I'm new at this stuff and very stumped. I have one WAP with multiple SSIDs that support VLAN ID (for a private and guest wireless network) and a managed switch that supports tag or port based VLAN ID. How do I set up the switch so that the networks are separate, but can still reach their own routers to get on the Internet? In case details are necessary, the WAP is a Cisco Aironet 1130AG and the switch is a Netgear FS750T2
View 14 Replies
I would like to set up two separate networks from one internet connection(modem), with the goal being to have a public network(Network A) that would have a small server on it, and then having a second secured network(Network B) that would have my personal computers on it. And both networks having connection to the internet. (The idea being that if the server somehow became compromised that my personal computers and their data would be safe)I have done some research and found that many people claim this can be done with just two or three routers, but none of them go into any detail about how to configure the routers. Below are the physical setups of the two options that I have come up with in my research, which if either would you recommend? And how would I configure each of the routers?
--------------
Modem/router 1 (Network A public)
--Internet-in WAN port
--port 1 to WAN of router 2-------------l
--port 2 server
[code]...
We have a two separate businesses in the same building who will both need access to shared resources and the same internet connection. They will need to remain on separate subnets and cannot communicate directly to each other. The current switch is a Cisco ESW-520-48P and we are looking at purchasing an SG-300-20P for the new business moving in. Heres how we envisage setting it up:
ESW-520 will host Company A's network. Workstations, servers etcSG-300 will have two VLANS. VLAN1 will host all Company B's network. Workstations, servers etc. VLAN2 will host the shared resources such as printers. The internet gateway is a UNIX based system with 3 NICS. 2 NICS are taken up by ADSL connections while the other NIC is the LAN, which would connect to VLAN2 on the SG-300. We would like to define which ADSL connection to route through depending on which subnet traffic is originating. The ESW-520 will need access to the shared resources and internet gateway on VLAN2 on the SG-300.
My fiance recently signed up for the Screen-wise Panel for Google research. Basically they monitor your TV usage and your internet usage. As part of the program they installed a Cisco WIFI router. I've got no issue with them logging the sites visited etc but I'm a little worried about them possible collecting private information (banking / work related stuff) that I don't want going out there. According to what I've read what's supposed to happen is they replace your router with the new Cisco router.The "technician" who came in and installed the router was actually a builder and not an IT technician and rather than replace our router he connected the Cisco router into port 4 of our router... I wasn't in at the time.
What I was looking to do is separate Port 4 of my router into a separate VLAN that can access the internet, but not access anything on ports 1-3, or the wireless. However, I want to be able to see everything on port 4 from the other side (in other words I want to see "into" the port 4 VLAN, but don't want them to see out). I also wanted DHCP to assign IP addresses correctly depending on where you were plugged in. In this example the first VLAN (your current router ip address) is going to be on 192.168.1.1, and the second VLAN (the new on we create on port 4) is going to be on 192.168.2.1.This is exactly what I'm looking to do, I could then connect the kids machines / tablets / ipods to the Cisco router and have the main machine and my work laptop on the main router... but I don't have a clue how to do it. </quote> Is this something that I am able to do with the Netgear router I own and is it hard to set up?
I have 2 PCs at home. Lets name one of them as PC 1 which has two onboard LAN Ports. Now, PC1 has to connect to PC 2, just a home network for easy transfer on files and stuff, and it also has to connect to the internet via a network. The problem is both of them use static ip and when I tried configuring PC 1, it allows only one of the connections to remain active. I simply get an error otherwise saying "Multiple Gateways" will cause conflict and I will be stuck with only one connection. After much study I "somehow" connected both. I vaguely remember using the "route" command in cmd to achieve this. But now, I am getting an error when I try to access PC 2. My Internet is working fine.I am not network savvy at all. run both these connections from PC 1. I should add that I can in no way modify/change/or do anything else to my internet network since it is out of my control. I can do anything, however, for my Home Lan with PC 2. I run windows 7. Both the connections are wired, by the way.
View 2 Replies View RelatedI have two subnets at my home and both run through my Cisco router. One is my private LAN with access to the Internet, ie your standard home network. The other is a semi-public network that I share with friends through an encrypted GRE tunnel system(DMVPN) over the Internet. I have a server on that semi-public network and I can access my friend's servers from my server, but not from my main PC on my private network.
