Tech Support Forum - View Single Post

allochthonous · 07-03-2009, 09:05 AM

I got my hands on another Linksys router and want to attempt a dual router setup creating two distinct networks. I want to be able to connect "rogue" or unknown machines to the internet, but keep my primary network isolated and protected.

So I was thinking something like this:

MODEM -- Internet port on ROUTER1 (network 192.168.6.0)
LAN ports 2-4 ----"rogues"
LAN port 1 -- Internet port on ROUTER2 (network 192.168.1.0)
LAN ports 1-4 on ROUTER2 ----- regular network

So anything that is done on the first layer "rogue" network will not affect my main network, right? Is there anything else that needs to be done to prevent traffic (or viruses, etc) from jumping the networks?

I am apprehensive because in my mind, it does not seem like it would be terribly difficult for a piece of malware to quickly ping all networks within the 192.168 range until it is successful and then make note of that address and exploit it.

Is the technology not there? Am I oversimplifying?

I tried this configuration a few minutes ago and i was not able to reach the internet on the second layer. It looks like the second layer router would not get an IP address from the first layer. Or do i need to try to get an IP on the second layer router from the modem?

Any thoughts?

07-03-2009, 09:05 AM	#1 (permalink)
allochthonous Registered User Join Date: Mar 2007 Posts: 62 OS: XP	two routers two networks one isp I got my hands on another Linksys router and want to attempt a dual router setup creating two distinct networks. I want to be able to connect "rogue" or unknown machines to the internet, but keep my primary network isolated and protected. So I was thinking something like this: MODEM -- Internet port on ROUTER1 (network 192.168.6.0) LAN ports 2-4 ----"rogues" LAN port 1 -- Internet port on ROUTER2 (network 192.168.1.0) LAN ports 1-4 on ROUTER2 ----- regular network So anything that is done on the first layer "rogue" network will not affect my main network, right? Is there anything else that needs to be done to prevent traffic (or viruses, etc) from jumping the networks? I am apprehensive because in my mind, it does not seem like it would be terribly difficult for a piece of malware to quickly ping all networks within the 192.168 range until it is successful and then make note of that address and exploit it. Is the technology not there? Am I oversimplifying? I tried this configuration a few minutes ago and i was not able to reach the internet on the second layer. It looks like the second layer router would not get an IP address from the first layer. Or do i need to try to get an IP on the second layer router from the modem? Any thoughts?