[TriLUG] Dual Network Question

Tanner Lovelace clubjuggler at gmail.com
Tue Mar 15 08:49:51 EST 2005


Since wireless isn't nearly as secure as wired, running wireless on 
a separate subnet actually does make sense from a security 
standpoint.  But, it would be nice to combine that with a good
VPN setup where you could run a laptop through the wireless
but still make it show up in the local network and have all the
same services it would have if it were connected to the wired
network.  Unfortunately, setting that up ins't nearly as easy as
setting up a wireless access point.  If anyone's got something
like that setup, I'd love to hear about it.  (Note, btw, that I'm
not talking about SSHing into the network.  I'm looking for 
nothing less than a full VPN setup where the wireless laptop
through the VPN ends up on the same subnet as the internal
network.)

Cheers,
Tanner


On Mon, 14 Mar 2005 20:28:24 -0500, Joel Ebel <jbebel at ncsu.edu> wrote:
> Do you really need your wireless network to be on a different subnet?
> Why not turn off the routing/dhcp functions of the wireless router and
> just use it as an access point?  Don't plug anything into the WAN port.
>   Then all your systems, wireless and wired will be in the same subnet
> and connecting between them will be straightforward.
> 
> Joel
> 
> Aaron Bockover wrote:
> > I'm sure this general question has been brought up before, but I'm
> > having a heck of a time figuring this out...
> >
> > I have a decent sized home-network, with an old PC serving as a router
> > (Smoothwall). The gateway/LAN address for it is 192.168.0.1. It is the
> > primary network, and serves the DSL connection. I've got a switch with
> > about 15 devices on it, including a D-Link AirPlus G wireless router.
> > The gateway/LAN address for it is 192.168.1.1.
> >
> > Its WAN interface is configured to connect to the primary network, with
> > a static WAN IP address: 192.168.0.20. The MAC address for the D-Link is
> > entered for that IP address in my Smoothwall config. The DNS entries are
> > all correct on both routers, and when I connect to the D-Link with my
> > laptop, I can access the Internet through the primary router. All is
> > okay here.
> >
> > I would *really* like to be able to access systems from the wireless LAN
> > on the primary network. My desktop is wired into the 192.168.0.1 LAN,
> > but my laptop connects wirelessly on 192.168.1.1. I would love to be
> > able to SSH/Remote X to my desktop from my laptop, and also access other
> > services/servers on my primary LAN.
> >
> > I have tried forwarding ports from the 192.168.1.1 LAN to the WAN IP
> > (192.168.0.20), hoping the Smoothwall router would then broadcast those
> > forwarded requests into its LAN, but to no avail.
> >
> > What am I missing here?
> >
> > Thanks,
> > Aaron Bockover
> >
> >
> --
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> TriLUG PGP Keyring         : http://trilug.org/~chrish/trilug.asc
> 


-- 
Tanner Lovelace
clubjuggler at gmail dot com
http://wtl.wayfarer.org/
http://www.freeiPods.com/?r=8127171
(fieldless) In fess two roundels in pale, a billet fesswise and an
increscent, all sable.



More information about the TriLUG mailing list