Solved

How to move from public IP based network to private IP LAN but using WAP with public IP

Posted on 2007-04-10
4
269 Views
Last Modified: 2013-12-27
Hello ExEx,

There is probably a very simple answer to this question but I can't quite figure it out!

I have a network comprising of 3 pcs and a Mac, no server, on a workgroup, all with manualy assigned public IPs.
We have a block of 8 IPs for our use on a subnet of 255.255.255.248 and a default gateway in the same public IP range for all the offices to share.
The office is in a serviced office block and we access the default gateway using their wireless access point.

We want to install a server and move onto a local private network IP addressing system for our office.
That is, we would like our pcs, Mac and server to be on the 192.168.0.0/24 range behind a hardware firewall.

However, we can only access the internet through the wireless access point with its public ip as the default gateway.
So I am thinking that I will need to install a router which will have a private ip on the internal NIC as the internal default gateway address, but on the external wireless interface connecting to their wap it will have to have the original public ip default gateway on the 255.255.255.248 subnet??

If this is the case what would be the appropriate hardware to use for this setup?

I do hope this makes sense but I am very happy to clarify this if it doesn't.
I am awarding 125 points for the most useful suggestion, however if this question is more difficult to answer than I imagine I am happy to increase the points value.
Look forward to hearing your suggestions.

Regards
Paul
0
Comment
Question by:PaudhlLambert
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:Zenith63
ID: 18884743
Yes you've got the right idea.  This router will have one of the public IPs (the first would be normal practice), the subnet 255.255.255.248 and the public IP address you mentioned as its gateway.  You then set the internal interface IP of the router to say 192.168.0.254 with a subnet of 255.255.255.0 and all clients have IPs in that range (best if your server runs DHCP and allocates these).

Now as to what router to get I'm not sure, I've never used any with a wireless WAN interface, it's just not the normally done thing.  Is there no hope of getting a wired connection to the network?  It will greatly improve performance and reliability.  Is the WAP you're accessing nearby, like in your office?  A lot of the bigger ones have LAN Ethernet ports that you could just hook into.  I'd strongly recommend looking into getting this wired, you'll only regret it in the long run if you don't...
0
 

Author Comment

by:PaudhlLambert
ID: 18888062
Hi Zenith63

I've just checked in and seen your reply, thanks for posting so quickly.

That's exactly what i had in mind too.  I also get to the point where I am trying to find the sort of hardware that can do what I want it to, and then I draw a blank.  It is not possible to wire into their WAP, all the offices have to connect wirelessly to the gateway for internet access and, yes, it is slow and a pain, but we cannot do anything about it.

Would it be possible to use a WAP as a bridge from their external WAP to a router on our internal network.  The bridge would be have one of our original public IPs on the 255.255.255.248 subnet and the external WAP IP as the gateway.  The router would wire into the internal WAP and have one public IP on the same subnet and the external WAP IP as the gateway on the WAN side, and say 192.168.0.254 on subnet 255.255.255.0 on the LAN side.  The PCs, etc would have the gateway set as 192.168.0.254?

Any ideas?
Regards
Paul
0
 
LVL 11

Accepted Solution

by:
Zenith63 earned 125 total points
ID: 18888357
Yes with the right equipment that should work, but it's uncharted territory for me I'm afraid.  The best thing to do is try and contact a technical sales rep in say Lynksys or Zyxel and ask which of their products will do the job.  It will be a bit messy to setup but should work as you suggest.

Is their WAP in your office?  If it has an ethernet port in the back you could just pull it out and stick it into your router's WAN interface and try to get it working that way, assuming the WAP isn't shared in which case the other companies around you may not be impressed.
0
 

Author Comment

by:PaudhlLambert
ID: 18888844
No, their WAP is isolated somewhere in the building, and it is shared by all the other offices, so hooking up directly to it isn't an option I'm afraid.

I shall do as you say and call tech support for some advice on how best to achieve a solution by bridging.
I will post back when I have spoken to them and let you know what they suggest.

Thanks for your help.
Paul
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now