Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Simple routing problem
New Posts  All Forums:Forum Nav:

Simple routing problem - Page 2

post #11 of 59
One router with 3 separate Vlans would be the easiest.

Separate the Vlans with ACLs and put everything behind a firewall.

Create DHCP pools for each Vlan, that way all the DHCP functions happen on one source. Each pool will have its own gateway and you can point each to whatever DNS you like. Point all "Guest" traffic to an outside DNS like OpenDNS. NAT everything to the outside.

Now you can setup ports on your switch(s) with the desired Vlans.

Ah, just noticed you have 2 WAN interfaces. Are they both in the same house? What is the reason for have the second interface? Is it just to separate traffic, or added bandwidth?
Edited by Biscuits_N_Gravy - 2/14/11 at 8:23am
Steak_N_Eggs
(17 items)
 
ESXi 5.x Server
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel 2500K @ 4.8GHz 1.36v ASRock P67 Extreme4 Gen3 Sapphire Radeon HD 6970 8GB Corsair Vengeance 1600MHz 
Hard DriveHard DriveOptical DriveCooling
Kingston HyperX 3K 120GB x2 Samsung Spinpoint f3 1TB Donkey with Laser Pointer CoolerMaster Hyper 212+ 
OSMonitorMonitorKeyboard
Windows 8.1 Pro with Media Center 2008 Apple Cinema HD Display 23" Samsung 2443BWX Logitec K750 Solar & Steelseries Zboard 
PowerCaseMouseMouse Pad
Corsair hx650w Corsair Graphite 600t Logitec M705 & Razer DeathAdder IAMS pet food Vet Clinic pad 
Audio
M-Audio Studio LX-4 5.1 
CPUMotherboardGraphicsRAM
AMD FX 8320 Stock ASRock Extreme 3 970 ATX Radeon HD 2400 32GB Corsair Vengeance Black CL9  
Hard DriveHard DriveHard DriveCooling
Seagate 2TB 64MB 7200RPM Seagate 320GB 16MB 7200RPM Seagate 500GB 16MB 7200RPM CoolerMaster GeminII S524 
OSPowerCaseOther
VMWare ESXi 5.1 Corsair CX500 80 Plus CoolerMaster Elite 361 Intel PRO/1000 PT Dual Port Server 
Other
Intel PRO/1000 PT Dual Port Server 
CPUMotherboardGraphicsRAM
Intel Core i7 "Sandy Bridge" @ 2.7GHz Apple Logic Board Intel 3000 8GB Crucial 1600MHz 
Hard DriveOptical DriveCoolingOS
Crucial M4 - 128GB Apple Super Drive Stock OSX Mountain Lion 
OSMonitorKeyboard
Windows 7 Ultimate 64bit 13" Apple IPS Backlit Chiclet 
  hide details  
Reply
Steak_N_Eggs
(17 items)
 
ESXi 5.x Server
(13 items)
 
 
CPUMotherboardGraphicsRAM
Intel 2500K @ 4.8GHz 1.36v ASRock P67 Extreme4 Gen3 Sapphire Radeon HD 6970 8GB Corsair Vengeance 1600MHz 
Hard DriveHard DriveOptical DriveCooling
Kingston HyperX 3K 120GB x2 Samsung Spinpoint f3 1TB Donkey with Laser Pointer CoolerMaster Hyper 212+ 
OSMonitorMonitorKeyboard
Windows 8.1 Pro with Media Center 2008 Apple Cinema HD Display 23" Samsung 2443BWX Logitec K750 Solar & Steelseries Zboard 
PowerCaseMouseMouse Pad
Corsair hx650w Corsair Graphite 600t Logitec M705 & Razer DeathAdder IAMS pet food Vet Clinic pad 
Audio
M-Audio Studio LX-4 5.1 
CPUMotherboardGraphicsRAM
AMD FX 8320 Stock ASRock Extreme 3 970 ATX Radeon HD 2400 32GB Corsair Vengeance Black CL9  
Hard DriveHard DriveHard DriveCooling
Seagate 2TB 64MB 7200RPM Seagate 320GB 16MB 7200RPM Seagate 500GB 16MB 7200RPM CoolerMaster GeminII S524 
OSPowerCaseOther
VMWare ESXi 5.1 Corsair CX500 80 Plus CoolerMaster Elite 361 Intel PRO/1000 PT Dual Port Server 
Other
Intel PRO/1000 PT Dual Port Server 
CPUMotherboardGraphicsRAM
Intel Core i7 "Sandy Bridge" @ 2.7GHz Apple Logic Board Intel 3000 8GB Crucial 1600MHz 
Hard DriveOptical DriveCoolingOS
Crucial M4 - 128GB Apple Super Drive Stock OSX Mountain Lion 
OSMonitorKeyboard
Windows 7 Ultimate 64bit 13" Apple IPS Backlit Chiclet 
  hide details  
Reply
post #12 of 59
Thread Starter 
Quote:
Originally Posted by allikat View Post
Why you need such a layout is beyond me. You'd do better with switches and just one IP setup.
This layout is needed because some hosts on the network would use the 192.168.1.1 as a gateway and others 10.15.168.1 as a gateway. This way each gateway can have its own DHCP server set up and depending on where I plug in on the network i get the correct IPs.