Is there a way I can access both networks from only my main pc using two nic's?
how I can setup two separate networks on a Westell 327w modem/router. I know this question has been asked to death and I've utilized the search function, but I still don't know how to make this work. I have a computer that I plan on using for important business and my sibiling has my other computer that he uses for gaming and downloading stuff. His computer is connected wirelessly to the Westell 327w. My computer has no internet access at this point. I would like to have both connected wirelessly to the internet, but keep them completely separate and as secure as possible, as he downloads some questionable things.
View 1 Replies View RelatedI have two separate network with their own internet access as shown below I want to keep all setting of the left network unchanged. I can change the IPs and setting of the right side network.I want to be able to access all devices of the two network from my computer but in the same time the two network work as usual with no problems ( the same when they are sperate).One option is to set the LAN of modem 2 to 192.168.2.2 and connect one of the LAN port to LAN port of the Mkrotik router. Set the WAN of my private home router as
IP: 192.168.2.100
subnet mask: 255.255.255.0
gateway: 192.168.2.2
Home router LAN: 192.168.3.1
Is their another method to connect the two network and keep the same setting for the network on the left side?
I am trying to make 2 COMPLETELY seperate networks with only 1 internet connection. We have routers, switches and all that. But we need to know how to set it all up. there are 2 companies in the same office, each company needs their own network at which they can view eachothers files but in no way view the other networks files.
View 1 Replies View RelatedWe are a small office currently running a regular network (9 wired, 2 wireless) and also using the "guest" feature (7 wireless) on a Linksys E2000. We have a switch to connect our wired equipment to the E2000. If "A" is our regular network, and "B" is our guest network, is it possible to have 2 routers on 1 cable modem and still prevent network "A" from seeing Network "B" and vice versa?? We are looking to do this because we will soon be exceeding the maximum guest users (10) allowed by the E2000. We have another Linksys router in storage, I think it is a WRT54G, that we would use if this is possible.
View 1 Replies View RelatedI want to connect 2 routers like this picture.No need to have it as separate networks.
View 3 Replies View RelatedWith traditional classful subnetting, the same number of host bits is used to designate the subnet ID for all the resulting subnetworks. This type of subnetting always results in a fixed number of subnets and a fixed number of hosts per subnet. For this reason, this is known as fixed-length subnetting. The decision about how many host bits to use for the subnet ID is a big planning decision. There are two considerations when planning subnets: the number of hosts on each network, and the number of individual local networks needed. The table for the subnet possibilities for the 192.168.1.0 network shows how the selection of a number of bits for the subnet ID affects both the number of possible subnets and the number of hosts that can be in each subnet. One thing to keep in mind is that in all IPv4 networks, two host addresses are reserved: the all-0s and the all-1s. An address with all 0s in the host portion of the address is an invalid host address and usually refers to the entire network or subnetwork. An address with all 1s in the host portion is used as the local network broadcast address. When a network is subnetted, each subnet contains an all-0s and an all-1s host address that cannot be used for individual host addresses.
View 2 Replies View RelatedI want to share one broadband connection between network A 192.168.1.xxx and network B 192.168.0.xxx. Network A is SBS 2008 while B is Linux with static IPs.
View 5 Replies View Related1. I currently have a Comcast Business Class Gateway, Cisco 2100 Series WLAN Controller and a Cisco ASA 5505 all connected together to supply LAN and WLAN internet connections on my network.
2. I also have a Card Access Security System on it owns network. It currently does not have internet access.
I would like to put my security system on the internet so that I can support it remotely. To do this, it has to be on a firewalled internet connection.Can I put the two networks on my ASA 5505 and keep them seperate? I don't want to provide a path into the Security System through my current LAN & WLAN. But I do need a frewalled internet connection on my Security System. I am trying to avoid purchasing a seperate firewall.
I have two dir655 routers that are connected. The second router is not setup as a wireless access point, but I am open to that if it will work. The second one is going to serve as a public wifi in a business, with a separate SSID. The first one is going to handle the local business network, with its NAS and printers. How would I prevent the public wifi from accessing the first router?
I have tried the guest wifi partition setting, however it still allows access to the lan devices on the first router. It does partition with the second router properly though, but thats not worth anything to me cause there are no lan devices on the 2nd router.
