1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is it possible to have more than one DMZ?

Discussion in 'DD-WRT Firmware' started by birdman-c, Oct 31, 2005.

  1. birdman-c

    birdman-c Network Guru Member

    Is this possible? If so... how can I do it...

    I basically want to put 2 WRT54G's behind a main WRT54G (I have two seperate wireless networks on the other connected WRT54G's that I don't want able to see eachother... however, I would like to add both their IP's on the main internet routing WRT54G so that each network can open ports for eMule etc...)
     
  2. 4Access

    4Access Network Guru Member

    One method to accomplish what you want is to run two cables from LAN ports on your main router to the WAN ports on the other two routers. Then config as follows:

    Main Router Config:
    WAN IP: What ever your ISP requires
    LAN IP: 192.168.1.1

    2nd Router Config:
    WAN IP: 192.168.1.2 (Static)
    WAN Subnet: 255.255.255.0
    WAN Gateway: 192.168.1.1
    LAN IP: 192.168.X.1 (where X does NOT = 1)

    3rd Router Config:
    WAN IP: 192.168.1.3 (Static)
    WAN Subnet: 255.255.255.0
    WAN Gateway: 192.168.1.1
    LAN IP: 192.168.X.1 (where X does NOT = 1)


    Now if you've got PC-A behind router 2 & PC-B behind Router 3, and both PC's are running emule at the same time you do the following:

    Configure eMule on PC-A to use port A
    Configure Router1 to forward port A to Router 2 (192.168.1.2)
    Configure Router2 to forward port A to PC-A's IP address

    Configure eMule on PC-B to use port B
    Configure Router1 to forward port B to Router 3 (192.168.1.3)
    Configure Router3 to forward port B to PC-B's IP address

    That will accomplish what you're looking for and believe it or not is actually the easiest method I can think of. (Based on the fact that the other ways I'm thinking of require you to do most of the configuration from the command line.)

    Note however that with the above configuration your PC's will be double-natted which is never recommended and to forward a single port requires configuring 2 routers.


    Like I mentioned I can think of a few other ways to accomplish what you're looking for... So if you don't like the above method the first question is, has your ISP given you more than one public IP address?
     

Share This Page