I'm starting college in the fall and will be living in the dorms on campus. I want to have a "private network" setup within the university's network in my dorm room so my and my roommate's phones and iPads can still find my Apple TV, file sharing and network drives are still possible, and I can easily set up my network printer. Obviously, I don't want to lose Internet connectivity. Can I use NAT to accomplish this without losing Internet connection through the university?
how the sysops will hate me if they find me, I know this. It's not for malicious use, only for ease of use of my devices.
This may be totally off base, that's why I'm asking if this will work before I try it. I have an old WRT54G I would like to use if its capable, if not I'll buy a new one but I'm trying to avoid that. Here's what I'm thinking:
My router plugged into the University's Ethernet port in my room (for this setup do I use a LAN port or the WAN port on the router?) DHCP disabled, all devices static IP On the "Advanced Routing" tab: "Router" mode, not "gateway" mode What should my destination LAN ip be? Gateway? LAN & Wireless or WAN?
Switch connected to the router
Devices connected to the switch or connected wirelessly Should my gateway and DNS on each device be the host address assigned to my router?
I would replace an old Levelone Router with a Linksys E2500.I have 3 different routed private networks (e.g. 192.168.1.0/24 , 192.168.101.0/24 and 10.0.0.0/24) How can I forward different ports to this 3 different private networks with an E2500.Under "Games&Applications" in the" Portforwarding" menu the first 3 octets of the "to IP-address" are fix and corresponds ever with the LAN ip address of th E2500.
I would replace an old Levelone Router with a Linksys E2500.I have 3 different routed private networks (e.g. 192.168.1.0/24 , 192.168.101.0/24 and 10.0. 0.0/24)How can I forward different ports to this 3 different private networks with an E2500.In the "Games&Applications" Menu are the first 3 octets of the "to IP-address" are fix and corresponds with the LAN ip address.
I have a relatively simple question. I would like to create a private network within a larger network, the private network having several clients. I would ideally like the router to appear as the only device on the larger network and all data to be sorted by the router to the clients in the private network.
Will the Netgear FVS318G be able to do that? It seems to have the necessary NAT options. I'm hoping to use this since it's low profile. Many to one NAT should accomplish this, correct? The larger network should only be able to see the one device and not the clients behind it on the private network?
Current topology in network is such: web servers with content needing to be load balanced are in vlan 35 and these servers are directly connected to Core switch (two 6509 VSS) via 20 Gb EtherChannel. Vlan 35 also spans some other switches with other servers residing in this vlan. Additionally, there are dozens of another vlans (including external users) that need to communicate with web servers. IP addresses of these two web servers are: 192.168.35.1/24 and 192.168.35.2/24 accordingly with default gateway 192.168.35.254/24 (SVI on Core switch). Currently these ip addresses are used by management and other purposes and need to be reachable for same purposes after configuring load balancing with ACEs - it is needed to have direct access to servers behind ACE. How I can do that using ACE in routed mode?
I would like to do the following architecture with the same C3750 : network X,Y,Z connected to 3750 in VRF D the 3750 uses a routed interface on subnet E for the default route in VRF D on this routed interface a BYPASS EQUIPMENT the other BYPASS EQUIPMENT interface is connected also to another routed interface on subnet E "also" this routed interface is in another VRF C with other network A and B.do you know if it will work because of 2 routed interfaces on the same IP subnet or is there a way to do that ? the only goal for me is to catch traffic from network X,Y,Z on SYN and ACK.
We are currently designing a complete Layer 3 to the edge solution for our customers. The network design is a combination of a collapsed core (Core to access) as well as a three layer model (Core/Distro/Access) for connectivity to the Data Centre, Internet and Wireless Blocks.
The core of the network contains two 6509E switches interconnected on a Layer 3 Port channel (no VSS). Access Layer switches (3750 Stacks) connect to the core switches over p2p routed links (Collapsed core part of the design). Distribution layer switches provide connectivity to the Data centre, Internet and Wireless Blocks.(three layer model.
All IP addressing is being planned for assignment from the private RFC 1918 address block(10.0.0.0/8) for both Infrastructure and Access layer VLANs for users.
and this router will connect to 18 access point.and each access point need 30 usable host...how to design this netwotk, what subnet should i use...there is only 1 router, so just have only 1 default gateway,it is if the network have too many host, the speed will slow down, because they need wait others host to broadcast?