Would it work right if I turn the 2nd router into a access point, disable the dhcp server, and set it up with the guest wifi partition?
I have a network set up between two buildings. Each building has its own internet connection and DHCP server, building A using an RV180W router and building B using a linksys product. A WDS bridge has been set up between the two buildings using two wireless access points.The goal here is to allow clients in either building to be assigned an IP from their respective DHCP server (and thereby use that building's internet connection), yet still access network resources (eg file storage, printer, etc.) in the other building should the need arise.I have tried to set this up by having the RV180 assign IP's in the range 192.168.0.xxx to its clients in building A, and the linksys to assign IP's in the range 192.168.1.xxx in building B. I have enabled Vlan 1 and Vlan 2 on the RV180 - vlan 1 runs a DHCP server for building A. Vlan 2 runs no DHCP server and is directly connected to the WDS bridge to building B. Inter Vlan routing is enabled on both Vlan 1 and Vlan 2.On the WDS bridge modules, ive assigned both static IP's in the 192.168.1.xxx range (vlan 2 range). I've specified their dns and default gateway as 192.168.1.2 which is the static address for the RV180 in vlan 2.From a PC in vlan 1, I can ping and access the webgui for the WDS bridge modules which are in Vlan 2. However, i cannot ping any other computer in Vlan 2 which is set to accept a dynamic IP from the DHCP server operating in Building B. I assume this is because the WDS modules point to the RV180 as their default gateway and dns server, while the clients that have accepted a dynamic IP from the building B DHCP point to that device as their default gateway and DNS.I am considering trying changing the DNS and default gateway on the building B side of the WDS bridge to the building B values to see if that works, but am concerned i would lose all connectivity to the webgui from building A if i do that.
View 7 Replies View RelatedI'm an architect working in a small office that happens to be home to two seperate businesses, each with their owner network. However, these two networks want to use the same large format printer. I recently purchased the RV180W since the Cisco representative told me i would be able to connect both networks to the router so they can both see the printer without seeing the files on each of the other networks. We simply want to share the same printer.
Network 1:
192.168.4.1
Network 2
192.168.2.1
Large Format Printer
192.168.4.151
Network 1 has the RV180W as it's router with three gigabit switches. Computers and peripherals are connected to the three switches. 1 port open on the last switch.
I want to configure the RV180W to see both 192.168.4.1 and 192.168.2.1
What settings need to be modifed in order to accomplish this? Do I need more equipment? Is it easier to put a wireless card in one of the computers on the 192.168.2.1 network and then set it to see the 192.168.4.1 network?
We have 2 separate networks here, 1 for data (192.168.0.x) and 1 for VOIP phones (192.168.3.x).
I need them to both be connected to different ports on a switch (Cisco SG 300 10 port managed switch) which is then linked to another switch (Cisco Catalyst 2960 48 port switch). Then on this 2960 switch I want the link to be split back into the 2 separate networks. I think that I need to create 2 separate VLANs and assign them to different ports.
Using a Linksys E2000 and Linksys WRT54GL (both flashed to most recent firmware), I am trying to set up Network "A" and Network "B" on one modem. I do not want either A or B to be able to see each other for security purposes. Both are secured networks for the wireless connections and have different SSIDs.
After online research, and the inability to find my exact question answered, this is what I did and I'd like to know if I'm missing anything to keep A and B completely separate. Or, if I've done anything that will cause any problems on my network. [code]
I disabled the ability to change settings using wireless connection on both routers.
I'm setting up two separate 5510's at two seperate locations. The client wants two seperate SSL-VPN's; one for the HQ and one for the COLO location. They have a single domain for which I have added a-records to point to the corrosponding ASA's thusly: [code]
My questions is this: do i need to buy seperate certificates for each ASA/fqdn/IP combo? I'm using godaddy to buy the certs. If I do need to buy seperate certs, that makes the installation easier, but may waste $$. If I only need to buy one cert, how do I set it up so that both combo's are verified?
I have a 4-port Netgear modem/router (DG834), and need to distribute its Internet connection according to the following criteria:
1.There are 11 access points (3 wired, 8 wireless) across 4 floors of a building - all cabling is from a central point, which will connect through a switch.Cat 5e cabling is in place.
2.The wireless points need Power over Ethernet connections
3.The 4 router ports serve 2 PC's and a printer in an office, the fourth being the connection to the switch.
