poor1990
I Have Broadband
join:2003-10-31
malaysia
| [Connection Sharing] Complicated network setup. Need help!!
I'm in the midst of this total network mess that I've worked myself into and I'm at my wits end on what is the next step I should take so I hope the people here can give me some guide. Here are the details
DSL Aztech DSL Modem Linksys WRT54 wireless router D Link 704 wired router D link 24 port switch 20 computers
I've got my telephone line running into the Aztech DSL modem/router and I've configured the ip address at 192.168.2.1 and the gateway and dns server at 192.168.2.1 too.
From the Ethernet port of the Aztech, the Cat 5 cable runs into the linksys wireless router and i have the linksys at 192.168.1.1. All devices whether wireless or wired plugged into the 4 ports at the back of the linksys have no problem accessing the internet and these devices automatically aquire the 192.168.1.x ip range with 192.168.2.1 as the DNS server.
From one of the 4 ethernet ports on the linksys, I run another cat 5 cable into the WAN port of the d link wired router. This is where the problem starts. The d link has 10.1.1.1 as the gateway and 10.1.1.1 as the dns server. I've configured the D Link WAN to be from a static ip ISP and keyed in the ip address of the linksys in the configuration.
The problem is all devices plugged into the d link router whether directly into one of the four ports or thru the network switch is unable to access the internet.
The reason for this additional D link router is so that the 20 computers sitting on the switch have certain sites and ips blocked while my laptop has full access to the internet thru the linksys.
I've tried connecting the cable coming from the linksys into the ethernet port on the d link instead of the WAN port but it doesn't seem to be helping.
Some people have told me its something to do with configuring the routing.
I hope somebody can help me thru this mess because at present only my laptop has access to the internet while the rest of the 20 people can only be connected amongst each other but not to the internet. Thanks in advance. |
|
Serbtastic
You Know How Many People I Have Buried?
Premium
join:2002-02-24
Stoney Creek | From one of the 20 non-working machine, run the following:
ping 192.168.1.1
ping 192.168.2.1
Post results. |
|
Leathal
Premium
join:2002-02-09
Toronto, ON
| reply to poor1990
You are double possibly triple NAT'n your internet connection, you should have only 1 modem (router fully open), 1 router (Modem to the WAN), your switch, and a WAP54G (access point) on your LAN if you need to add other computers via a wireless connection.
Your router doesn't even have to wireless and I would suggest for security reasons that it wireless should be disabled or a non-wireless router be used.
I would suggest for 20 workstations that there be a domain controller to apply more security on your network.
Leathal |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| Hi serbtastic, pinging both ip shows request timed out.
Hi leathal, could you explain a bit more regarding your post? Assume I'm quick a noob at this sort of things  I don't don't wats NAT |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| Oh okay, I know what does NAT mean now. I think at the linksys, there is a single NAT but at the D link router level there is a double NAT. So it doesn't work when there are 2 NATs? Can I bridge them/link them together or something?
If I use your method Leathal, I wouldn't really be able to isolate the few computers that I want to have full internet access (through the linksys) and the rest of the 20 workstations to have some websites blocked (through the D link) |
|
Serbtastic
You Know How Many People I Have Buried?
Premium
join:2002-02-24
Stoney Creek
| reply to poor1990
said by poor1990  :I've configured the D Link WAN to be from a static ip ISP and keyed in the ip address of the linksys in the configuration While Leathal is correct that double NAT is not a good thing, it should not block internet access to the 20 machines. The above quoted line is what concerns me the most. Can you explain exactly what you mean and what IP/subnet mask you are using here? |
|
Leathal
Premium
join:2002-02-09
Toronto, ON
| said by Serbtastic :said by poor1990 :I've configured the D Link WAN to be from a static ip ISP and keyed in the ip address of the linksys in the configuration While Leathal is correct that double NAT is not a good thing, it should not block internet access to the 20 machines. The above quoted line is what concerns me the most. Can you explain exactly what you mean and what IP/subnet mask you are using here? Serbtastic, it can because both routers tied together have different NAT tables programmed into them, so the potential for issues is there. I would suggest he move one of his router out of the picture and see if the computers can talk on the internet (of course he will have to enable DHCP server on the one router and reboot the machines).