I'm experimenting/attempting to use a laptop as a network tap between my (DSL) modem and a wrt54gs by creating a bridge with two NICs in the laptop. My problem is I can't seem to get connectivity on the user end of the router. I can't ping the bridge from an end computer...
DHCP is disabled in the router, but even when manually configuring the IP address on an end computer and using the bridge as a default gateway I can't ping out.
Am I completely misunderstanding the purpose of a NIC bridge?
I have been involved in the Networking of a museum with a set of "Show" computers which display video, and for this reason cannot have anti virus installed becuase of the performace hit, and also the risk of pop-ups on the videos. They do however need to be connected to the internet as some are interactive and allow people to send simple emails, and they all need to allow remote support when things go wrong.It seems the networking was not thought out very well initially, and there is a single wireless router which serves the staff and public on a secured wireless network, but also serves the "Show" machines via a wired connection from one of its ports, which then connects to a master switch which serves the show machines.Now the wired and wireless is on the same network, and everything shares the same IP subnet (192.168.1.xxx), and this is not a good situation in terms of the securuty of the show machines on the wired network. So I need to work out a way to totally separate the wireless network (which will be very prone to people opening viruses in their emails etc), from the wired network (which will be the show machines which wont be touched by anyone).
I want to achieve this in the simplest and easiest way, and have been reading about the possibility of setting up a second wired router behind the current wireless one, with a different subnet IP address, to which the "Show" machines could be connected. The WAN port on this second router would connect to a LAN port on the wireless router, and thus the show machines could get their internet, but separated from the dangerous wireless network.Does this sound like a sensible start? Will the fact that the wired router (and show machines) are on a completely different subnet to the wireless router (and wireless devices), mean that the wired network will be protected? Or do I need to do more? And is this likely to work?
I'm working on a new network design for my company. We're expanding and opening some more offices and satalite sites. We're a UK based company but opening some US sites.We have a main UK office (Office A on the diagram) a call centre (Office B) and then two buildings on another site (Office C). The USA offices will be very small and only require a couple of computers, hence the small IP allocation. I have marked the IP addresses of the links on the diagram, I intend to use 3560 switches for all the switches marked and all links will be layer 3 to route multiple VLANs from each site to each site (where permitted). question is this: How do I achieve this in the switches? I'm thinking that OSPF is the way forward, is this right? I want to do as little configuration on the switches as possible to allow for dynamic updates of the network (i.e. I don't want to add static routes for everything).
I have gotten the assignment of constructing a fictional network for my school.. and i cannot quite agree with myself upon which equipment i should choose.. its supposed to be all cisco. i need to supply 5000 users all in all, but only 300 on this site. i need to know which connections would be the most reasonable to use and of course which routers "if any" and switches i need.. (+ additional modules if needed) i have tried to make a visio representation, but i just think something is way off.
I have a new project coming up that will require more IPs added to an already quite full class C network. My other issue stems from foolishly putting all hosts in the crowded C network onto the management VLAN. In turn, I have to make each port a trunk.Moving forward I'm wondering what's best for design.or if I should just attempt to change the subnet mask across the board.?
I am in the process of planning our new network. Our business is changing from hosting its own data centre, to moving it to a professional facility. We have 120 users, over 100 servers (physical and virtual) and three sites (main premise, data centre, dr site). The new network will connect all three. Our new WAN links are almost ordered. We will be making use of a managed MPLS IP VPN, with a 100M access rate at each site. I am currently focusing on the desing of the network at the main business premise. We have a significant investment in Cisco 2960 & 3750 switches and Fortinet firewall appliances. I plan to re-use these in the design.
Our current LAN is very flat and I want to segment the network. My plan is to create a number of VLANs, enable the Inter VLAN routing on the 3750 and then attach the 3750 to the Fortinet appliance which will provide stateful firewalling and traffic policin based on the VLAN (subnet) addresses. It is important that the traffic be routed as quickly as possible from this site to our prod and dr data centres.The 2960's act as the access layer, the 3750 as the distribution layer. The 2960's will connect via port channels (layer 2) to the 3750's and the VLAN interfaces will be configured on the 3750.
I was then planning on creating a VLAN on the 3750 to connect to the Fortigate appliance with a /29 address to limit the addresses used whilst also providing some flexibility for any future design changes.I want to implement a little security between the VLANs on the 3750 switches. I have a question about this coming up.I then plan to use the Fortigate appliance to do basic traffic policing based on source/destination addresses.
