?
Solved

Multiple (ADSL) gateways on a XP Pro peer-to-peer VPN - can you check my logic please?

Posted on 2006-11-12
5
Medium Priority
?
435 Views
Last Modified: 2013-11-21
Hi there - I've ordered a second ADSL service, so I'll have two on the same VPN.  One computer on our 192.168.x.* network needs to use that new adsl service, but also remain a member of the XP Pro peer-to-peer network.  All other computers will go out via the original ADSL service and router.

My thinking is to turn off DHCP on the 2nd ADSL router, and give that single computer a fixed IP number.  I also give that router a fixed IP number on the VPN.

The rest of the network will use the original ADSL modem/router, using DHCP.

Anyone see a problem with this?  Anyone have any practical advice to improve the setup, get more from it or even some cuationary tale?

Backgrounder:  We hammer the original ADSL link frequently during the day, leaving little "juice" for people to do anything but the most basic on-line activity.  Other than having a fallback option if one service provider has an outtage (both services are with different providers on purpose), we're hoping to provide "the boss" with unfettered 'net access.  Similarly, it's really really really annoying to have "the boss" doing some uTubing when we're maintaining remote servers over SSH and there is a 1-2 second lag between key strokes :)
0
Comment
Question by:crnz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 43

Accepted Solution

by:
Steve Knight earned 2000 total points
ID: 17926676
No issue at all if the normal router is only used for internet access as his internet access will just go the other way.  Ultimately you've got

Normal clients, default gateway --> routera via dhcp assigned address
"the Boss", default gateway --> routerb via static IP

If the two routers are given, say 192.168.0.1 and 192.168.0.2 then they are on the same network and "the boss" can access everything else the same as before.

As you quite rightly say you need to turn off the dhcp server on the second router, or you could leave it on and set it to a different range on the same subnet.  Clients don't care where they got the IP from and that gives you redundancy with DHCP -- that assumes you can configure the second router dhcp to give out the other router for the default gateway for the masses to use.

Good luck, should work fine and, as you say you have a quick backup plan if needed by swapping gateway IP's or changing dhcp settings to use the other route to the net.


Steve
0
 
LVL 2

Author Comment

by:crnz
ID: 17928149
Well Steve - looks like you got some easy points then ;)

Thank you.
0
 
LVL 43

Expert Comment

by:Steve Knight
ID: 17928218
Sounds goo to me... good luck.  It only really gets messy when the routers are both accessible to each user...

Steve
0
 
LVL 2

Author Comment

by:crnz
ID: 17928960
Yeah, was reading up on that with the likes of Win2k and NT allowing multiple gateways, and the logic it used to select one gateway over another.  In my case I'm not looking for automatic redundancy - if something goes wrong, I'm happy to change a few IP numbers to get us through.  The most irritating part of making it automatically redundant would be swapping SMTP servers in the mail client...  not sure if that's a feature I have seen that allows automation.  Would be interesting tho' - a fall-back list of smtp servers...
0
 
LVL 43

Expert Comment

by:Steve Knight
ID: 17930784
You could probably do something with the SMTP stuff by either running your own internal smtp server which would then go out to other mail exchange hosts directly rather than through the ISP, use an ISP where you can authenticate to the mail server and therefore send mail from anywhere (just configure each host with username and password for SMTP) or some fancy scheme of having two internal dns zones on a DNS server local1.dns and local2.dns and giving out local1 or local2 as a dns suffix depending upon which connection you are on....

Frankly though easier just to make some quick amendments in the event of a failure for a small network as you say, if you've got 500 or 1000 machines maybe a problem but I imagine you have tens like many of my small business customers.

regards

Steve
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Suggested Courses
Course of the Month11 days, 20 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question