Leathal |
|
Serbtastic
You Know How Many People I Have Buried?
Premium
join:2002-02-24
Stoney Creek
| said by Leathal :it can because both routers tied together have different NAT tables programmed into them, so the potential for issues is there Each router's NAT table is unique to itself, and not shared with the other. This would only be a problem with certain protocols (like certain VPN protocols) that have issue with the source IP being changed and would also cause problems with any incoming traffic (port would have to be forwarded on border router to the WAN IP on the internal router, and then forwarded again to the client's IP on the internal router).
This should not completely block client initiated http traffic. |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
2 edits | Concur with Serbtastic as the returns will find their way to the correct PC if initiated by the PC, at least in theory never have gone to that third level myself..... Maybe there is a law of diminishing routers 
Hey Serb, these toronto it guys, don't have a clue when it comes to low tech solutions! |
|
bbarrera
Premium,MVM
join:2000-10-23
Sacramento, CA
clubs:
 ·SureWest Internet
| reply to poor1990
I don't like to read "I've configured the D Link WAN to be from a static ip ISP and keyed in the ip address of the linksys in the configuration." because you are saying the Linksys LAN port and D-Link WAN port have the same IP address. And you description is a bit confusing because "d link has 10.1.1.1 as the gateway..." makes no sense if you are discussing WAN configuration, but does make sense if you are discussing the D-Link's DHCP configuration. But we have no clue which you are discussing and can only guess.
You need to carefully write down the settings on each of the 3 routers and post back in this thread. Do it like this:
quote:
Aztech WAN
IP = public IP from ISP
Gateway = ISP assigned
Aztech LAN
192.168.2.1
Aztech DHCP
Scope: 192.168.2.100-192.168.2.133
Gateway: 192.168.2.1
DNS: 192.168.2.1
And then repeat for each router. Help us help you |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
| said by bbarrera :I don't like to read "I've configured the D Link WAN to be from a static ip ISP and keyed in the ip address of the linksys in the configuration." because you are saying the Linksys LAN port and D-Link WAN port have the same IP address. And you description is a bit confusing because "d link has 10.1.1.1 as the gateway..." makes no sense if you are discussing WAN configuration, but does make sense if you are discussing the D-Link's DHCP configuration. But we have no clue which you are discussing and can only guess. You need to carefully write down the settings on each of the 3 routers and post back in this thread. Do it like this: quote:
Aztech WAN
IP = public IP from ISP
Gateway = ISP assigned
Aztech LAN
192.168.2.1
Aztech DHCP
Scope: 192.168.2.100-192.168.2.133
Gateway: 192.168.2.1
DNS: 192.168.2.1
And then repeat for each router. God help you Yes, concur the configuration does need a bit of divine inspiration!!
--
Ain't nuthin but the blues! "Albert Collins".
Leave your troubles at the door! "Pepe Peregil" De Sevilla. Just Don't Wifi without WPA, "Yul Brenner"
LlamaWorks Equipment |
|
Serbtastic
You Know How Many People I Have Buried?
Premium
join:2002-02-24
Stoney Creek
| reply to Anav
said by Anav :Hey Serb, these toronto it guys, don't have a clue when it comes to low tech solutions! Agreed, you should see what we sometimes have to make do with here in the 'Creek! |
|
bbarrera
Premium,MVM
join:2000-10-23
Sacramento, CA
clubs: | reply to poor1990
I'm guessing RIP is disabled on the D-Link and possibly other routers. In my experience you either need RIP enabled or static routes. But before we get to that lets examine how your routers are configured. |
|
Jahntassa
What, I can have feathers
Premium
join:2006-04-14
Conway, SC
| reply to poor1990
Shouldn't it be like this...
Aztech WAN: Public IP
Aztech LAN: 192.168.2.1
Linksys WAN: 192.168.2.2
Gateway: 192.168.2.1
DNS: 192.168.2.1
Linksys LAN: 192.168.1.1
DLink WAN: 192.168.1.2
DLink Gateway: 192.168.1.1
DLink DNS: 192.168.2.1
DLink LAN: 10.1.1.1
Neither the Linksys or Dlink will act as a DNS Server/repeater, but I believe the Aztech modem will. I think this configuration will work as long as each higher router sees the previous router as the gateway. |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| reply to Anav
Hi guys firstly thanks a lot for the help.