The WAN routers will connect to the Fortinet appliance on a Gigabit copper interface. The WAN routers will run HSRP between themselves and only one router will be active at any one time. The failover will be managed by the Fortigate and Cisco routers.I plan to define those addresses hosted at the other data centres and associate them with the interface associated with the WAN.I will then define the routing on the firewall for the two other data centres through summary routes for each of the sites. We will run static routing from the Cisco 3750 to the Fortigate and Fortigate to WAN router. We have no other networks/sites and won't have any others in the future.
Our ISP has set up a Cisco 2431-16fxs IAD (dual WAN) in one of our locations. It is used to connect the devices (PCs and SIP phones) on our LAN to internet (via 1st WAN port) and ISP's MPLS-based voip network (via 2nd WAN port).
We have 2 LAN subnets - the first subnet (PCs) requires internet access only, so it goes out via the 1st WAN port. The 2nd subnet (SIP phones) is connected the MPLS network (via 2nd WAN port).
We would like to have the SIP phones (that connects to MPLS-based network 192.168.1.x) to be able to access the internet. Is it possible to configure the IAD so that the phones are routed based on destination network; i.e. anything to 192.168.1.x via 2nd WAN port, anything else to the internet via the 1st WAN port?
I'm trying to set up a network for a friends small office so we can share files between each of the computers.i have tried to do it through the workgroup but with no luck as some can see the other machines and some cant?
Thompson wireless Router laptop with Windows 7 laptop with Windows Vista laptop with Windows XP SP2 Mac
I have set the network discovery to on in W7 & Vista and and ran the network wizard in XP At the moment the vista and W7 machine can see each other but i get and error saying cannot access //(computer name)with the W7 and XP machines i can send a file when i type in the ip address (//192.168.1.?) into the W7 search bar but the XP computer is not shown in the network folder?
I've been tasked with designing a network consisting of 3 separate broadcast domains with each one representing a separate business accross 3 separate floors. None of the companies should be able to communicate with each other.I've been told that the design should only represent the first 3 layers of the OSI model so I'm only looking at Cabling, Switching and Routing.
I don't expect you all to tell me exactly how I should do this, however I just need a starting point. My main issue is with routing. I'm aware that each port on a router represents a broadcast domain so if I use one router, 3 broadcast domains, does that means that none of the domains will be able to communicate with each other? Should I use more than one router or can i get away with one? Also just so you are aware I've been told not to use VLans and each broadcast domain must have its own ip address schema.
The following diagram is showing what I "Plan" on doing or "Hope" I can do. This is the most complicated deployment I have taken on in my profession, and Honestly it is very exciting, but had some questions.
1. The network between the ASA's and Routers, is that suppose to be a Private network or Public Network? I have to assume Public because I want my ASA's to take care of the NAT.
2. ASA's are runing single context Active/Standby so what way will the ASA push out going traffic?
3. The routers need to know about each other in a BGP configuration, correct? We accomplish this using iBGP so will that traffic need to be allowed through my firewall to allow the routers to share that information, or should these routers be talking to each other outside the firewalls?
Is this design possible? I am sure there are limitations as always, just trying to wrap my head around the flow of traffic and where to start.
Additional Details/Requirements -
BGP routers are 2921's that I have control of. Both routers have 4 port GigEtherswitches in them.
ASA's are Active/Passive and cannot be Active/Active due the limitations of the Active/Active Design (VPN limitations)
Both ISP's must be used for outbound traffic, I would like to be able to load balance, but can send some traffic one way and the rest of the traffic the other way based on Routes.
ISP's are not Symentrical, one is 50mbps and the other is 250mbps.
All NAT should take place at the ASA's
The routers that have gig etherswitches, can they run HSRP?
Should I be putting Layer 3 switches between the routers and the ASA's instead?
Where should I run my iBGP communication for the routers?
