One internet line, 2 seperate networks

May 27, 2009 at 09:41:30
Specs: Windows Vista & XP
Hey Guys,

Just wondering how this will work.

I work for a finance company and we are moving offices in a few days. The new office also houses a finance company. To keep costs down, we want to share the internet bill, however we need to keep our computers (one company has about 4 computers, the other has 3) separate. We want the computers within each company to be able to "see one another" but be blocked from access the computers of the other company. Both companies need to be able to access the internet. I would like to keep the solution as cost effective as possible while still maintaining security.

Summary:
- 1 Internet Line Coming in
- Need two separate networks that are blocked from one another but still share an internet connection.
- Computers within each company should be able to see one another.

any ideas?


See More: One internet line, 2 seperate networks

Report •


#1
May 27, 2009 at 09:52:20
1. put in routers for each company off the main router.

2. put in a vlan capable switch of the main router. One vlan for one company and one for the other.

3. do static ip assignments to all and then using the windows or third party firewall software deny access to those ip addresses associated with the other company. You would do this on both company's pcs.

I would put in the vlan switch.


Report •

#2
May 27, 2009 at 09:59:41
yeah that solution would work except that I want to make sure that everything is hardware based. I want to make sure that no user (except for me, because I am the tech guy) can undo anything on any pc. This solution also seems a bit excessive.

any other ideas?


Report •

#3
May 27, 2009 at 13:28:01
Eh? I provided three solutions.

If you put in two routers there would be no need for a vlan switch or software firewalls. I thought this was apparent. Sorry

The easiest is the vlan switch. Gives you a lot of options and an eye view on your connection and line traffic.


Report •

Related Solutions

#4
May 27, 2009 at 15:07:59
We want the computers within each company to be able to "see one another" but be blocked from access the computers of the other company.

Ok you'll excuse me if this doesn't make a whole lot of sense to me.

For what reason on the face of this lovely planet would you want the PC's from the two separate networks to be able to "see each other" but not have access to each other!?!?

If they're not going to access each other, there is no reason for them to see each other............period.

If it were me, I'd separate them completely with a SOHO router for each separate LAN and I'd leave it at that.

Unless of course you have a good reason for a useless "see but can't touch" setup which would involve a whole lot more effort than just segmenting the two apart from each other.


Report •

#5
May 27, 2009 at 16:01:46
"see one another" is just in the company not cross company.Least that was my understanding.

Report •


Ask Question