ER605 hierarchical under ER605 & NAT challenge

ER605 hierarchical under ER605 & NAT challenge

12 Reply
Re:ER605 hierarchical under ER605 & NAT challenge
2024-10-18 13:28:26 - last edited 2024-10-18 13:29:57

Hello @EricPerl,

 

thank for your explanation.

 

You should be careful with statements like "Your understanding of VLANs is, to say the least, incomplete".

 

I'm not talking about setting up VLANs. For me, one address range is enough for almost all devices, but there is one special device that needs address translation and that calls for NAT for me. Unfortunately, I can't manage this under one roof in the OC200, but have to manage the second ER605 separately. Then it should work.

 

The Fritz!Box is still a leftover and will certainly be abolished. But I don't want to turn all the network wheels at the moment.

 

  0  
  0  
#12
Options
Re:ER605 hierarchical under ER605 & NAT challenge
2024-10-18 15:42:21 - last edited 2024-10-18 15:43:00

  @Sheep_Dog 

 

There is no effective difference between using NAT translation to access a device with aspecific IP behind a 3rd router, then just having that device, with its specific IP, on a seperate vlan coming from the main router.  No difference at all.  You can aoply all the same security, IP range, gateway addresses, everything you need for that device on a vlan, without having to touch the IP addresses on your other devices.  You can apply the vlan on a seperate port, or the same port as existing cabling.

 

You yourself asked, in your first post, how to traverse your network to access that device, and we have given you that information, guides, screenshots but you are simply ignoring anything that doesnt fit with your own idea of how to do it.  There is nothing stopping you setting up that vlan for that device (easy) without changing anything in your existing network.  As its a mini computer, you can even assign the necessary 802.11Q vlan tag on its ethernet port directly so you dont even need any extra switches.

 

The end result of what you want - access devices on different IP ranges is NO DIFFERENT AT ALL to how millions of homes, schools, businesses are set up worldwide.  USING VLANS.  I dont know of any IT team or individual who would want to set up 3 layers of NAT translation just to access a single device.  thats nuts.  Sorry you dont aggree with that, but it is.  Nuts.

  0  
  0  
#13
Options