[TriLUG] Dual Network Question

Aaron Bockover abockover.trilug at aaronbock.net
Tue Mar 15 10:22:51 EST 2005 

I do have the wireless secured with a 128 bit WEP key, and my admin
login isn't "admin:admin", but it is true... now some of the services I
am running on my network are exposed to the wireless devices too. A few
close friends of mine have my WEP key, but it'd be nice to be able to
provide something like limited access if no WEP key is provided, or
total access if the correct one is - but I doubt I can do that with a
$30 D-Link box. But since they are so cheap, I guess there's nothing
stopping me from buying another, and setting it up with the main network
as the "ISP", connecting through the WAN port. 

Here's a project for summer: what would it take to be able to pick up my
wireless signal from about 5 to 6 blocks away, in a slightly crowded
(trees and houses) neighborhood? I'd be great to have access to my
desktop from my laptop while sitting at the pool. Would a pringles can
on the roof pointed at the pool take care of this?

Regards,
--Aaron



On Tue, 2005-03-15 at 08:49 -0500, Tanner Lovelace wrote:
> Since wireless isn't nearly as secure as wired, running wireless on 
> a separate subnet actually does make sense from a security 
> standpoint.  But, it would be nice to combine that with a good
> VPN setup where you could run a laptop through the wireless
> but still make it show up in the local network and have all the
> same services it would have if it were connected to the wired
> network.  Unfortunately, setting that up ins't nearly as easy as
> setting up a wireless access point.  If anyone's got something
> like that setup, I'd love to hear about it.  (Note, btw, that I'm
> not talking about SSHing into the network.  I'm looking for 
> nothing less than a full VPN setup where the wireless laptop
> through the VPN ends up on the same subnet as the internal
> network.)
> 
> Cheers,
> Tanner
> 
> 
> On Mon, 14 Mar 2005 20:28:24 -0500, Joel Ebel <jbebel at ncsu.edu> wrote:
> > Do you really need your wireless network to be on a different subnet?
> > Why not turn off the routing/dhcp functions of the wireless router and
> > just use it as an access point?  Don't plug anything into the WAN port.
> >   Then all your systems, wireless and wired will be in the same subnet
> > and connecting between them will be straightforward.
> > 
> > Joel
> > 
> > Aaron Bockover wrote:
> > > I'm sure this general question has been brought up before, but I'm
> > > having a heck of a time figuring this out...
> > >
> > > I have a decent sized home-network, with an old PC serving as a router
> > > (Smoothwall). The gateway/LAN address for it is 192.168.0.1. It is the
> > > primary network, and serves the DSL connection. I've got a switch with
> > > about 15 devices on it, including a D-Link AirPlus G wireless router.
> > > The gateway/LAN address for it is 192.168.1.1.
> > >
> > > Its WAN interface is configured to connect to the primary network, with
> > > a static WAN IP address: 192.168.0.20. The MAC address for the D-Link is
> > > entered for that IP address in my Smoothwall config. The DNS entries are
> > > all correct on both routers, and when I connect to the D-Link with my
> > > laptop, I can access the Internet through the primary router. All is
> > > okay here.
> > >
> > > I would *really* like to be able to access systems from the wireless LAN
> > > on the primary network. My desktop is wired into the 192.168.0.1 LAN,
> > > but my laptop connects wirelessly on 192.168.1.1. I would love to be
> > > able to SSH/Remote X to my desktop from my laptop, and also access other
> > > services/servers on my primary LAN.
> > >
> > > I have tried forwarding ports from the 192.168.1.1 LAN to the WAN IP
> > > (192.168.0.20), hoping the Smoothwall router would then broadcast those
> > > forwarded requests into its LAN, but to no avail.
> > >
> > > What am I missing here?
> > >
> > > Thanks,
> > > Aaron Bockover
> > >
> > >
> > --
> > TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> > TriLUG Organizational FAQ  : http://trilug.org/faq/
> > TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> > TriLUG PGP Keyring         : http://trilug.org/~chrish/trilug.asc
> > 
> 
> 
> -- 
> Tanner Lovelace
> clubjuggler at gmail dot com
> http://wtl.wayfarer.org/
> http://www.freeiPods.com/?r=8127171
> (fieldless) In fess two roundels in pale, a billet fesswise and an
> increscent, all sable.

More information about the TriLUG mailing list