Solved

Two Subnets On Same Physical LAN on SBS2003 domain

Posted on 2013-11-13
14
365 Views
Last Modified: 2014-05-22
I have a SBS2003 domain with a 192.168.0.x , I have a vendor that installed some audio equipment that has to be on a separate subnet 192.168.3.x . These are connected to the same physical LAN and need to be able to communicate between the 192.168.0.x & 192.168.3.x - and the 192.168.3.x needs access to internet (192.168.0.2)GW

I have created a route statement in the SBS2003 server - but still cannot get them to ping or communicate. My server's IP is 192.168.0.1 and gateway 192.168.0.2

I am missing something somewhere.
0
Comment
Question by:flyboyldb3909
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
  • 3
  • +1
14 Comments
 
LVL 35

Expert Comment

by:Kimputer
ID: 39645175
You said physical lan, as in, both subnets are on some switches ? or you mean, they only "meet" at the server ?
If both subnets are connected through switches, have them all changed to subnet 255.255.0.0 instead of the traditional 255.255.255.0
A route statement on the SBS2003 Server works only if the server itself is a router., but you said gateway is 192.168.0.2 which makes me doubt it.
0
 

Author Comment

by:flyboyldb3909
ID: 39645300
Correct, the server is not the router.  The 192.168.3.x is connected to a separate switch - just because of distance and only one LAN cable was available - there are 5 devices connected to the 192.168.3.x side.  So do I need to get an appropriate router? Currently they are utilizing a Linksys home type router.
0
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39645466
So you've got the same VLAN running two subnets.  It's good that everything is on separate switches as this makes it easy to separate everything using a router.

The Linksys router will do fine for this.  All you need to do is disable NAT on the Linksys router and add a route to the 192.168.3.0 network via the Linksys router's WAN IP to your internet router.

To explain,

The Linksys router will have 192.168.3.1 255.255.255.0 on its LAN interface (for example).  All of the devices on the 192.168.3.0 addresses would use 192.168.3.1 as their default gateway.

You connect the WAN port of the Linksys router to the switch where your server sits, using the cable that links the two switches together, and one of the LAN ports connects to the switch where all the 192.168.3.0 devices connect.  The WAN port of the Linksys router uses IP address 192.168.1.254 255.255.255.0 and it would use the internet router's IP address as its default gateway on the WAN port.

That should allow both subnets to see eachother.
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 

Author Comment

by:flyboyldb3909
ID: 39646305
The WAN port of the router is connected to the ISP (Internet) and has a static public IP address. Can't take away from this. So now how to handle?
0
 
LVL 35

Expert Comment

by:Kimputer
ID: 39646323
As you said, you need to communicate between the two subnets anyway (instead of some trust issues, like 2 competing companies), so just use my solution (see first post). No need for extra hardware.
0
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39646329
@kimputer: OP says...
I have a vendor that installed some audio equipment that has to be on a separate subnet 192.168.3.x
That means you can't simply change the subnet mask as that would make everything on the same subnet.
0
 

Author Comment

by:flyboyldb3909
ID: 39646335
"If both subnets are connected through switches, have them all changed to subnet 255.255.0.0 instead of the traditional 255.255.255.0"

So change the subnet to 255.255.0.0 on the switches only? No other devices need this?
0
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39646342
Change the subnet mask on ALL devices is what Kimputer was suggesting.
0
 

Author Comment

by:flyboyldb3909
ID: 39646351
That would be a lot of effort for the 192.168.0.x side.  I have a SonicWall router on order for them which should make the process easier to accomplish. If I could find a solution without them purchasing a new router - that would be great.

Just FYI for one of the post the mentioned vlans - no VLANS configured.
0
 
LVL 46

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 39646439
The post regarding VLANs was me.  When you have a flat network it can be considered as one VLAN (even though there are none configured).

In a situation where you have to have different subnets, you need to physically separate them if you have no VLANs, unless you can configure more than one IP address on the router's LAN interface.
0
 
LVL 35

Expert Comment

by:Kimputer
ID: 39646484
To change everything in one go, just configure your DHCP server correctly. Collect all Mac addresses, and put them all (and configure and assign a fixed ip address) in the reservations list.
0
 

Author Comment

by:flyboyldb3909
ID: 39650018
I am hoping I can make it simple with a SonicWall Router.  Will update once it comes in.
0
 
LVL 28

Expert Comment

by:masnrock
ID: 39650959
Just to keep you informed, what Kimputer's suggestion does is actually create a large subnet containing all of the ip addresses you want to use. So in reality, you will only have one subnet, but all machines will be able to talk.

If you absolutely must have two subnets, then you need to take a different approach.
0
 
LVL 28

Expert Comment

by:masnrock
ID: 39650966
Btw, a subnet mask of 255.255.252.0 would have sufficed. And made for a smaller broadcast domain.

Also, please remove the route statement if you are changing the subnet mask.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question