Re: Public/Private network split.
From: Leythos (void_at_nowhere.com)
Date: 01/29/04
- Next message: RXP: "Re: Question for someone CISSP certified."
- Previous message: J. M. L.: "Public/Private network split."
- In reply to: J. M. L.: "Public/Private network split."
- Next in thread: Thomas Hertel: "Re: Public/Private network split."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Jan 2004 00:56:38 GMT
In article <1624fd18.0401281629.4e2d6450@posting.google.com>,
freaknightproductions@yahoo.com says...
> I have a question concerning trying to set up a public/private
> network... I have a retail establishment with DSL service. I
> currently use a DSL router to share that connection amongst my various
> staff computers. I want to add a wireless access point to the network
> so that my customers can use my DSL connection to get to the net...
> however... I don't want them to be able to see/touch/talk to any of
> the computers on the private part of my network.
>
> I'm looking for the simplest way to implement a separation of this
> network -- minimal software set up -- just a dedicated black box that
> I can stick between the networks. Here's what I thought would work.
>
> Plug in a new wireless broadband router's uplink port to one of the
> network ports on my private network. Lock down this router so ONLY
> TCP/IP traffic goes through, and lock down which ports are open.
> Theoretically, this would create a private network inside my private
> network... No one connected to my wireless router would be able to
> sniff packets on the private part of my network, because Ethernet
> packets won't be routed past the wireless broadband router, and no one
> on this wireless network would be able to do anything that I didn't
> want them to do -- I could close up specific ports by configuring the
> wireless router.
>
> My questions are -- Is this possible? Can broadband routers be chained
> together like this to create segmented networks? Does the address
> forwarding that goes on between the ISP's network, and the first
> router get properly forward to the second router, and the equipment
> hanging off the second router?
>
> Second, Does this actually provide me with the security that I believe
> it does?
>
> If the answer to my first question is no, is there some kind of black
> box firewall that I can put between my private network, and a wireless
> access point that will provide me the kind of network
> segmentation/security that I want? Since I do not own a wireless
> access point, I figured my first solution would be cheaper then two
> dedicated pieces of equipment, but I wanted to verify if this would
> work or not.
Connect the wireless router to the DSL connection and then connect the
WAN connection of the wired router to one of the LAN ports on the
wireless router - connect your wired connections to the LAN side of the
wired router. This lets wireless people out, but they can't get IN to
your LAN.
-- -- spamfree999@rrohio.com (Remove 999 to reply to me)
- Next message: RXP: "Re: Question for someone CISSP certified."
- Previous message: J. M. L.: "Public/Private network split."
- In reply to: J. M. L.: "Public/Private network split."
- Next in thread: Thomas Hertel: "Re: Public/Private network split."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
