+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 19 of 19
Wireless Networks Thread, Separate guest wifi in Technical; Originally Posted by djones The requirements: House with ajoining holiday let; Currently with dial-up access but new ADSL line now ...
  1. #16

    Join Date
    May 2010
    Posts
    15
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by djones View Post
    The requirements:
    • House with ajoining holiday let;
    • Currently with dial-up access but new ADSL line now going in;
    • Owners want wifi access for their two laptops in and around property in addition to wired access for one desktop;
    • Wifi access to be provided for guest use in and around property but separated from accessing owner's private network;

    In past days I have done similar by using IPCOP to separate the networks, each with their own wifi AP with different SSIDs, and have the IPCOP going out to a single router/modem. However, I'd rather stick with a single, small, appliance type solution if possible.

    They need to buy a router/modem anyway for the new ADSL line so I was looking at the Netgear DGN2000 as it has the ability to set multiple SSIDs but I'm not sure if this then separates them into VLANs - if not, I can't see the point of multiple SSIDs unless you have devices that can't use higher security methods.

    What would you do to achieve the required result?

    How about a Draytek Vigor 2820Vn?

    You can have 4 SSIDs with differing levels of encryption and each wireless network can be throttled up and downstream. It's a bit pricey but will do the job well and you can lots more with it if you want to.

  2. #17

    Join Date
    Oct 2007
    Location
    Cambridgeshire, UK
    Posts
    306
    Thank Post
    58
    Thanked 23 Times in 20 Posts
    Rep Power
    17
    Quote Originally Posted by Geoff View Post
    Use DHCP option 26 to inform your clients of the non-default MTU required to use your network.
    Thanks, I didn't know you could do that!

  3. #18

    Join Date
    Oct 2007
    Location
    Cambridgeshire, UK
    Posts
    306
    Thank Post
    58
    Thanked 23 Times in 20 Posts
    Rep Power
    17
    Quote Originally Posted by drevil View Post
    How about a Draytek Vigor 2820Vn?

    You can have 4 SSIDs with differing levels of encryption and each wireless network can be throttled up and downstream. It's a bit pricey but will do the job well and you can lots more with it if you want to.
    Unfortunately, the guest WiFi needs to be provided via an additional Access Point so using the one wireless router and having multiple SSIDs is not going to work as the range just isn't enough. That's why I need to implement something that can VLAN certain ports in order to plug an AP into it.

  4. #19

    Join Date
    Oct 2007
    Location
    Cambridgeshire, UK
    Posts
    306
    Thank Post
    58
    Thanked 23 Times in 20 Posts
    Rep Power
    17
    Ok, this is where I'm upto...

    Unfortunately, connecting using PPPoE from DD-WRT (on the WRT320N) via the DG834G (in modem only mode) presented another problem. The ISP requires PPPoA and using PPPoE instead, causes the connection speed to be throttled drastically (10Mbps down to 1Mbps).

    Therefore, I have reverted the DG834G to normal (modem & router) mode and used this to handle the ADSL connection via PPPoA. The DG834G has an internal IP of 192.168.0.1, NAT and DHCP enabled. The WRT320N is connected to the DG834G via its WAN port and gets a WAN IP address of 192.168.0.2 via DHCP. Its internal IP address is still 192.168.1.1 as default.

    The WRT320N then hands out IP addresses via DHCP in the 192.168.1.0 range. There is also an additional VLAN setup with its own DHCP handing out addresses in the 192.168.3.0 range via a Wireless Access Point plugged into port 4 of the WRT320N.

    This all seems to work fine:

    no need to change default MTU values on clients;
    guests (clients on 192.168.3.0 subnet) cannot access PCs/resources on main 192.168.1.0 subnet;
    all clients (regardless of subnet) have full internet access at the correct speed;

    However, guests (192.168.3.0 subnet) can access both routers' webadmin GUIs and presumably (although I haven't tested it) anything plugged into the DG834G's remaining ports (192.168.0.0 subnet). Is there a way of preventing this? Something along the lines of dropping requests to 192.168.0.1 (or the entire 192.168.0.0 subnet) and 192.168.1.1 if they originate from anything on the 192.168.3.0 subnet. Is this possible?

    And finally, can anyone foresee any issues with this setup? Double NAT (although I confess to not really understanding if this even happens and whether it is bad if it does!)?

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. E-portal on a separate server?
    By nicholab in forum MIS Systems
    Replies: 7
    Last Post: 27th January 2010, 05:03 PM
  2. Separate Site
    By linkazoid in forum How do you do....it?
    Replies: 7
    Last Post: 25th August 2009, 12:12 PM
  3. Separate the wireless network
    By ranj in forum Wireless Networks
    Replies: 0
    Last Post: 9th January 2009, 04:18 PM
  4. Having separate Domains and Subnets
    By gollops in forum Wireless Networks
    Replies: 16
    Last Post: 28th November 2008, 10:13 PM
  5. 3 separate Printer problems..
    By Little-Miss in forum Hardware
    Replies: 1
    Last Post: 3rd October 2008, 06:19 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •