Isolating part of my network but maintaining internet access

Discussion in 'Networking Issues' started by FoolsRun, Jun 30, 2006.

  1. FoolsRun

    FoolsRun LI Guru Member

    For security reasons, my company needs to isolate part of its network, preferrably as a different subnet from the existing network.

    The existing network is 192.168.1.x
    The new network would be best as 10.x.x.x

    I currently have a BEFSR411 (connected to the internet) which is, in turn, connected to a big 3Com switch which acts mostly as a hub for my existing network.

    The BEFSR411 assigns DHCP addresses to the network. I would like to be able to assign DHCP addresses to my new, isolated network as well.

    I also need the isolated network to have access to the internet, which the BEFSR411 currently handles.

    What kind of hardware would I need to make what I want to do possible?

    I'm open to the idea of replacing any part of what I've outlined above in order to make this work.

    Can I be clearer on any part of my network setup so that I'm easier to help?


  2. FoolsRun

    FoolsRun LI Guru Member

    Is no one willing to at least point me in the direction of the right hardware for this task?

  3. Rokkesten

    Rokkesten Guest

    i will try...

    Some routers with buildin switch have v(irtual)lan feature, you can use this to seperate the lan´s, they share the internet through the router. Or buy a chaep router and connect it 2 your old lan and build your second lan behind this, place the office lan behind the guests lan.

    hope you get some further

  4. sufrano63

    sufrano63 Network Guru Member

    what you want to do is called VLAN. Some of the 3rd party firmware support VLAN (listed above every forum as sticky). I don't know if your router BEFSR41 supported by any of the 3rd party firmware listed. I have a WRT54Gv3.1 running dd-wrt firmware and its support VLAN. Future implementation of dd-wrt even support WVLAN with diff SSID and encryption... :rockon:
  5. Toxic

    Toxic Administrator Staff Member

    Yes either VLANs where there are virtual lans that only they can be part of even if the IP addresses are on the same subnet. or two routers which would have differen IP ranges or subnets and some form of advanced routing.

    How many clients are we talking about on both LANs?

    how much are you willing to spend? are ALL clients going to be hard wired to any Router? or is wireless an option?
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice