Hi:
I've been reading a lot on this forum and several others, looking for an solution to my situation. I've come close but still need some help.
I have 1 ISP that I'd like to split for two internal networks. I run a small business from my home and would like to split the WAN connection so that we can use the internet for personal use.
The current set up is this. My ISP is connected to a D-Link DIR-655 router. The router does not handle DHCP. From the router, I run wired to a Linksys 24 port unmanaged switch. DHCP is handled by a Windows SBS, 2003 R2, set up as the domain controller. The D-Link LAN address is 192.168.1XX.1. The address pool for DHCP within SBS is set for 30 addresses starting at 192.168.1XX.100 to 130. The subnet mask on the network is 255.255.255.0. All of the clients (hosts) including 2 laptops, 1 PC, 1 NAS, 2 printers, 1 wireless AP, 1 SBS server/domain controller and 1 FTP server get their addresses from the pool, either through reservation or lease.
The FTP server is used for personal use and I want to remove it from the business network. We also have a kids computer that I don't want within the business network. The residential ISP's block all the ports for services like FTP. For this reason, I need to keep the FTP on the WAN provided by my business ISP, but need it segregated from the business network.
Furthermore, my anti-virus is a paid version from Grisoft. One of the licenses is on the FTP server, so communication from the SBS to the FTP for anti-virus updates is important. Also, communication from the PC to the FTP is important to upload files for WAN clients to retrieve.
1) My thought is to add another router, in gateway mode only, from one of the LAN ports on the D-Link DIR-655.
2) Give the new router a LAN address of 192.168.2.1 with a subnet mask of 255.255.255.0.
3) Leave DHCP enabled on the new router/gateway to distribute addresses to clients on this network.
4) Attach the FTP server and the kids computer to LAN ports of the new router/gateway, giving them addresses of 192.168.2.X from DHCP.
5) In the D-Link, set up a route sending all FTP requests to 192.168.2.1 and the client address of 192.168.2.X.
I'd like to know if I'm on track with my thoughts. If not, what would the right suggestion be to resolve this.
And lastly, if I am right, how do I get the SBS and the 1 PC to communicate with the FTP for updates and uploads?
Thank you to anyone who can offer you expertise.
I've been reading a lot on this forum and several others, looking for an solution to my situation. I've come close but still need some help.
I have 1 ISP that I'd like to split for two internal networks. I run a small business from my home and would like to split the WAN connection so that we can use the internet for personal use.
The current set up is this. My ISP is connected to a D-Link DIR-655 router. The router does not handle DHCP. From the router, I run wired to a Linksys 24 port unmanaged switch. DHCP is handled by a Windows SBS, 2003 R2, set up as the domain controller. The D-Link LAN address is 192.168.1XX.1. The address pool for DHCP within SBS is set for 30 addresses starting at 192.168.1XX.100 to 130. The subnet mask on the network is 255.255.255.0. All of the clients (hosts) including 2 laptops, 1 PC, 1 NAS, 2 printers, 1 wireless AP, 1 SBS server/domain controller and 1 FTP server get their addresses from the pool, either through reservation or lease.
The FTP server is used for personal use and I want to remove it from the business network. We also have a kids computer that I don't want within the business network. The residential ISP's block all the ports for services like FTP. For this reason, I need to keep the FTP on the WAN provided by my business ISP, but need it segregated from the business network.
Furthermore, my anti-virus is a paid version from Grisoft. One of the licenses is on the FTP server, so communication from the SBS to the FTP for anti-virus updates is important. Also, communication from the PC to the FTP is important to upload files for WAN clients to retrieve.
1) My thought is to add another router, in gateway mode only, from one of the LAN ports on the D-Link DIR-655.
2) Give the new router a LAN address of 192.168.2.1 with a subnet mask of 255.255.255.0.
3) Leave DHCP enabled on the new router/gateway to distribute addresses to clients on this network.
4) Attach the FTP server and the kids computer to LAN ports of the new router/gateway, giving them addresses of 192.168.2.X from DHCP.
5) In the D-Link, set up a route sending all FTP requests to 192.168.2.1 and the client address of 192.168.2.X.
I'd like to know if I'm on track with my thoughts. If not, what would the right suggestion be to resolve this.
And lastly, if I am right, how do I get the SBS and the 1 PC to communicate with the FTP for updates and uploads?
Thank you to anyone who can offer you expertise.