But i can still communicate with the hosts from the other network directly by IPs, or if I have the correct DNS records setup on the DNS server.
post #13 of 59
Thread Starter 
Quote:
Originally Posted by Biscuits_N_Gravy View Post
One router with 3 separate Vlans would be the easiest.

Separate the Vlans with ACLs and put everything behind a firewall.

Create DHCP pools for each Vlan, that way all the DHCP functions happen on one source. NAT everything to the outside.

Ah, just noticed you have 2 WAN interfaces. Are they both in the same house? What is the reason for have the second interface? Is it just to separate traffic, or added bandwidth?
Router A is in a separate apartment as Router C.

Router B is inbetween. I cant use one router, as one apartment needs to access its internet through its router and the other through the its own router as well. But i still want to be able to communicate between apartments.

See previous post for more why

Seems to me like my setup is the easies way to achieve this, with both apartments having their own DHCPs and being in separate subnets, but through the router inbetween trafic between apartments would still be possible. Broadcasts need to be filtered out obviously, so the DHCPs dont overlap. If I set the static routing tables as in the 1st post, this should achieve it, but Im still not sure if the Router B will be able to do what I want it to do.
Edited by tomaskir - 2/14/11 at 8:28am
post #14 of 59
Quote:
Originally Posted by tomaskir View Post
Router A is in a separate house as Router C.

Router B is inbetween. I cant use one router, as one house needs to access its internet through its router and the other through the other router. But i still want to be able to communicate between houses.
then router b is pointless and as i said you need a network bridge, or vpn
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
post #15 of 59
Thread Starter 
Quote:
Originally Posted by OutOfBalanceOX View Post
then router b is pointless and as i said you need a network bridge, or vpn
See the updated post above this one. If I used a bridge of any kind, broadcasts would go over the whole network. Which would make DHCPs overlap and well, any broadcast from 192.168.1.0/24 would be seen by 10.15.168.0/24 as well.

I could VPN it somehow, but I still need a piece of hardware between the networks that separates the networks, yet lets them communicate (oh, what a wonderfull oxymoron that is)

Basically, I need a piece of hardware with 2 IP Adresses, one in 192.168.1.0/24 and one it 10.15.168.0/24 to sit between the networks and let them communicate, all while filtering out broadcasts. To my knowledge a router should be able to do this.
post #16 of 59
change the DHCP addresses.....
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
post #17 of 59
You need to swap routerB for a high grade layer 3 switch with Vlan functionality.
The other method, is to change the IP setup for one of the houses and set routerB into simple switch mode (IE no DHCP etc).

What you do:
Set router A to IP 192.168.0.1 with the IP scope of 192.168.0.x and netmask of 255.255.0.0, with default gateway of 192.168.0.1
Set router C to IP 192.168.1.1 with the IP scope of 192.168.1.x and the same netmask. with default gateway of 192.168.1.1


The netmask and IP setup will allow communication between the networks and retain the right default routers.
Ryzen 5 1600
(12 items)
 
  
CPUMotherboardGraphicsRAM
AMD Ryzen 5 1600 MSI B350 Gaming Plus Gigabyte GeForce GTX 1060 WINDFORCE2 OC 16GB (2x8GB) Corsair DDR4 Vengeance LED, PC4-24... 
Hard DriveHard DriveCoolingOS
256GB Samsung PM961 Polaris M.2 NVMe  1TB Toshiba DT01ACA100 3.5" HDD, SATA III  Cooler Master Hyper 212 Evo Windows 10 64 
KeyboardPowerCaseMouse
Unicomp Model M 650W EVGA SuperNOVA G1, 80PLUS Gold, Full Modular Kolink Luminosity Cooler Master Reaper Aluminium 
  hide details  
Reply
Ryzen 5 1600
(12 items)
 
  
CPUMotherboardGraphicsRAM
AMD Ryzen 5 1600 MSI B350 Gaming Plus Gigabyte GeForce GTX 1060 WINDFORCE2 OC 16GB (2x8GB) Corsair DDR4 Vengeance LED, PC4-24... 
Hard DriveHard DriveCoolingOS
256GB Samsung PM961 Polaris M.2 NVMe  1TB Toshiba DT01ACA100 3.5" HDD, SATA III  Cooler Master Hyper 212 Evo Windows 10 64 
KeyboardPowerCaseMouse
Unicomp Model M 650W EVGA SuperNOVA G1, 80PLUS Gold, Full Modular Kolink Luminosity Cooler Master Reaper Aluminium 
  hide details  
Reply
post #18 of 59
Quote:
Originally Posted by tomaskir View Post
Yup, using static routes.

