Second Router for Guest Wifi

Toggle sidebar Toggle sidebar
jbseven

jbseven

Distinguished
Dec 2, 2011
646
0
19,160
I'd like to configure an old wrt54g running ddwrt so that guests can have wifi access to the internet without being able to access the private network.

I've tried the following configuration but it refuses to work.

Internet>PPPoE Connection>Router 1>LAN Cable>Router 2

Router1:
IP 192.168.1.1
DHCP Server On

Router2:
IP 192.168.2.1
DHCP Server On
Cable connected (tried both LAN and WAN Port)

Any advice on configuring this correctly? Every google results seems to say I've done things right...
 
Solution
B
If you hook up th wan port on router 2 and give it a wan IP address in the 192.168.1.x network with a gateway of 192.168.1.1 it should work. It will then NAT all the 192.168.2.x addresses to that single 192.168.1.x address which will then go to the internet at 192.168.1.1

The large BUT here is it will not protect your private network. The guest network can still get to 192.168.1.x addresses because from its viewpoint it is on the internet. The kicker is the private network cannot get to the guest network because of the NAT port forwarding problem.

The only way around this would be to restrict traffic in router 2 router to not be allowed to talk to any 192.168.1.x addresses other than the gateway on router 1.
Sort by date Sort by votes
B

bill001g

Titan
Aug 9, 2012
28,369
2,767
125,640
If you hook up th wan port on router 2 and give it a wan IP address in the 192.168.1.x network with a gateway of 192.168.1.1 it should work. It will then NAT all the 192.168.2.x addresses to that single 192.168.1.x address which will then go to the internet at 192.168.1.1

The large BUT here is it will not protect your private network. The guest network can still get to 192.168.1.x addresses because from its viewpoint it is on the internet. The kicker is the private network cannot get to the guest network because of the NAT port forwarding problem.

The only way around this would be to restrict traffic in router 2 router to not be allowed to talk to any 192.168.1.x addresses other than the gateway on router 1.
 
Upvote 0 Downvote
Solution
B

bill001g

Titan
Aug 9, 2012
28,369
2,767
125,640
The wan address needs to be something like 192.168.1.100. It MUST be in the same subnet as the main router. I am kinda surprised it even let you key that in. Normally it will not allow the wan and lan addresses to be in the same network The local gateway IP should be 192.168.2.1
 
Upvote 0 Downvote
jbseven

jbseven

Distinguished
Dec 2, 2011
646
0
19,160
Thanks will try this out later tonight as everyone at home's getting annoyed with my tinkering. I'm guessing iptables can be used to fix the privacy issue. Will look into that later too.

P.S. Hadn't hit save settings just yet then- just wanted to confirm first :D
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom