col. Flagg
-
What is your wireless router and does it support a guest wireless network? Some like the Netgear WNR3500v2 that I have already have a setting for a guest wireless network which when I enable, with different credential than my main wireless network, gives other people access to the internet but not the rest of my LAN.
People are more violently opposed to fur than leather because it's safer to harass rich women than motorcycle gangs
I recommend any router that supports DD-WRT, a Linux based alternative OpenSource firmware suitable for a great variety of routers which allows for multiple SSID on distinct subnets, i.e. a guest access point for visitors and a more secure SSID for your personal use.
-
I have half a dozen or so machines here and everything, including all the cat5 in the house and the wireless router I use for the laptop, is plugged into a couple of 24 port hubs. Everything talks to everything. Since it's just me, that's not been a problem. However, the place is about to be flooded on a regular basis with cast & crew for the show, and I'd like to set things up so that there are two paths. One wireless router would have access to the Internet only, and nothing on the LAN. (I have a NAS on the hubs that doesn't care about Windows user/password security so I want the LAN completely blocked off.) That would let visitors get to the Internet without exposing my company & personal data. The other wireless router would stay as it is for my laptop, having full access to the LAN & Internet and I'd be the only one to access that one. I've never delved very deeply into network system administration so I thought you guys might be able to recommend a cheap router / gizmo and a bit of sage advice on configuration.
Christopher Duncan
www.PracticalUSA.com
Author of The Career Programmer
Writing apps? Developing sites? Hate marketing? We can help.modified on Friday, January 21, 2011 10:01 AM
Depending on the wireless router hardware that you have you might be able to flash it with dd-wrt or other modded firmeware. This will allow you to use 1 wireless router to do both of the things you are looking to do. There are quite a few pages on the subject, check out these to get started: http://www.dd-wrt.com/wiki/index.php/Multiple_WLANs[^] and http://www.dd-wrt.com/wiki/index.php/Separate_WLANs[^] Separate wired from wireless: http://www.broadbandreports.com/faq/12676[^]
Jeremy Props to the family: New Dawn Engineering