4.There must be network separation so that:
- all points have Internet access
- there are three separate groups - one for the office, one for staff (wired) and one for guests (the wireless points), the purpose being to ensure that no user in one group can access any user's device in the other 2 groups. I'm assuming VLAN is the method for this.
5.Traffic on the network is likely to be fairly low casual use of the wireless ports, the office PC's only being used for Internet access and email no transactional systems, large databases or other resource / network-intensive functions.
1.Both the Netgear FS726TP and GS724TP look as if they will do what I want, using WNAP210 wireless access points. Could I achieve the same outcome with 2 x GS108PE switches? Any other hardware recommendations?
2.Do I need any additional hardware?
3.Are there any other considerations I have not thought of?
I am trying to set up two routers so that I can offer free wireless connectivity via three AP's in three adjoining rooms on a first floor and secured wireless and wired network connectivity in upstairs offices. The setup is like this:
Verizon DSL connectivity..static IP
The gateway modem/router is a Verizon DLink DSL 2750B with three ports connecting to three wired Access Points in three first floor adjoining rooms, and the 4th port connecting to a Cisco E1200 (wireless and ethernet router) located next to the Verizon Dlink. I would like the Verizon DLink to give open wireless connectivity via the access points and also connect to the adjacent E1200 router.
I would like the Cisco E1200 to offer secured wireless and ethernet connectivity to the upstairs offices. (connecterd to the Cisco E1200 is a 24 port Netgear switch.)I have spent considerable time talking with Verizon and Cisco/Linksys but have not been successful in just how to set this up.A former tech actually did have this setup but for what ever reason the settings were reset to factory defaults with no written record as to the necessary settings.
Our VMware guys want to use shared networking infrastructure to create a DMZ on a network.
[ASA (subif;VLAN 4)] <-trunk-> [DMZ Switch] <-trunk-> [LAN Core Switch] <-trunk-> [ESX vSwitch] <-VLAN 4-> [VM]
The DMZ Switch does not participate in VTP with the LAN but will have a VLAN ID created (same VLAN ID used from VM to ASA) No vlan interface will be created for the vlan
Is this a bad idea from a security or otherwise point of view? i.e. Best practices that should be followed here? Should I configure the link between the LAN Core Switch and DMZ switch as access ports so the port on each switch is forced to be on one specific vlan? I was going to use allowed vlans command to limit the vlans that can pass on it and possibly vtp pruning for all vlans.
I am setting up a 1921 with two ethernet WAN ports going to two seperate ADSL ISP's (via bridged modems) and one connecting to the internal LAN. There is a single e-mail / web server behind the router.
I have been reading the following which is exactly what we want to do, but I have questions. Maybe failover would be better because Load Balancing seems a little too quirky without BGP. url...
How do we define public static IP's, the example seems to show DHCP?In order to detect if a line is down, it has to ping an IP address that is specific to the connection - correct? So could I use the gateway for the ISP? The issue I have with this is the gateway might be up, but the Internet down. Next, we need to make sure that when someone visits one of our public IP addresses, the return data is sent through the connection requested. What we don't want is a situation where incoming connections are not working.From experience, load-balancing causes certain websites and SaaS applications to break because requests are coming from two different ISP's. Is this the case with OER? Finally, any links, config or something to advise how a fail over only configuration would work given we have internal servers (PAT/NAT inbound would need to translate properly with the failover IP)? Basically if ISP 1 goes down, I.E. router cannot ping 8.8.4.4 then it switches to ISP 2, until ISP 1 comes back online and switches back? This would need to change the NAT rules for inbound as described.
in my network i got a switch with 4 vlan's configured
-vlan 10
-vlan 20
-vlan 30
-vlan 40
in vlan 40 i have my domain controller for my existing domain.i have read that seperate vlan's can't have contact without a lollipop router ( router on a stick, inter vlan routing)i want that users in vlan 10, vlan 20 and vlan 30 can have access to my domain controller in vlan 40
but they can't have access to each other.
My problem, in a nutshell, is that clients do not get an IP from an external DHCP server when connected to a guest VLAN.
My current setup is:
Native VLAN 1 (192.168.2.x)
2008 DHCP Servers
2504 WLC
[Code].....
