segregate lan for a second connection

Dell / 2900
December 17, 2010 at 12:41:52
Specs: Windows 2003, 8 gig
I have a network on a 10.1.32.1 address this is the server standard setup with one swithc coneects all the computers together. I also have a firewall in between which stops hackers etc. I have go to put a second connection in with its own firewall and segrated to 6 computers whilst still having a connection with the server any idears?

See More: segregate lan for a second connection

Report •


#1
December 17, 2010 at 13:01:54
What kind of switch are you using right now?

If it's an L2 managed switch capable of VLAN tagging then it's as simple as creating a separate VLAN for the new external connection and it's associated clients. Add as many ports as needed to the VLAN, connect the router's LAN port and the clients to the other ports in that new VLAN and it will work.

If however you don't have a managed, VLAN capable switch, I would suggest you buy an 8 port switch (or one with more ports if you figure you'll be adding more clients in the future) plug the new router's LAN port into that switch along with the clients that will be segrated with that router.

It matters not how straight the gate,
How charged with punishments the scroll,
I am the master of my fate;
I am the captain of my soul.

***William Henley***


Report •

#2
December 17, 2010 at 13:07:09
Connect the new firewall to the existing switch.
Give its lan interface a ip address within your subnet. For example if your present firewall is 192.168.1.1 assign this new one 192.168.1.2
Disable dhcp on the new firewall.
Statically assign the 6 workstations ip addresses as well as the gateway ip for the new firewall.

This will accomplish the new gateway for the 6 pcs and still allow them to connect to the server.

Answers are only as good as the information you provide.
How to properly post a question:


Report •

#3
December 17, 2010 at 13:09:56
Oops.........missed that bit about "whilst still having a connection with the server"

Good eye wanderer and thanks for picking up on that.

jamie2000uk - what wanderer said....ignore my response.

It matters not how straight the gate,
How charged with punishments the scroll,
I am the master of my fate;
I am the captain of my soul.

***William Henley***


Report •

Related Solutions

#4
December 17, 2010 at 14:56:19
Naw, you just did an excellent job on segragating the network :-)

Answers are only as good as the information you provide.
How to properly post a question:


Report •

#5
December 17, 2010 at 15:15:38
So will I still be able to get access to the main server to access the computers ? Also has anyone usesd a netscreen firewall as there one already in place but as I say I cant just connect it into the spare port I have to seggate the thing off lol so virtual lan is the way to go gd gd my thoughts were sort of the same but I was thinking if the netscreen plugged in can I tell it what computers and connec to it humm

Report •

#6
December 17, 2010 at 15:47:56
"So will I still be able to get access to the main server to access the computers ?"

That was your objective correct? #2 addresses that.

unfortunately I don't understand the rest of your runon sentence. unless there is some pressing need you haven't mentioned, a firewall between the 6 and the server is counter productive.

Answers are only as good as the information you provide.
How to properly post a question:


Report •


Ask Question