As Anav has said, here is the information
Aztech WAN
IP = public IP from ISP
Gateway = ISP assigned
Aztech LAN
192.168.2.1
Aztech DHCP
Scope: 192.168.2.100-192.168.2.133
Gateway: 192.168.2.1
DNS: 192.168.2.1
Linksys WAN port
Cat 5 cable coming in from Aztech Modem
Linksys LAN
192.168.1.1
Linksys DHCP
Scope: 192.168.1.2- 192.168.1.254
Gateway: 192.168.1.1
DNS: 192.168.2.1
D Link WAN port
There is nothing plugged into here. The cable from the Linksys plugs into one of the 4 ports. The cable to the switch is also plugged into one of the 4 ports.
D Link LAN
10.1.1.1
D Link DHCP
Scope 10.1.1.2-10.1.1.254
Gateway: 10.1.1.1
DNS: 10.1.1.1
Hope this helps |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| reply to bbarrera
In response to Serb and bbarrera, initially I plugged the cable coming from the linksys going into the D link into the D LINK's WAN port instead of the LAN port and I configured the D Link's WAN to be of static IP and I keyed in the Linksys's ip address into the D link configuration which is
IP: 192.168.1.1
Gateway: 192.168.1.1
DNS: 192.168.2.1
and it didn't work.
So I tried another method as mentioned above which was to plug the cable from the linksys into the D link into the D Link's LAN port instead of WAN port and it still didn't work. So i'm at a lost on what to do now. |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| If I change the ip address configuration for both the linksys and the D link to be the same that is
scope: 10.1.1.3-10.1.1.254
Gateway: 10.1.1.1
DNS 192.168.2.1
instead of unique ip address configuration for the 2 different routers will it work?
Will there be conflict of ip addresses in that case? |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia | so Jahntassa, over at the WAN configuration for the D Link i've to select not PPPoE or dynamic ip but static IP is that right? |
|
Jahntassa
What, I can have feathers
Premium
join:2006-04-14
Conway, SC
| reply to poor1990
If you go from LAN on the Linksys to LAN on the DLink, not only will you have conflicting DHCP servers, but you also defeat the purpose of having multiple routers.
Your error was when you had the DLink WAN plugged into the LAN of the Linksys and you set a static IP on the Dlink. Just set the DLink WAN port to DHCP so it pulls the data it needs from the Linksys. You CANNOT set the linksys IP as DNS on the Dlink because the Linksys WILL NOT act as a DNS server. |
|
poor1990
I Have Broadband
join:2003-10-31
malaysia
| Hi, I did as Jahntassa suggested and I managed to get computers on the linksys and d link to talk to each other. The 20 computers on my D link can now access the web configuration of both the D link and the linksys. I followed as you said setting the DHCP on the D link and the linksys automatically assigned the D link with an ip address.
The problem now is that I've problems getting the linksys to talk to the DSL modem which means my entire network cannot access the internet at all. I think while doing my stuff i might have accidentally reset the modem causing all the configuration to reset. I'm not sure if I should choose dynamic, static or PPPoE on the linksys so I tried everything and none works. If I plug in the DSL modem directly into my laptop, my laptop is assigned an
ip address: 192.168.1.4
subnet: 255.255.255.0
gateway: 192.168.1.1
dns: 192.168.1.1
and i can serve the net without any problems.
But when I plug in that same cable into the WAN port of my linksys and connect wirelessly or plug my laptop into the LAN port of the linksys or through the 24port switch then I can't access the internet at all.
By choosing dynamic then clicking on the status of the linksys, I can see that an ip address (192.168.1.5) and subnet mask (192.168.1.5) has been assigned by the aztech to the linksys but the gateway is 0.0.0.0 and the dns is blank.
So i decided to select static and key in the ip addresses myself which was
ip: 192.168.1.5
subnet: 255.255.255.0
gateway: 192.168.1.1
dns: 192.168.1.1
and it doesn't work still.
Selecting PPPoE doesn't make things any better. So i'm in a total mess! Please advice. Thanks. |
|
