Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Ethernet In Every Room
New Posts  All Forums:Forum Nav:

Ethernet In Every Room

post #1 of 4
Thread Starter 
In my college, we 4 separate rooms in a residential housing building with a tenant living in each room. Every room has one Ethernet port which provides internet connection (which I plugged my router into), yet each Ethernet port is "separate" meaning, I cannot connect to any other of my housemates in the same LAN. (Each Ethernet port is it's own LAN?). Every Ethernet port is capped at 10mbps

Here is my question, how do I replicate this? One of my housemates is asking me if I can set up the same internet setup for one of the houses her family owns, the individual rooms which are then rented out. I do hope it's as simple as having the modem connect to a switch, then having all the room's Ethernet port connected to the switch. But then, it would have to be a managed switch? Do managed switches have the capability to speed cap and separate each Ethernet port into it's own LAN (it was my understanding that the purposes of a switch was to connect all the ports under the same LAN).

Any help would be greatly appreciated, thank you.
post #2 of 4
So you want lan segmentation and lan port rate limiting. Interesting problem.

My (part) solution assumes that you only have 1 external IP address from your ISP.

I would say get a router for the whole house the WAN port of which is connected to the modem/ISP and the LAN ports go to the individual rooms.This main router should be one that is capable of doing the rate limiting, so you'll have to find one that is able to do that properly (or maybe an OCN member can advice one).

The Lan ports are than still part of the same network! Every resident should then have its own router effectively creating a private subnet for each resident. So from each of the lan ports of the main router is connected to the wan port 1 of the 4 private routers.Since it is likely that resident have multiple devices, having a router for each resident should be acceptable.

The private subnets are still part of the network of the main router so communication between private networks is still possible if wanted, but you'd have to set it up. Also it would be possible (but unlikely) for a knowledgeable 'evil' resident to watch the traffic going out of the private subnets. So there is some form of trust.

If you want an example for the ip configuration settings of the routers let me know.

PS.
It would off course be better if you can find a router which can do the lan segmentation and lan port rate limiting all by itself.
Edited by grivy - 7/15/13 at 5:01am
yes
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHz Asus P8Z68-V IGP HD3000 @ 1.9GHz  Kingston 8 GB 1600 
Hard DriveHard DriveHard DriveOptical Drive
OCZ Vertex 3  Samsung EG 2TB WD Red 3 TB Samsung SH-S223C 
CoolingOSMonitorKeyboard
Scythe mugen 2 Rev. B Windows 8 Pro LG 32LG3000 Logitech K360 Purple Boulder 
PowerCaseMouse
Antec Basiq BP550Plus Xigmatek Midgard Logitech MX Air 
  hide details  
Reply
yes
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHz Asus P8Z68-V IGP HD3000 @ 1.9GHz  Kingston 8 GB 1600 
Hard DriveHard DriveHard DriveOptical Drive
OCZ Vertex 3  Samsung EG 2TB WD Red 3 TB Samsung SH-S223C 
CoolingOSMonitorKeyboard
Scythe mugen 2 Rev. B Windows 8 Pro LG 32LG3000 Logitech K360 Purple Boulder 
PowerCaseMouse
Antec Basiq BP550Plus Xigmatek Midgard Logitech MX Air 
  hide details  
Reply
post #3 of 4
OP to answer your question is yes this can be accomplished with a Switch and yes it has to be a managed switch. This can not be accomplished with SOHO equipment.

What you are needing to do will require either Private VLAN's, or VLAN's controlled with ACL's on the switch to prevent VLAN to VLAN communication. You could pick up a used Cisco 3550 off of ebay and complete this. This requires will require some configuration as you can not just do a plug and play. Doing just a plug and play will have every port in the default VLAN which does not meet your requirements. QoS can be set to limit bandwidth on each port.

You could also pick up a 2960 and do something similar since the 2960 is a layer 2 switch, where as the 3550 is a layer 3 switch, but you have to have a device before the 2960 that is capable of 802.1Q tagging (VLAN tagging) as the connection between this device and the 2960 would have to be set up with a trunk link. QoS would be the same on the 2960. You might be able to do this with a 2950 instead of a 2960 which would save even more money however I am not sure to what degree the IOS handles QoS, it's been too long since I worked on any 2950s.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #4 of 4
Quote:
Originally Posted by bratas View Post

OP to answer your question is yes this can be accomplished with a Switch and yes it has to be a managed switch. This can not be accomplished with SOHO equipment.

What you are needing to do will require either Private VLAN's, or VLAN's controlled with ACL's on the switch to prevent VLAN to VLAN communication. You could pick up a used Cisco 3550 off of ebay and complete this. This requires will require some configuration as you can not just do a plug and play. Doing just a plug and play will have every port in the default VLAN which does not meet your requirements. QoS can be set to limit bandwidth on each port.

You could also pick up a 2960 and do something similar since the 2960 is a layer 2 switch, where as the 3550 is a layer 3 switch, but you have to have a device before the 2960 that is capable of 802.1Q tagging (VLAN tagging) as the connection between this device and the 2960 would have to be set up with a trunk link. QoS would be the same on the 2960. You might be able to do this with a 2950 instead of a 2960 which would save even more money however I am not sure to what degree the IOS handles QoS, it's been too long since I worked on any 2950s.

Cisco 3550s by default are not full layer 3 switches. Most come with the SMI/"IP Base" IOS. This gives you "layer2/2+" functionality, which allows you to create static routes among other layer3 features. Getting an "IP Services"/EMI image requires that you have a partnership with Cisco (not sure if Cisco Learning Partner counts or not). But even with an EMI image, these switches still cannot hold full bgp tables, dont support auto mdix, dont support netflow (as with any switch), etc.

But yes, a 3550 will do all of what the OP wants to do. They can be found on Ebay for $40-60.
Server
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7 2600k Intel H67DE PNY Verto 9600GT (Thanks to ihasfip!) 16GB G.Skill Ripjaws 1333Mhz 
Hard DriveOSMonitorPower
(3) Seagate 7200K 1TB (2) Hitachi 7200K.12 1TB Proxmox Samsung 17" Corsair GS600 
Case
Chenbro tower 
  hide details  
Reply
Server
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7 2600k Intel H67DE PNY Verto 9600GT (Thanks to ihasfip!) 16GB G.Skill Ripjaws 1333Mhz 
Hard DriveOSMonitorPower
(3) Seagate 7200K 1TB (2) Hitachi 7200K.12 1TB Proxmox Samsung 17" Corsair GS600 
Case
Chenbro tower 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Ethernet In Every Room