We have a small office, about 7 computers, all winxp and win2k machines. Being that we are such a small office, the decision was to go "consumer level" and just use a regular linksys router instead of a cisco. But now the office needs to be changed a little and here's something i'm wondering.
They want to take 3 of the computers and isolated them from our main network but still with internet access. These 3 computers will be made into public access computers. (and uppermanagent has decided to allow full use with no restriction other than no "porn") So because of this i have to be sure that if any of the machines get infected by viruses or spyware that they don't travel into the main network.
so I was thinking this, remove the 3 machine from out Windows domain, getting a small switch, putting the 3 machines on that switch and then plugging that switch into our linksys router. But then i realize that while they are physically on another network. Logically they'll still be on the same subnet as they need to be in order to get to our router. So any spyware or virus might spread through to our workstations in the main network.
My second idea is the have a second linksys router and do the following:
Uplink router 2 into router 1.
Put the 3 machines on router 2
The main network will go through router 1.
Change the subnet/ip information for the computers on router 2. So if router 1 was 192.168.1.X, router 2 would be 192.168.2.X
But the thing is I'm not so sure if this will work since I don't think router 2 will communicate with router1
I know if i had 3 cisco routers and the budget, I can do the following which would phsyciall and logically separate the networks:
ISP
|
|
ROUTER A
192.168.2.1) E1 E0 (192.168.1.1
| |
| |
ROUTER C ROUTER B
192.168.2.2 E1 E1 (192.168.1.1)
| |
| |
3 comps Main network
Is there anyway i can come close to this sort of network using linksys routers?
