Re: Newbie... need basics
- From: Bruce <bruce@xxxxxxxxxx>
- Date: Fri, 11 Aug 2006 03:41:10 GMT
Hi Leythos... I didn't expect this much help (and much appreciated),
but since you replied see my followups below...
Leythos wrote:
In article <44DBC8DC.7040707@xxxxxxxxxx>, bruce@xxxxxxxxxx says...Good to know. I believe the amount I would need to pull is underHi... Before I ask any questions on any NG, could someone
give me some links to networking basics. I'm computer literate
but I've never had to deal with networks so I'm pretty ignorant.
I need to understand an existing small network that needs
to expand. It currently has a DSL line with a Netgear
8-port VPN Switch/Router/Firewall (VPN not used), a wireless
router, and a Print Server. I need to expand the network in
another part of the building where the wireless signal is weak.
The expansion is to attach more computers and a printer.
The DSL is only used for internet/email access. There is no
web services or other fancy needs.
I need to understand the basics of Routers, Switches, hubs,
Print Servers, hardware & software firewalls. I hope I don't
need to understand all the different protocols. My biggest
concern is to protect these new computers as they will have
sensitive data. So I need to protect it from outside the
firewall as well as computers from within the network.
Any assistance/links would be appreciated
One way to protect a set of computer, not physical protection, but network protection, would be to install a second router, in series with the first router, and connect the "Sensitive" computer to that router.
The Sensitive computers could access everything connected to the first router (existing PC's, print server, internet, etc...) but nothing in front of the second router could access inside the second routers network directly.
INTERNET
|
WAN
FIRST ROUTER
---LAN---
| |
| - First Less secure computers/printers
|
WAN
SECOND ROUTER
LAN
|
- Second group of computers
You should use a wired connection between your first router and your second router, and not some wireless solution, this keeps performance up.
You also might want to set the WAN address of router 2 to a fixed in the router 1 LAN network, but it's not 100% necessary.
You also need to know that with eithernet, CAT5/6, you are limited to 100 meters between router 1 and router 2 to connect them (most people use 90 meters so that there is no mistakes).
the max. Probably 50 meters at most.
Anything behind the second router (second computers) can't be directly reached by the First Router LAN (first group of computers), UNLESS you poke holes (FORWARDING) from WAN to LAN in the second router.
(Note that all the computers are Windows based)
I was wondering whether I needed a router of if a hub is sufficient.
The computers on the first router are laptops that I don't have much
control over and I'm concerned that virus' and other nasties might
invade the 2nd network systems.
Though I want to limit the accessibility from those computers to the
"2nd network" computers, there is some access I need to allow, such
as access to a database, read-only. Would a 2nd router allow
access to a particular shared area?
Would a software firewall be advised on the 2nd network computers
if 2nd router is used?
If a hub is a feasible choice, to allow the database accessibility,
should a software firewall be used?
I don't understand subnets! :-( If they were the same does it
To setup the printers for the second LAN, just created a standard TCP printer port and point to the IP of the printer in the first lan.
Also, you need to MAKE SURE that both networks (routers LAN) are different subnets:
LAN1 = 192.168.8.0/24
LAN2 = 192.168.9.0/24
make the router looke like a hub?
Yes! Thank you!
Hope this helps.
.
- References:
- Newbie... need basics
- From: Bruce
- Newbie... need basics
- Prev by Date: Newbie... need basics
- Next by Date: Key establishment question
- Previous by thread: Newbie... need basics
- Next by thread: Re: Newbie... need basics
- Index(es):
Relevant Pages
|
|
