internal network

Posted on 2007-11-29
Last Modified: 2010-04-10
I have a scenrario here that i need help on.  I have a company wtih internal employess and when we have meetings with outside people that are visting and meeting with us.  my quesiton is how can we set up our internal network so the outside users can access their network without touching ours? say we have 20 users 10 are internal and the other 10 are outside how can i setup the network so they are separte from each other.
Question by:scripttron75
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Expert Comment

ID: 20378672
Im sure the outsiders have their Laptops. Set up an Access Point with DHCP on a different ip rang and subnet.

Author Comment

ID: 20378681
what if i dont have wireless?

Expert Comment

ID: 20378688
Set up an AP anyways. Its easier. What do these outsiders need to access?
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 20378714
ok what if they dont have wireless, i need to know down to the ethernet level not jsut wireless i have to do proposal, the outside users need access to their internal network office
LVL 54

Expert Comment

ID: 20378775

Do you have more than one external IP or just one?

If you have 2 then get two routers and a switch.  Connect the routers to the switch and run the modem into it.  Assign each router one of the external IP's for the WAN address.  The WAN port cable on the router would go into the switch instead of directly to the modem.  Basically the switch is now in between the routers and the modem.

If you only have one external IP then the switch would need to be a router.  The key to using the different routers is to make sure the IP's used in their respective LANs are not the same.  The main router would have the modem plugged into its WAN port and each "LAN's" router into its other ports.  The WAN IP would be your one IP or it would be set up to get it dynamically from the ISP.  It would assign IP's to the "LAN" routers or you could assign them manually.  These would be the IP's used for the WAN IP on the "LAN" routers.  The cable from the main router would go in the WAN port of each of the "LAN" routers.  Then all computers can connect to their respective router.  Wireless can be provided if you want with a wireless router or just an access point.  Both "LAN" routers would have Internet access because of the main router but not be able to access the other LAN.  Remember to assign a different IP range for DHCP and each LAN router's LAN IP for this to work.

That would be the basic idea.  Let me know if you have any questions or need more information.


Author Comment

ID: 20378811
what about VLANS

Author Comment

ID: 20378814
I have one IP provided by our ISP

Accepted Solution

tlrjohn earned 500 total points
ID: 20406387
Since you only have one IP, then you could use a switch with VLAN's.  To do this you would need a router forward the traffic from each VLAN to the ISP's IP.  You would also have to configure ACL's on the router to keep the traffic seperate.  Each VLAN would need to have it's own DHCP server, serving a different subnet.  You would also have to configure the switch, assigning specific ports for each VLAN.

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Connectivity issues after power outage 5 62 keeps getting hit from OpenDNS 12 60
ASA NAT rule change 3 22
Problems with VPN 4 22
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question