Mediacom with 1 Modem, 2 Routers and 2 IP Addresses ... How?

ubigdummie

Reputable
Mar 18, 2014
3
0
4,510
Hello guys,
I need help configuring my network. There are about 100 devices on the network right now in the range 192.168.1.1-192.168.1.254 . There are about 10 workstations I need to remain on the same network, but I also need a second NIC on each one connected to a separate network.
The purpose is to allow traffic from a specific piece of software to travel on its own network and to keep it private.

We have Mediacom, who provide us 1 modem. We have a block of 5 static IP addresses. Behind the modem, there are 2 NAT routers and 2 switches.

Can anyone tell me how to physically configure the routers so they can both be connected and provide their own set of IP addresses via DHCP? Can both routers be connected to the same physical network without having to be connected to each other? Or will one router have to connect to a LAN port of the other router?

I would like to think I can configure the static IP information on each router and just connect them both to the same switch. However, that seems to easy and I’m sure it is probably wrong.
If anyone can help me figure this out I would be very grateful.

Thank you!
 

ubigdummie

Reputable
Mar 18, 2014
3
0
4,510


Yes, it's at my office. There are only a handful of people, but there are lots of IP cameras covering multiple properties and other IP devices on the same network.

The current setup is basically:

Cable Modem --> Router 1 --> Switch 1, Switch 2
Switch 1 --> 3 Wi-Fi Access Points, 5 Network Bridges, Copier, 5 Printers, 5 Windows Servers, 10 IP Phones
Swtich 2 --> About 30 IP Cameras, 10 Workstations
Wi-Fi --> Multiple Laptops, Smartphones, Etc...

We've added a piece of software that handles sensitive client data. I know this won't be absolutely secure, but the public IP I provide to the vendor is scanned by them. They scan for opens ports and other security risks at the router level. What I want is for these workstations to maintain their current functions on the network such as file sharing, printing, being on the same domain, etc... At the same time, I want those same workstations to have a second network with Internet access via the 2nd router, but the same cable modem. They are all connected via Ethernet. I have added Wi-Fi to them to connect to the second router.

I hope I'm not going in circles here.

I did check out the thread you shared and I'm not sure it's exactly what I need. I'm familiar with making the 2nd router act as a switch just to provide network access, but I need a bit more than that this time.

The second router would be in a separate subnet (192.168.2.1 - x.x.x.255 for example). I will use something like ForceBindIP to bind the software to the Wi-Fi adapter.
 


This is about enough to say screw it and get a professional IT guy to come out and do it. LOL I've never worked with anything like you're talking about! I don't think ANYONE has! :D
 

USAFRet

Titan
Moderator


Either:
you can spend the time and money to do it,
or
you can spend the time and money, to do it, and then spend the money to have someone come behind you and do it right.

Seriously. This is a non trivial situation.
 


 


 

ubigdummie

Reputable
Mar 18, 2014
3
0
4,510
Thanks, guys. If I can't figure it out, then I'll work it out a different way. I'm not scared to get my hands dirty. I installed every piece of equipment here as well as the infrastructure. The alternate method will be to connect the 2nd router to a second Internet connection (possibly a 3/4G hotspot since the traffic will be minimal). However, I'm really wanting to get this working so I'm going to attempt it tomorrow. I will post what I figure out and which direction I have to go with it.

Thanks again!
 


I look forward to hearing how you did it. This will be a thread that I archive, but only if you fix it. LOL Good luck man!
 

USAFRet

Titan
Moderator


What I meant by my first comment was:
Can you get it working? Probably
Can you do it securely and efficiently? Probably not.

Either you already know how to build this (in which case you wouldn't be asking in here), or it will end up being less expense to hire someone that does know.