The guest WLAN just uses WPA and a PSK and is set to interface vlan101 There rest of the 2504 config is default.
The ports that the WLC and APs are connected to are tagged on the correct VLANs. (is that even necessary for the AP now?)
Ive changed the interface config around a hundred times now with no luck. No matter what a client will not get an IP.
Could this be due to the 2504 and ASA both acting as DHCP relays? Ive tried setting the IP of the DHCP on the dynamic interface to many different things with no luck.
I have a WRVS4400N that broadcasts two different SSIDs. One is a public network and the second is a private network. Right now, both SSIDs are pulling from the same DHCP server, but I would like to separate the public from the private. How can I separate these SSIDs by vlans? I can't seem to get the vlans to route to separate ports.
This is my vlan settings. I have two DHCP servers right now. One is in an isolated network plugged into Port 3 of the WRVS4400N. The other is on the production network, plugged into port 1 of the WRVS4400N. For some reason, whenever I connect to SSID Public, it won't pull an IP from the DHCP on port 1, it only pulls it from the one on port 2.
I know there is three SSIDs here, the Static one is going to be the same network as the EMS one.
i am first time to trying to make Vlans. I managed to do 2 vlans to SA520 to ports 1 and 2. But when i try to separatethem to SG300 with web management it doesnt work. Vlan 1 works fine, i untagged wanted ports and forbid vlan 2 ports.In Vlan 2 there vice versa, is this right way to do? Both Vlans has their own DHCP range as i do them to SA520.
View 2 Replies View RelatedI have a Cisco RV180-K9-NA router. I would like to set up 2 separate VLAN assigned to different ports on the router. I will be using LAN port #1 to communicate with the router. The NIC connecting the PC to the router has multiple IP addresses assigned to it so that I can communicate with the separate VPNs (192.168.1.x for the router; 172.16.10.x for VLAN #1 on port 2; and 182.16.10.x for VLAN #2 on port 3). I also need to be able to have the router provide both IPv4 and IPv6 DHCP services for devices on each subnet.
View 3 Replies View RelatedI'm asked to think of a solution to make in an existing LAN connected by switches (connected to each other) to make another network availible.atm we have a network with 192.168.110.0 and we are short on IP adresses because of a large DHCP pool from wireless clients and a growing network with static IP addresses.So basicly what i want to accomplish is an extra network 192.168.111.0 in the existing LAN and all computers have to be able to communicate to each other and all computers have to be able to connect to the internet using gateway 192.168.110.1 (direct or trough route tables). For future growth an extra LAN 192.168.112.0 with not perse internet access for only VOIP, but that is on the side and is not a priority, because I can set up that network on the same switches easy without having them to be able to connect to the computers and servers in the network. (correct me if I am wrong)
What I found out browsing the internet is that a layer 3 switch may provide the solution, but I can't make out of the technical specs if thats going to work when both LAN's computers will be connected on the same switches.Also I found a lot of solutions with setting up a server with 2 NIC's and setting up routes on that server. But since we have a very large amount of network traffic with large graphical files, having 2 nics to route all that trafic doesn't seem like a desirable solution for my purpose.
I want to setup two WIFI network with one Router at home.
View 2 Replies View RelatedIn my home, I have broadband internet connection, which is Time Warner Cable. I also have an Apple Airport Extreme that shares my internet throughout all of my computers. My current set up runs perfectly but the problem is, I have other devices in my home that require a WEP security key. My Airport Extreme is running on WPA but I don't want to lower it's security to WEP just for those devices. What I'm trying to do is create another separate network which has a WEP security key (Linksys WRT54G). So ultimately, I would like to set up two networks, one is the Airport Extreme and the other Linksys, which both run under the same WAN address provided by Time Warner Cable.
View 11 Replies View RelatedI have an ASA 5505 with Security Bundle license.
I am able to create 2 LAN networks (192.168.9.0 and 172.16.9.0) Vlan1 and Vlan12 respectively. I also setup 2 outside interfaces (outside1 and outside2).
Network 1 (192.168.9.0 - VLAN1) has no issues going out via Outside1, however I can't get Network 2 (172.16.9.0 - VLAN 12) to go thru outside2.
I put in a static route (route outside 172.16.9.0 255.255.255.0 x.x.x.x), the x.x.x.x is the default gateway of my ISP.
