Securing network from a subnet?
Posted on 2008-06-14
I have a home network set up as 192.168.184.xxx. The router is configured as a DHCP server with IP address=192.168.184.1 and subnet mask 255.255.255.0. So far so good, been running fine for years.
I have placed a router on the network for guests to use (I'll call this the subrouter). The main router assigns it an IP address, and the subrouter is configured as a DHCP server to assign IP address 192.168.0.xxx. This is also working fine.
What I want to achieve is for the guests, who receive 192.168.0.xxx addresses from the subrouter to be able to
(1) access the internet via the main router
(2) access other 192.168.0.xxx devices (such as a printer in the guest quarters)
(3) NOT access other 192.168.184.xxx devices on the main network (such as my desktop computer and file server) -- only internet access via the main router, which is 192.168.184.1.
IN other words I want my guests to have their own little network which is contained in my network, can access the internet through it, but can't access my other network resources.
How do I achieve this? I suspect is has something to do with subnet masks settings, but I cannot seem to construct my search terms in such a way to readily find the answer.
Many thanks in advance!