Using 2 routers to provide wifi and protect my network

Hello
I am using a standard router with a 192.168.1.X range. I would like to put a sub router on the system and allow people to connect wirelessly without compromising my network. If I use 192.168.11.X as a sub range and let the sub router pull internet through the WAN port will I achieve my goal? Or are there ways that someone with some knowledge could still rout through and connect to my .1 network?
Thanks Jim
cbspectreAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

rindiCommented:
How are the routers connected to the LAN? I'd connect the internet router's wan port to the internet modem, and there you can use any subnet you like. Then connect the network router to a LAN port of your wireless router (make sure you get one that has LAN ports additionally to the WAN port and the wireless). That way you can't connect on the LAN side via the wireless router's clients.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cbspectreAuthor Commented:
Connections are as follows
Internet --> Netgear WAN port| Lan Port of Netgear (192.168.1.X) --> WAN port of Buffalo router (192.168.11.X) Internet is accessible from the Buffalo but cannot see the Netgear LAN easily. I can type in 192.168.1.1 from my 192.168.11.2 PC and log into the Netgear. I just want to be sure that the Buffalo connected clients cannot get to the Netgear connected clients. I dont think they can but if so I would like to know how so I can shut it off.
thanks Jim
0
rindiCommented:
Put it the other way round, first the router that should only see the internet, and then the other one. With your current configuration someone could change the ip settings of the networking interface to static, and use a netmask like 255.255.0.0 and may then be able to see everything of 192.168.x.x.
0
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

cbspectreAuthor Commented:
If I password protect the Buffalo router (Assuming no hard reset, and they could not change the IP range) could someone still bypass it through the wireless?
0
rindiCommented:
All they'd need to do is change the ip properties in their wireless card on the PC. They wouldn't have to do anything on the router, so if that is password protected or not wouldn't change anything. OF course you should still password protect it.
0
cbspectreAuthor Commented:
I tried what you said. I was able to set my Buffalo connected laptop with DHCP providing the 11.X Numbers to 1.X setting the Gateway and DNS to the 1.X router IP and could get to the internet. I couldnt get to the internal shared recources. I tried to access server shares and got messages about being inaccessable. Is that becaouse the router is handling the 1.X calls and not the PC? If this is true I am ok as is. But I do see your point on using the routers the other way. No one could back route in that case. Thank you for your assistance.
0
rindiCommented:
your welcome.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Wireless Networking

From novice to tech pro — start learning today.