Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Wireless Router networked to Wired Router - security and configuration 2

Status
Not open for further replies.
EzLogic

EzLogic

Programmer
Aug 21, 2001
1,230
US
At one of our stores, we have a normal Router running DHCP using comcast and/or SBC DSL

Router A:

gateway: (ISP IP)
DNS: 255.255.255.0
IPs: 192.168.1.x

Now, i took a cable from Router A and pluged it into WAN of Router B (which is a wireless)

Router B:
Gateway (is the IP from the Router A)
DNS: 255.255.255.0
IPs: 10.1.10.x

if someone is on Router B (wireless), can they access the PCs on Router A?

We don't want people on the router B (wireless) to be able to see or communicate at all with people on router A (wired network). Will they be able to? Is it one way communication from devices on router A to router B?

We put Router B for Hotspot and customers that come in.

Thanks for your help.

Ali Koumaiha
Wireless Toyz
Farmington Hills, Michigan
 
Sort by date Sort by votes
Again, you're not giving us the whole picture. Somewhere you are either NATting or using a proxy service, as the private addresses you've listed will not route to the internet. Without these details it would be impossible to guage the security of your setup.


--
The stagehand's axiom: "Never lift what you can drag, never drag what you can roll, never roll what you can leave.
 
Upvote 0 Downvote
No proxy service.. I just set up the gateway of the wireless router to be the IP address issued by the wired router.
Maybe I am asking the wrong question. What I need to know is, based off of the (terrible) physical configuration below.. what do I need to do to ensure that the computers hooked up to the Wireless Router cannot access the PC's hooked up to the wired router. I used one of the ports off of the wired router to hook up to the WAN of the wireless router.. and set the gateway to be the IP issued from the wired router.

See diagram in the attachment:
 
 http://www.toyzportal.com/images/diagram.gif
Upvote 0 Downvote
Any and all help is appreciated. Thank you!

Ali Koumaiha
Wireless Toyz
Farmington Hills, Michigan
 
Upvote 0 Downvote
So the wireless router has the same Gateway as the wired PCs? If so then yes, the two networks can "talk" to each other. You can test this by getting on a wireless PC and trying to ping one of the wired PCs.

You must be running NAT somewhere, without it neither network could access the internet.

The best way I can think of to isolate these two networks is with a different router hooked to the internet. The wired router you are using has a switch hooked up to the LAN side which gives you multiple ports to plug machines into. The router itself has only 2 "ports", the WAN side and the LAN side. You would need a router with 1 WAN port and 2 LAN ports (one for each network).

I'll try to draw a diagram here:
Code: 
INTERNET-------WIRED ROUTER----WIRED SWITCH---WIRED PC
                   |                    |
                   |                    ------WIRED PC 
                   |
              WIRELESS ROUTER---------WIRELESS PC
                         |
                         -------------WIRELESS PC

Does this make sense to you? The difference between your drawing and mine is the fact that the wireless router is not parallel to the wired PCs, and is using a router with 2 distinct LAN outputs. The router you are using has only 1 LAN output which is connected to an internal switch that gives you the multiple ports. You don't want the wireless router hooked up to the same switch your wired PCs are using.



--
The stagehand's axiom: "Never lift what you can drag, never drag what you can roll, never roll what you can leave.
 
Upvote 0 Downvote
Look at these diagrams
Your wireless router would be what I have labeled NAT Router, PCs B & C would be wireless, PC A could not see them, but they can see A fine. (Ignore my preference for one router in this discussion, it is aimed at folks who buy multiple routers by accident)

What you want is the Wireless router first, so the Wireless PCs are in PC A's position, then it cannot see you wired B & C PCs.

I tried to remain child-like, all I acheived was childish.
 
Upvote 0 Downvote
Jimbo's way is simpler, and will work fine as long as the wired router is performing NAT (which I'm sure it is).



--
The stagehand's axiom: "Never lift what you can drag, never drag what you can roll, never roll what you can leave.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

jmarkus
  • Locked
  • Question
Can I have a different private IP address which isn't on my router's subnet?
Replies
6
Views
623
sbcsu
sbcsu
Vedant Gonnade
  • Locked
  • Question
How to send a string (generated by camera) to computer
Replies
0
Views
498
Vedant Gonnade
Vedant Gonnade
joserodriguezan
  • Locked
  • Question
Looking for a free software application to recieve SMNP alerts.
Replies
0
Views
490
joserodriguezan
joserodriguezan
03Explorer
  • Locked
  • Question
Linux monitoring my own ASUS router (MRTG)
Replies
0
Views
191
03Explorer
03Explorer
tpicon
  • Locked
  • Question
Need to know MAC Address??
Replies
0
Views
493
tpicon
tpicon

Part and Inventory Search

Sponsor

Back
Top