So i'm new to this sort of thing i am building up 2 gaming pc Windows 7 so while i have both for a few days i would like to network them so that when i want to play a car racing game via lan the other pc will detect itone gaming pc is mind the other my fren so until i deliver it to him i have it for a few days so i wanted some practice in thisso i have a WIF arris modem with 4 Ethernet ports so both sys will be connecting through cablesi would like a step by step guide as to how to go about doing this creating domains et
I am having a problem in which when ever I check "Computer" later on in the day, one of the network drives is duplicating itself over and over using a different drive letter each time. By the end of the day if untouched I can have approx 20 of them!To give you more information about the scenario, the computer is on Windows 7 pro, it is on a domain in which the server is 2008 r2, there are 2 network drives in total (only one is duplicating), the only 2 changes I recall that may have caused it is box.net is running on the server syncing all content on the networks drives and a new printer has been added on the network.
I'm looking for feedback and constructive criticism on our network redesign project for our company.We are currently on a 192.168.1.x/24 and running out of addresses. We are looking to move to the following design and implement VLANs as well for segregation and security. We are probably going to use a few SG300s for switches. [code]
One of our clients is replacing some of their aging network components with 4 Cisco 2960S switches. Unfortunately in this case, my skills of switch configuration are greater than my skills of network design. I have a really crude network diagram of their basic network layout (4 servers, 4 switches, and a number of endpoints).
How would you experts design the physical connections in such a way as to facilitate some redundancy?
I have been recently asked to design a network. What I have for equipment is four 2960G's and one 1941 router. One switch is a root switch and the other three will have end devices on them.I have decided on three V lans to go with: VLAN20 Data, VLAN30 ISCSI, and VLAN99 Management each with seperate trunk links and redundancy (see picture below).
I have a seperate trunks for each V lan using the switch port trunk allowed. With exception to the Data V lan.My design has the Data V lan as the native because it is going to be receiving untagged traffic from the external network. I have set up inter v lan routing on the 1941 via sub-interfaces to allow them to talk to each other (or because of allowed they cannot?). I have one port coming from my router to my switch via Ethernet cable which is my bridge out. I have my external port doing a NAT translation for my inside addresses and a Default route set up ip route 0.0.0.0 0.0.0.0 gig0/0. I am using rapid- PVST to prevent loops and provide my zero downtime convergence when a link goes down. As it stands right now I cannot talk out of my network or inside of my network.
You can see it is highly redundant and I do not want to change it. This network is going to be deployed but there will never be anybody physically there to manage it which is why I made it as redundant as humanly possible.
Alrighty, a little misdirected here. been reading docs for a little while and experimenting around maybe someone can point me in the right direction, How to you create a Guest Network in IOS Zone Firewall. For some reason Cisco, while using the term DMZ, applies differently on their routers than it does on their ASA's. I know how to do this on ASA's all day long however on the router it is a little different story.
i have been wanting to do this LAN sharing thingy for a while now.so here's the deal.i wanna do is setup our PC's so we could create a network of our own and share files just like in LAN but not over the internet.its kinda like we would on a Homegroup in win7.also have a few more PC's on different ISP's.can they be added to the network too?
I'm having trouble setting up a wireless internet connection for my computers, I connected the patch cable from my modem to a wireless router, then connected to that network with a usb for my computer.I was able to connect to the network, but couldn't seem to actually get into the internet. Is there any solutions to this?
When doing ipconfig /all, the message I get is:
Windows IP Configuration Host Name . . . . . . . . . . . . : Victors Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No
I just got done running CAT 6 wire's into different rooms and placing jacks on the wall which all works correcting going into the patch panel. The problem I am having is that the Access Points on the ceiling I decided to make it a little easier and use regular network cable and cut one end off and place it into the patch panel the same way as all the jacks. The AP's are POE and they are just not getting on the network. Do I need to do something different for this cable?The way I punched all the wall jacks and all the cables to the patch panel is by using section B on the jack so because of me cutting a cable and leaving one end on, should I use A or is there something else I should do?
I was in a pub the other day. When I tried to use their wireless I was directed to a webpage to enter the password.I am a web designer and want to make a funky login page, not for a user ID. Just to enter the password to my wireless.How do I do this? Im not aiming to make my system more secure.
I am having trouble creating a network bridge between my PC and Blu Ray player via LAN connection. I have done it before, but always run in to problems. I took my computer on vacation and messed up the existing connection and settings. Last time I successfully created the connection, I stumbled upon the answer, but can't remember how I fixed it. I should say that I can create the bridge, but once I do, the wireless internet connection no longer works, and my blu ray player can't connect to the internet either. I have forced compatibility mode on the wireless network via DOS, but no luck. I did the same on the LAN connection just for the heck of it. Still no luck.