IP Camera Networking Help

jerrywolf · Oct 5, 2013

Hi Everyone,

This is my first post, but I've been reading a lot on here.

Here's our business's situation:
We have a network (It needs to be rewired because there's two main switches in two different locations tied together by really long patch cables - but that's beside the point). Our network has about 10 users in the office and one computer being used out in the shop, a few networked printers and other small devices, all networked to a windows server. The windows server acts as a DHCP server as well as runs active directory for the users and has file sharing for our database program and other miscellaneous files.

Basically it's set up like this:

All on 192.168.1.x

Modem/Router (TWC) ==Network Cable==> Firewall ==>Network Cable==>Switch 1

Switch 1 goes to half of the computers and devices, and also a cable to Switch 2 (different room)

Switch 2 goes to the other half of devices as well as the server (Same room as switch 2)

This network has worked for us for a long time, however we now have an added challenge: we would like to add IP cameras to our network.

However, with adding IP cameras from my reading, I have decided we don't want them clogging up our network, so I will be creating a new network for this purpose.

I purchased a router, a PoE switch, a synology disk station, and am ready to create the network. I understand that I can create a closed network and not attach it to the other network, and I'll have no trouble at all, however, the purpose of IP cameras is to make it so I can view them on any computer. I would like to start the IP cameras on 192.168.2.x, however, if I do this, I can't access them on a different subnet such as 192.168.1.x, right?

Here are my questions in that regard:
- If I plug the WAN port on the camera network into one of the ports on one of the main switches, and have dhcp on the camera router on, will the windows server try to give dhcp addresses to the cameras, or will it not interfere?

- If I plug the WAN port on the camera network into one of the ports on one of the main switches, will this slow down the other network, even though no data is technically going across those switches?

- I would be able to access internet on the camera network in this setup, correct?

Sorry for the long post, but I just would really like to understand this!

This forum is great..thanks all

Emerald · Oct 6, 2013

1) No. However, you should assign static IPs to the cameras and to the WAN side of the Camera router

2) No

3) Yes

jerrywolf · Oct 6, 2013

I hope this doesn't get posted again..some reason it didn't go. Anyway...

Thanks Emerald! This clears up almost everything just a few simple questions remain:

1) is this how most businesses would approach this - in other words am i on the right track for adding a camera network?

2) is the best way to assign static ips for the cameras to use dhcp reservations or to set them on each device. If i set them on each device, there's no need for a router on this second network, right? It will have nat and any other features off because it's plugged into another router, or maybe I'm totally wrong there.

3) in regard to physically installing the cameras, I was wondering how to run cable along the shop wall(it's painted concrete block), conduit? Also, should I terminate the cat6 into a keystone jack and then put a box in and connect the cameras using a patch cable, or should I go directly in to the cameras with the cat6. Whats more secure?

Thanks

Emerald · Oct 6, 2013

1) Yes, do to the traffic the cameras create a separate network is recommended

2) IP should be hard-coded into the cameras. leave the router as is just make sure that the camera IPs are out side the DHCP range of the router. if the range is set to .2 to .254, make the range smaller.

3) the network cable, running through conduit, should plug straight into the cameras, and on the other end either onto a Patch Panel or directly into the switch. I prefer directly into the switch.

jerrywolf · Oct 6, 2013

Ok thank you for all the help! One last thing, should the gateway on the camera router be the ip of the other router?

Emerald · Oct 6, 2013

The WAN IP needs to of the same IP scheme than the main network

The LAN side should be different.

all you need to do is set a static IP on the WAN and port forward to the static IP of the camera server

jerrywolf · Oct 6, 2013

So in other words, the camera server can be on the main network?

Emerald · Oct 7, 2013

No, the camera server needs to be on the same network then the cameras. If you mange to have the camera server on the main network and be able to communicate to the cameras through the camera router, you will create lots of traffic on the main network.

leave the camera server behind the camera router and do a port forward on the camera router so you can access the server. This will only create traffic on the main network when you check the server.

jerrywolf · Oct 7, 2013

Ok I get what you're saying. It just all came together for me i think haha. How can i forward a port from one network to another though?

Emerald · Oct 8, 2013

assign a static IP to the WAN side of the camera router

then connect a computer the LAN side of the camera router and log in

then port forward the necessary ports to the static IP of the camera server

jerrywolf · Oct 8, 2013

Ok I've never assigned a static ip to a wan port. Sounds like an interesting idea. With that setup it would be a static ip in the same subnet as the camera network for the wan right? Also then when I accessed this from the main network it would be going over the internet first in this setup right? Wow I thought I knew a lot before this

Emerald · Oct 9, 2013

the Static IP for the WAN of the camera router needs to be from the main network IP range. i.e. 192.168.1.253

to address the camera server you would directly address the static WAN IP of the camera router

Beachnative · Oct 9, 2013

Existing LAN
IP range 192.168.1.2 -.254 DHCP Pool .2 - .50 for static devices
Subnet 255.255.255.0
GW 192.168.1.1
DNS your DNS server from ISP
AltDNS 8.8.8.8

Camera Router set up

WAN IP 192.168.1.2
Subnet 255.255.255.0
Gateway 192.168.1.1

Camera LAN
Router IP 192.168.2.1
NO DHCP
IP RANGE -for Cameras/camera server 192.168.2. 2 - .254
Subnet 255.255.255.0
Gateway 192.168.2.1
DNS same as Main router

Set cameras to the above static IP's. If the camera server needs port 60001 open then port fwd 60001 to 192.168.1.2 in the main router then in the camera router port fwd to the IP of the camera server.
Make sure you have a static IP from your ISP for your mail router otherwise it's like trying to hit a moving target.......

jerrywolf · Oct 9, 2013

Thank you! should NAT be enabled on the camera network?

Beachnative · Oct 9, 2013

jerrywolf · Oct 12, 2013

Alright cool! Should I plug camera router wan into main switch or modem/router, or is it the same thing essentially?

Emerald · Oct 12, 2013

it should not matter

jerrywolf · Oct 16, 2013

So after talking to our it company today, I realized the "firewall" is actually the main router on our network and the "router" just acts as a wireless access point. He said the router is enterprise grade (cisco asa 5505) and supports vlans. Would setting up a vlan be the best option instead of the other router and forwarding? He's coming Friday to discuss this with me and i just wanted a little input first. Thanks

Emerald · Oct 17, 2013

you should be able to accomplish the something using a VLan

IP Camera Networking Help

Honorable

Titan

Honorable

Titan

Honorable

Titan

Honorable

Titan

Honorable

Titan

Honorable

Titan

Honorable

Honorable

Honorable

Honorable

Titan

Honorable

Titan

Share this page