Like every other website on the planet, SmallNetBuilder uses cookies. Our cookies track login status, but we only allow admins to log in anyway, so those don't apply to you. Any other cookies you pick up during your visit come from advertisers, which we don't control.
If you continue to use the site, you agree to tolerate our use of cookies. Thank you!

Router Charts

Click for Router Charts

Router Ranker

Click for Router Ranker

NAS Charts

Click for NAS Charts

NAS Ranker

Click for NAS Ranker

More Tools

Click for More Tools

LAN & WAN How To

Introduction

There are times when having two separate networks - both sharing the same Internet connection - can come in handy. For example, I recently helped a community center with its network setup. They needed to provide Internet connection to tenants who were renting space, in addition to their own shared Internet. They also shared a number of folders on the network, but weren't too careful about password protecting the shares.

Rather than trying to (unsuccessfully) enforce good file-sharing practices among users who didn't really have the inclination to learn them, I took a more pragmatic approach and separated the tenant and community center computers into their own private LANs.

Separate LANs can also keep your computer(s) safe from worm and malware infestation from your children's (or employees') machines. Let's see how it's done.

The Approach

This approach is essentially an extension of the technique described in the Setting up File and Printer sharing between two routers Problem Solver and has the same effect of blocking file and printer sharing traffic entering the WAN side of each router. The difference in this setup is that we've separated clients into two groups, each behind its own firewall that blocks any data not requested by a client behind the firewall trying to come into the WAN side of its router.

File and Printer sharing doesn't work between the two groups because although data passes through the originating computer's firewall just fine, it's blocked from entering the firewall of the computer in the other group. However, all clients can freely connect to the Internet as long as they initiate the data request, even through the request has to pass through two firewalls to get there.

More LAN & WAN

Wi-Fi System Tools
Check out our Wi-Fi System Charts, Ranker and Finder!

Support Us!

If you like what we do and want to thank us, just buy something on Amazon. We'll get a small commission on anything you buy. Thanks!

Over In The Forums

If I have a machine configured to use the OpenVPN client in Merlin's firmware, does the firewall still protect me, or does the tunnel bypass all prote...
hi, running 32799 on my rt-ac86uafter a while , a day or 2 or something, i am not able to pin my devices anymore in the other wifi bandso if i am in 5...
‚Äč QNAP's TS-332X is a 10GbE NAS that trades higher flexibility for lower price.Read on SmallNetBuilder
My RT-N66U, firmware 3.0.0.4.382.50702, works quite flawless as Media Bridge with one blue-ray player wired connected to it.The RT-N66U connects wirel...
I have heard and reading that it would be great to do this.I am not sure why or if something like this is needed in a home.Right now I have 3 8 port s...

Don't Miss These

  • 1
  • 2
  • 3