Solved

ip configuration and subnet configuration for crossing two networks

Posted on 2009-07-09
9
434 Views
Last Modified: 2012-06-27
Greetings,

I have an office network on the ip range of 10.96.4.x.  That network is physically connected at a certain switch to a camera network with the range of 10.1.1.1.  For some reason there is one switch in common on the two networks.  I think just to save cost.

One user on the office network needs to browse to a server on the camera network (10.1.1.21) or connect to it via rdp (remote desktop).  

If I configure that computer's ip settings to the 10.1.1.x range with a class c subnet I can use the camera application no problem.  Of course then it is off the office network.

If I configure the computer with its normal ip settings except to change the subnet to 255.0.0.0 then I can scan the camera network using angryip and ping 30 devices.  I can browse to a bunch of the cameras individually because they have web interfaces.  However I cannot either ping, browse to or use rdp to connect to the camera server.

I feel like it is pretty close because I can see the cameras.  I wonder if any networking experts can suggest anything.

Another option is to install a second network card in the machine in question but I am unsure how I would set it up so it wouldn't possibly mess up his current setup.  I'm not sure how requests on his machine would know which network card to use, especially since the video application is web based. However if it could be used through remote desktop connection so if there was some way to tell the computer that rdp traffic routes through the certain network card that might also be a solution.

Thanks for any suggestions.

Best regards,

Sky
0
Comment
Question by:skykuhl
  • 5
  • 2
  • 2
9 Comments
 
LVL 10

Accepted Solution

by:
Datedman earned 500 total points
Comment Utility
Just go to advanced TCP/IP properties and add another IP/subnet.  This assumes that you have a static IP--if you are using DHCP to get IP etc. you should be able to open a CMD box and type IPCONFIG/ALL and then set up a static IP (as your primary) with the same configuration you see there (IP, subnet, WINS, DNS, DNS suffix, etc.)  
There could be repercussions with the DHCP server trying to give out that address later but if the server is set up to avoid conflicts then you'll be fine.
OR, you can probably set a static route on the user's machine and the server.  Could make it any user but let's keep it to one for now for security reasons?
On the user's machine can set the route:
route add x.x.x.x y.y.y.y
where y.y.y.y is his own NIC's address and x.x.x.x is the server
On the server you do the same but set the route to the user's machine.  This ofc also assumes static addresses, you can use -p in the route statement to make it permanent.
0
 
LVL 6

Expert Comment

by:peter41
Comment Utility
It is not used often to have several IP addresses from different subnets on the same interface but it should work.
Simply put on machine in office network (which you want to have access to camera network) two IP addresses,
one from office subnet and second one from camera subnet. Windows adds all needed into routing table automatically.
Problems with routing table can come if some machine have more than one network interfaces.
0
 
LVL 10

Expert Comment

by:Datedman
Comment Utility
Isn't that what I just said? :)
0
 
LVL 10

Expert Comment

by:Datedman
Comment Utility
Oh BTW there are normally no routing problems with more than one subnet unless you do something like say, create multiple default gateways or overlapping subnets or something.
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 

Author Comment

by:skykuhl
Comment Utility
Ok, thanks very much. This sounds quite promising.

So, to clarify, if I set a second ip configuration on the client machine, I should not have to do the route command.  Or should I do both?

And I assume I just open a command prompt and type the add route command.

Thanks very much.  I greatly appreciate this information and I will try it out in an hour.

Sky
0
 
LVL 10

Expert Comment

by:Datedman
Comment Utility
If you have both subnets on the machine then you don't need the route commands because you will automatically route to those subnets.
0
 
LVL 6

Expert Comment

by:peter41
Comment Utility
IMHO, use only adding IP on client machine without route command.
0
 

Author Comment

by:skykuhl
Comment Utility
I didn't need to use the add route command.  I just configured the second tcp/ip configuration and I was able to reach the other network normally.

Thanks very much.  Great solution!!!
0
 
LVL 10

Expert Comment

by:Datedman
Comment Utility
Right, it's an either/or and adding the second ip/subnet is cleaner.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Enterprise networks where VoIP phones have been deployed frequently use port configurations that allow both a computer and an IP phone to be plugged into the same switch port but use different VLANs. On Cisco equipment I'm referring to the "native V…
SSL is a very common protocol used these days when browsing the web.  The purpose is to provide security to communication, but how does it do it?  There are several pieces at work that have to be setup before SSL will even work and it requires both …
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now