adding a second router to a LAN to segregate personal from business

Posted on 2012-08-13
Medium Priority
Last Modified: 2012-08-13
We have a LAN that is a router and a couple of hubs and there is one internet modem connected to that. In order to allow personal computers to have internet access, but not have LAN access, I have been linking a second router via one of the hubs ports so that  we could have a separate network and all share the same internet modem. I would like to know about security.  The reason for the second router is simply so that others can use the internet without being on our company LAN.  Hopefully I am making sense. This is a small home based company and the LAN is for the SBS and workstations. The second router is for personal computer use.  By doing it this way, am I keeping the personal computers separate and segregated from the company LAN?
Question by:wfcrr
1 Comment
LVL 60

Accepted Solution

Cliff Galiher earned 2000 total points
ID: 38290295
Unfortunately not, if I understand the topology as you described it. The problem is that by plugging into one of the ports on the hub, you still have full layer-2 connectivity and someone with talent can manipulate that....even if that person is remote or has compromised one machine in some way.

You can solve this situation with VLANs if your network equipment supports it. Or you can segregate your entire network at the layer-3 level with a better router or by putting a routing-capable OS at your network edge with multiple discreet legs...something like untangle would work.

But as it stands now, you have some planning to do.


Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
If you try to migrate from Elastix to Issabel, you will face a lot of issues. These problems are inevitable but fortunately, you can fix them. In the guide below, I will explain how I performed the migration while keeping all data and successfully t…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question