Is any configuration needed on Router B?
Well yes, the router needs to be aware of what networks hide behind which router. I set it up in the lab today (quite the coincidence), and just made sure every router propagated it's adjecent networks (2 networks for B in your case) to the other routers.

I'm lazy, I like routing protocols.
    
CPUMotherboardGraphicsRAM
Q6600 SLACR @ 3.6 GHz Asus P5E Deluxe MSI 6950 2 GB + 9800GT (PhysX) 4 GB White Lake DDR2-800 
Hard DriveOptical DriveOSMonitor
Hitachi 500 GB Sata iHas 120 Windows 7 Pro x64 u2711 (27", 2560x1440, H-IPS) 
KeyboardPowerCaseMouse
Generic Dell Combat Power 750W Aerotech PGS Bx-500 Logitech Rx300 
Mouse Pad
Desk 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Q6600 SLACR @ 3.6 GHz Asus P5E Deluxe MSI 6950 2 GB + 9800GT (PhysX) 4 GB White Lake DDR2-800 
Hard DriveOptical DriveOSMonitor
Hitachi 500 GB Sata iHas 120 Windows 7 Pro x64 u2711 (27", 2560x1440, H-IPS) 
KeyboardPowerCaseMouse
Generic Dell Combat Power 750W Aerotech PGS Bx-500 Logitech Rx300 
Mouse Pad
Desk 
  hide details  
Reply
post #19 of 59
Thread Starter 
Quote:
Originally Posted by allikat View Post
You need to swap routerB for a high grade layer 3 switch with Vlan functionality.
The other method, is to change the IP setup for one of the houses and set routerB into simple switch mode (IE no DHCP etc).

What you do:
Set router A to IP 192.168.0.1 with the IP scope of 192.168.0.x and netmask of 255.255.0.0, with default gateway of 192.168.0.1
Set router C to IP 192.168.1.1 with the IP scope of 192.168.1.x and the same netmask. with default gateway of 192.168.1.1


The netmask and IP setup will allow communication between the networks and retain the right default routers.
Yes, but I would need to manually configure each host as to what gateway to use, or I would have only one DHCP server, so I would need to configure IP-MAC binding for each host, which is very impractical and requires reconfiguration for each new host. Also, this would hamper security, as all the hosts in both apartments are in the same broadcast domain.

Quote:
Originally Posted by OutOfBalanceOX View Post
change the DHCP addresses.....
See the above.

Quote:
Originally Posted by citruspers View Post
Well yes, the router needs to be aware of what networks hide behind which router. I set it up in the lab today (quite the coincidence), and just made sure every router propagated it's adjecent networks (2 networks for B in your case) to the other routers.

I'm lazy, I like routing protocols.
Please explain more. Lets say I only want to do this using static routes (which should be easily possible)

The way I see it, if I have the routing tables on Router A and Router C configured properly (see the original post, they should be OK) I just need to do something to Router B for this setup to work.
Edited by tomaskir - 2/14/11 at 8:43am
post #20 of 59
Quote:
Originally Posted by tomaskir View Post
Yes, but I would need to manually configure each host as to what gateway to use, or I would have only one DHCP server, so I would need to configure IP-MAC binding for each host, which is very impractical and requires reconfiguration for each new host. Also, this would hamper security, as all the hosts in both apartments are in the same broadcast domain. each host



See the above.
DHCP automatically assigns addresses, they can only be connected into one router and a bridge would allow communication between the routers. So all you have to do is set one router to assign addresses 192.168.0.0/24 and one to assign addresses 192.168.1.0/24
It's really pretty simple
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i5 2500k @ 4.5GHZ (for now) MSI P67A-GD65 BFG GTX 260 OC SLI 2x2GB G.Skill Ripjaw X 2133 CL9 
Hard DriveOptical DriveOSMonitor
Barracuda 320GB, Spinpoint F3 1TB, Barracuda 1.5TB Sony Optiarc BD-ROM Windows 7 Ultimate x64 HP 2311x 
KeyboardPowerCaseMouse
Dell L100 In Win Commander 1200W RV02B-EW Trackman Wheel 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Simple routing problem