2 Networks, 2 Routers, 1 ADSL connection, No Clue.

Discussion in 'Networking Issues' started by ScaryFast, May 2, 2006.

    Hello all. I'm attempting to create 2 separate networks using 2 Linksys WRT54G routers, both using DD-WRT v23, and having a heck of a time with it. Let me explain why I want to do this.

    I want to set up one router as a hot-spot to provide unsecured wi-fi to anyone that pulls up and wants to use it at my mothers campground. Wireless and wired access to the Internet is all this router needs to be capable of providing.

    The second router on the other hand needs to provide wireless and wired access to the Internet, as well as file and printer sharing to only those on this particular network.

    If I lump the campers together with my mother and brother on 1 unsecured network I run into a few little issues. #1, I'd like my moms wifi to be secure since she's the one who lives there and will always have a laptop sitting around. #2 right now any campers can log into the unsecured wifi and attempt to browse file shares. While they can't actually access shared folders due to permissions, they can see the share names, and that's more than I'd like them to be able to see.

    It wouldn't be too big a deal except that I have a 17 year old brother there and I can't spend all my time keeping tabs on what sort of folders he's sharing so he can watch stuff on the laptop or htpc. It would be much better if I could just separate them all into 2 networks that share an Internet connection.

    Now, how do I go about doing this? I've been playing around with very little luck. the best I can get is a connection that works for about 5 seconds before dropping on the second router connected via WAN port to the main routers LAN port. The internet on the main router however is as speedy as ever with near instant reaction times.

    something is amiss, and I don't have a clue what it is. Can anyone maybe direct me to a guide or write up some quick instructions on the steps I need to take to get 2 separate networks to run through the same ADSL modem? If I can get the wired portion up and running the wireless part will be simple as pie so you can pretty much pretend wi-fi isn't even involved at this point. I'd really appreciate it and perhaps some other people stuck in my shoes might find some help as well.

    Thanks a lot guys.
    As per my post over at the hardforum, I've made a bit of progress but it's still not quite what I had in mind, but what can you do?

    Right now I have Router 2 connected via LAN port to a LAN port on Router 1. Router 2 is using AP mode with AP Isolation enabled.

    When my laptop connects to the unsecured WIFI of Router 2 and I attempt to browse networked computer and shares, I can see "My Network Places" but nothing contained within. No "Entire Network" no "Microsoft Windows Network" and no "Workgroup". I did see old cached shares from before and I could access them, which opened up access to all the things I mentioned above in quotes, but once I deleted the cached shares in windows explorer switched to my documents, and then back to "My Network Places" I couldn't see anything again. No amount of refreshing and clicking would show the contents. Sweet.

    Only problem is that if someone just enters \\ in the windows explorer address bar they are brought right to the shares on that computer. Since I have disabled simple file sharing and have permissions set for the shares this only lets them see the share names, but it's still something I'd rather get rid of completely, which is why I thought I might be able to set up 2 networks, 1 within the other, to keep them apart.

    Tonight I am going to focus on getting the AP isolation set up at the location along with WDS on a 3rd WRT54G to expand the unsecured wifi on router 2, but I'd still be interested in finding a better solution later. Oh yeah. AP isolation does nothing for anyone connected to Router 2 or Router 3 via a network cable. This is to be expected of course, since it's AP isolation, not LAN isolation, or something like that.
    Do you have multiple IP's from your ISP? I live in Denmark, and standard is two IP's per connection.. If so, the easiest thing would just be to put a switch after your broadband modem and then connect the two routers seperatly. Then separate the two networks entirely, eg. 192.168.1.x/24 and 192.168.2.x/24, so there is no chance they can communicate internally (what you call LAN isolation). You can also have one of the routers configured for WDS to expand, no problem, as long as it's the same IP range on both of them.

    If your ISP doesn't support multiple IP's, maybe the third router is the solution. It's not as easy as the solution described above, but certainly possible. :)
    Configure router1. Set up its dhcp server to give out "one" ip address.

    Next, run straightthru CAT5 from a lan port on router1 to the "WAN" port of router2. Configure router2 with a "different" LAN ip address from router1 (if router1 is, make router2 Router2 will pull the ip address from router1's dhcp server as it's WAN ip.

    Leaving the firewall up puts you in a double NAT position. Take your time and decide what you want to do. I would suggest a firewall on the laptop you don't want campers having access to in order to save headaches of trying to secure your shares "one by one." :)

    You should now have two routable subnets. It doesn't take too long to set this up.

