Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Need Router Reccomendation (not your normal request)
New Posts  All Forums:Forum Nav:

Need Router Reccomendation (not your normal request)

post #1 of 4
Thread Starter 
I need some help pickup up a router, plus maybe setting up a pfsense box or the like.

Basically my parents have a guest house that they rent out. They want to offer internet, but isolate it from our network. Which I know this is pretty easy with alot of new routers. What I am stumped on is a way to make it impossible or at least more difficult to torrent or use P2P. If I could keep a log of the renters use, in case they are up to no go, that would be preferable.

I've played with untangle and pfsense in the past. I'd love a nice breakdown with some recommendations. I need to implement this quick as possible.

I've been looking at the Cisco WRVS4400N because we deploy those alot at work. I am really familiar with it and its VPN capabilities, but I am open to learn a new router. I am not opposed to DD WRT either, I have it on 2 older routers here and like it.

tl:dr

I need a router with network isolation and dual SSID. I also need to block P2P, Bit Torrent, and monitor net traffic on the renter side in case of renter misuse.
Main PC
(10 items)
 
File Server
(11 items)
 
 
CPUMotherboardGraphicsRAM
i5 2550k ASUS Maximus V GENE EVGA GeForce GTX 660 Ti+ 3GB w/Backplate 16GB Kingston Hyper-X 
Hard DriveHard DriveCoolingOS
2x Kingston HyperX 3K RAID 0 Seagate USB 3.0 External Drive Thermalright Venomous X Windows 10 Pro x64 
MonitorPower
3x 22" Dell Ultrasharp Corsair CX500 
CPUMotherboardRAMHard Drive
amd a10-7700k ASrock FM2A88M-HD+ Corsair Dominator 2x2GB Toshiba 
Hard DriveHard DriveHard DriveHard Drive
Toshiba Western Digital Green Western Digital Black Western Digital Green 
OSPowerCase
Windows Professional 8.1 OCZ 650W Antec 300 
  hide details  
Reply
Main PC
(10 items)
 
File Server
(11 items)
 
 
CPUMotherboardGraphicsRAM
i5 2550k ASUS Maximus V GENE EVGA GeForce GTX 660 Ti+ 3GB w/Backplate 16GB Kingston Hyper-X 
Hard DriveHard DriveCoolingOS
2x Kingston HyperX 3K RAID 0 Seagate USB 3.0 External Drive Thermalright Venomous X Windows 10 Pro x64 
MonitorPower
3x 22" Dell Ultrasharp Corsair CX500 
CPUMotherboardRAMHard Drive
amd a10-7700k ASrock FM2A88M-HD+ Corsair Dominator 2x2GB Toshiba 
Hard DriveHard DriveHard DriveHard Drive
Toshiba Western Digital Green Western Digital Black Western Digital Green 
OSPowerCase
Windows Professional 8.1 OCZ 650W Antec 300 
  hide details  
Reply
post #2 of 4
A dual band router such as this should do the job - http://www.newegg.com/Product/Produc...82E16833122378

It allows you to setup multiple SSD's, one for your network and another for the guests. The parental control feature could be used to block unsafe internet content and applications such as bittorent.
Skylake
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7 6700k Gigabyte Z170X - Gaming 7 EVGA GTX 780 SC ACX Corsair Vengeance LPX 32GB (2400MHz) 
Hard DriveHard DriveHard DriveCooling
Samsung 840 250GB Samsung 850 Evo 500GB Western Digital 1TB XSPC Raystorm + EX240 Radiator 
OSMonitorKeyboardPower
Windows 10 Pro Dell U2414H x 2 Logitech G510 Corsair RM650 
CaseMouse
Fractal Design Define R5 Corsair M60 
  hide details  
Reply
Skylake
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7 6700k Gigabyte Z170X - Gaming 7 EVGA GTX 780 SC ACX Corsair Vengeance LPX 32GB (2400MHz) 
Hard DriveHard DriveHard DriveCooling
Samsung 840 250GB Samsung 850 Evo 500GB Western Digital 1TB XSPC Raystorm + EX240 Radiator 
OSMonitorKeyboardPower
Windows 10 Pro Dell U2414H x 2 Logitech G510 Corsair RM650 
CaseMouse
Fractal Design Define R5 Corsair M60 
  hide details  
Reply
post #3 of 4
If by isolate, you mean have complete inaccess to your entire network?

You can do this two ways. Setting them up on a different subnet mask, or getting a router with DD-WRT and blocking it that way. DD-WRT would probably be the best choice, but, meh.
Working with this:
http://www.dd-wrt.com/wiki/index.php/Multiple_WLANs
http://www.dd-wrt.com/wiki/index.php/Optware
http://www.dd-wrt.com/wiki/index.php...s_Access_Point

Specifically using these to restrict access to your network:
Restrict br1 from accessing the WAN port (no internet access!)
iptables -I FORWARD -i br1 -o `get_wanface` -j DROP

Restrict br1 from accessing the WAN subnet (still has internet)
iptables -I FORWARD -i br1 -d `nvram get wan_ipaddr`/`nvram get wan_netmask` -m state --state NEW -j DROP

Restrict br1 from accessing br0's subnet but pass traffic through br0 to the internet (for WAP's - WAN port disabled)
iptables -I FORWARD -i br1 -d `nvram get lan_ipaddr`/`nvram get lan_netmask` -m state --state NEW -j DROP

Enable NAT for traffic being routed out br0 so that br1 has connectivity (for WAP's - WAN port disabled)
iptables -t nat -I POSTROUTING -o br0 -j SNAT --to `nvram get lan_ipaddr`

Restrict br1 from accessing the router's local sockets (software running on the router)
iptables -I INPUT -i br1 -m state --state NEW -j DROP

And then just setting up a rule that blocks or attempts to block P2P/Bittorrent.
Edited by Lige - 7/30/11 at 6:43pm
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
post #4 of 4
I would suggest reading the link in my sig to get a better understanding of Logical separation.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Need Router Reccomendation (not your normal request)