1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

ADSL2MUE with WRT54GL in static mode - implications?

Discussion in 'Networking Issues' started by trex65, Jul 31, 2009.

  1. trex65

    trex65 Addicted to LI Member

    My current modem/wifi router unit failed so I had to pull out of the shack my old units which I never had working together before. As I use PPPoA for connecting to my ISP I have them now working in the following way:

    ADSL2MUE with Routertech 2.8
    DNS as for ISP
    LAN IP
    DHCP disabled
    NAT, Firewall enabled

    WRT54GL with Tomato 1.25
    Static Mode
    WAN IP
    LAN IP
    DHCP enabled

    Other solutions I have seen are ADSL2MUE in bridge mode and all managed by the WRT54GL (limiting to PPPoE), or for PPPoA using the ADSL2MUE in half-bridge mode (which I don not know how to do as it is not an option in the Routertech setup menu...)

    As I have only a limited knowledge of networking I would like to know what the implications are of this setup. Are there any security or other issues here that I should consider?

    Thanks for any input.
  2. mstombs

    mstombs Network Guru Member

    You are running in "double nat", it does work but double the chance of issues with lots of connections. You should also set the modem to put the Router WAN address as dmz so you can use the incoming port-forwards etc in the router.

    You can only use PPPOE and full bridge mode if your ISP supports it.

    Half-bridge is available in RouterTech firmware via a script that works outside the web GUI. See the documentation for pppHB.sh provided with the firmware - works best when you are using a 3rd part firmware in the router and can add a small firewall script and completely disable nat in the modem.
  3. trex65

    trex65 Addicted to LI Member

    I'll have a look at the documentation you mentioned. I don't have any knowledge of scripts so that makes me feel somewhat uncomfortable.

    As to placing the router WAN address as dmz, doesn't that exclude the firewall feature of the router and make me rely entirely on the software firewalls running on each PC?
  4. mstombs

    mstombs Network Guru Member

    I do not recommend bypassing the firewall on the router - just the modem - otherwise upnp on the router for example will not work in a "double nat" mode. You probably have to name the router WAN IP as a static LAN Client in the modem then assign the dmz to it.

Share This Page