D-Link Forums
The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: coyotedemon on August 17, 2011, 12:24:48 PM
-
I need to manage two networks in a DFL-260. The default network is 192.168.0.0, and this networks works fine. But, i need to create a second network (192.168.0.0), and this two networks must be connected. In linux, i create a route (route add -net 192.168.0.0 netmask 255.255.255.0 eth1).
I try to create a vlan (vlan name vlan 10, vlan id 10, ip vlan 192.168.0.1, network 192.168.0.0/24, gateway 192.168.0.1), but i can't connect this two networks.
I try to seek in google, but i can't find help.
I'm waiting your response...
-
does it have to be the the same IP range?
-
Ohh, i'm sorry.
Original segment is 192.168.1.0/24
New segment is 192.168.0.0/24
-
ok .. obviously you have created one network and it working... but do you want you second network to use the same internet,firewall rules etc?.... sorry for all the questions but want to make sure i give the correct sollution
-
just thought about it..... ??? are you running 2 seprte networks... with 2 diff servers? if so... does each server have more than 1 NIC ? then in that manner it will take mere seconds to sort out your issue...... check the image (http://www.ntcs.co.za/test%20werner/Untitled-1.jpg)
-
I want to manage two separed networks.
Network 1: Servers.
Network 2: Users.
This two networks must to share Internet, firewall, and any other thing.
-
I'm thinking that image looks fine. i't can be a good option.
-
If you need to separate networks physically, you can use different interfaces for each network (ex, LAN and DMZ) or VLAN
In this case, DHCP is possible for each network from DFL
If you need just add one more network into your LAN segment add additional IP thru ARP publish and make Allow rules between networks under LAN interface
-
there is 4 ways to do what you want to do... but 2 main options... hardware or software
-
Networks 1 and Network 2 are separated and each network have a own switch. My idea is connect networks in a router. When I tried with VLAN, i can't connect this two networks.
Please forgive me because my english is'n good.
-
Let's use one of LAN ports as VLAN
Objects > Address book > InterfaceAddresses
Add objects
vlan2_ip = 192.168.0.1 # additional IP for DFL
vlan2net = 192.168.0.0/24
Interfaces > VLAN
Add VLAN interface, ex vlan2 using vlan2_ip and vlan2net
Interfaces > Switch management
Change one of ports to use vlan2
Connect your additional switch to this port
Rules > IP rules
# allow traffic between networks
Allow lan/lannet vlan2/vlan2net all_services
Allow vlan2/vlan2net lan/lannet all_services
# simple allow internet for additional network
NAT vlan2/vlan2net wan/all-nets all_services
If you had other LAN-related rules (ex, DNS relay) make copy for vlan2 or change existing rules to use interface/subnet groups
-
Did this work ?
-
I can't find Interfaces -> Switch management.
I tried without this option, but nothing happends.
-
Hmm.. Sorry, i've think you have DFL-260E
In this case, you dont need create VLAN, use DMZ interface and dmz* objects
If this interface is used, you need managed switch (L2)
Or, if both previous are not possible, but possible to mix networks in the same L2 segment, let me know, it's little bit different