[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1084
  • Last Modified:

Dual IP addresses on one NIC.

Hi, I have a NIC that's set up with a routable IP address. I also need to have a non-routable 192 address on that machine for access to a storage device. So, I need to add a second IP address of the type 192.168... to the machine with the routable IP address, so it can access the storage device.

Is there a way to have 1 NIC service 2 different IP addresses?

If not, what other solution could I use to segment my storage device onto a completely separate logical network, without adding a second network card?

Thanks,
Fulano

Thanks for your help.
0
Mr_Fulano
Asked:
Mr_Fulano
  • 4
  • 3
  • 3
  • +1
2 Solutions
 
from_expCommented:
you can add more then one ip to nic
if we are talking about windows, go to nic's internet protocol properties, hit advanced and add additional addresses there
0
 
Darr247Commented:
That doesn't work if your IP is assigned by DHCP, btw... you'll have to manually enter the IPs you want it to use in the 'Advanced' list. And when I've implemented that feature before, the NIC always defaulted to the last address entered. So if you have a preferred IP you want it to show, enter it last in the 'Advanced' list.
0
 
Mr_FulanoAuthor Commented:
OK, first of all, I increased the points so each of you get points...
So, I think I understand...but I get one IP address from DHCH (the routable one) and one that would be the storage network's IP range (the fixed one). So, it would be something like this:

 --- 192.168.0.100    << the IP to access the storage network.  (Fixed)
 --- my routable IP that I get from DHCP every time I connect.   (Varies)

Would I just leave the DHCP option on, and then enter the 192 address in the advanced tab?

Thanks,
Fulano
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
Darr247Commented:
Hmmmm... I don't understand.
As I said, you cannot use the multiple addresses feature in the Advanced screen if you have the NIC's internet protocol set to receive its address via DHCP.  It simply won't allow you to enter one there... you'd have to use the Alternate Configuration tab instead.

Still, if you have only 1 NIC, how are you connecting to both an outside LAN that assigns an IP via DHCP and also connecting to a NAS box with that same NIC?
0
 
Rob WilliamsCommented:
I don't think the term "routable" is being used correctly here. All 192.168.x.x addresses are routable.
Regardless, if you have a second network set up for the storage device, you are best to add a second network adapter and assign it a static (fixed) IP address in the same subnet as the storage device.
It does however sound like you do not need a second address, but simply need to assign the 1 NIC you have a static address.
0
 
from_expCommented:
I do agree with RobWill, you can configure two static addresses, one from 192.168.0.100 and the second one which you refer as "routeble",but configured statically.
0
 
Darr247Commented:
Actually, I said it had to be a static address (not assigned by DHCP) in my original message.
Generally while you can make a computer be a bridge, what Mr_Fulano wants to do would be easily handled by an inexpensive router.
e.g.
http://search.ebay.com/search/search.dll?satitle=%28DLink%2CLink%29+604+router
Sort by 'ending soonest' and bid $1-$10 as they get close.
Just don't buy the one with a $65+ shipping charge indicated. ;-)

And there are literally hundreds of DI-524 and DI-624 et al routers on ebay for not much more if you wanted to add wireless G access.
Here's one for a DI-764 that just ended
http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=120219095486
that even included a DWL-650 (Atheros chip) wireless card, under $17 with shipping.
0
 
Mr_FulanoAuthor Commented:
OK, I think we're having a communication issue here...either I'm not expressing what I need to do correctly, or I'm not seeing how a router is going to help me do what I need to do.

So let me start again...I have a machine that is connected to a corporate network. I get an IP address from my network that is part of my company's network block via DHCP. I have one NIC on the machine that makes the connection described above.

Now I also have a storage device (a Raid 5 TeraStation) that I want to connect to my machine, but I do not want to use an IP address that belongs to my company's network block, because I want the storage device to be on a network of its own -- completely separate.

So, I want to assign the storage device an IP address of 192.168.0.100 (which is not routable across the Internet). Since the SAN will hold confidential information, I do not want anyone to see the 192 IP address on the main company network.

So, I need to assign the NIC a second IP address of the type 192.168... or add a second NIC and make the machine dual-homed, which I did not want to do.

I go back to my original question, which is -- can I have 1 NIC access two different types of IP address? One being of the 192.168 type and the other being one that belongs to my corporate network block?

Thanks for the help,
FDT  
0
 
from_expCommented:
hi!
i suppose you need a bit different configuration.
when you have 2 ip addresses on one nic it means you have one physical subnet with multiple ip subnets.
still if you can use sniffer well you always can explore your network and configure your pc with the different ip subnet.
so replace yourself with evil minded person and you'll understand that your san network is unprotected.
i suppose you have to create separate vlan for san network
this can be done using managed switches within your company.
placing your san into separate vlan will place san into separate physical subnet.
then you can configure your network card with vlans (for intel cards see intel proset tool) - this will create 2 virtual adapters on top of real one. one virtual adapter will receive ip from dhcp server in your corporate network, but the second one will be configured with ip address to reach san.
0
 
Darr247Commented:
Yeah... that's pretty much what I envisioned. I just don't see how you're going to connect 2 ethernet cables to that one NIC.

With the inexpensive router I pointed out (the DLink DI-604), the WAN port would hook to the company's network and get its WAN IP assigned by DHCP; you could even clone the MAC address of your computer's NIC so the corporate LAN still thinks it's talking to the same piece of hardware.

Your computer and the NAS box would connect to two of the router's four LAN (switch) ports. Your computer could use the static IP 192.168.0.2 with the gateway address of 192.168.0.1 (the DI-604's default LAN address) and the NAS box could have static 192.168.0.100 - no problem. If you WANT to leave your computer set to get a an IP from DHCP, just tighten the pool in the router's DHCP server to 192.168.0.2 to 192.168.0.3 and your computer should get .2 or .3 every time.

Your machine would see the NAS box through the switch, the corporate LAN through the router's WAN port, and the router's firewall (disabled by default) could keep other people on the corporate LAN out if desired (of course, you could allow FTP access in with the router if you wanted to, but that's also disabled by default). The default firewall rules block everything on the outside from requesting connections on the computer side of the router, but allow everyone on the computer side of the router to make connections out through the WAN port of the router and to each other on the LAN side. The router hides the 192.168.0.xxx addresses from the corporate network.

As RobWill inferred, 192.168.xxx.xxx addresses ARE routable, they're just reserved (along with 10.x.x.x, 127.x.x.x, 169.254.x.x, and 172.16.x.x through 172.31.x.x) and not intended to be directly accessible from the Internet... but routers certainly do 'route' them thither and yonder all the time.

That's pretty much how it would work with any router, but older SOHO wired-only routers like the DI-604 are getting to be incredibly inexpensive with everyone switching to wireless routers. You didn't say how big your corporate network is, but generally you shouldn't install a router like that without the knowledge of your IT people... but nor should you install a NAS box without the IT's being aware of it, either.
0
 
Mr_FulanoAuthor Commented:
To all, thank you very much for your advice and great configuration ideas. I have some new possibilities to consider given this exchange, but you've all been very helpful. As stated previously, I increased the points to Max, so I could award them to the best options. Thanks again,

FDT
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 4
  • 3
  • 3
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now