One of our clients has a small network (that we inherited) running Server 2003 and a mix of XP and one Windows 7 clients. There are also MAC’s, but I don’t want to complicate this any further. This client has just begun a project for a client where he has to have a secure system where only those members of his staff working on the project have any access to the data for this particular client. The client insisted that they have an isolated workstation on a different network with a static route setup between the separate computer hosting the client’s data and the staff allowed to access it. Not our way of doing it but that was what was required.
Here are details of the network:
NetgearCGN2000 router (router 1)
LAN ip: 192.168.1.222
WAN ip: from the ISP
DNS: from the ISP
Server IP: 192.168.1.253 (also running DNS Server)
To comply with the requirements of the project, a second router and computer were setup as follows:
Netgear RP614 (router 2)
LAN IP: 192.168.10.1
WAN IP: 192.168.1.201
From each workstation, a static route is set as follows:
ROUTE -p ADD 192.168.10.0 MASK 255.255.255.0 192.168.1.201
Have we missed something?