Connecting 2 networks
Connecting 2 networks
Hello. I have a TP-Link ER605 v1 router. I have 2 networks that converge to the router ports. Network 1 192.168.0.1-254 DHCP server is working Network 2 192.168.1.1-254 DHCP server is working I would like to connect them together so that the DHCP servers continue to work as they do but do not give out addresses to the opponent. I was wondering, for example, if it is possible to block the ports responsible for DHCP UDP 67 and 68 in some way? Or how else can I do it? Please describe it in a relatively simple way. Thank you and best regards.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Your DHCP servers should only assign IP addresses to devices contained in their VLANs - they already seem to be on two different networks? .1.0 /24 and .1.1 /24 ?
Im not sure what you are trying to do with regards "connecting them togther", can you give a simple diagram ?
- Copy Link
- Report Inappropriate Content
This is my network 192.168.0.1-254 and there is a DHCP server in it that hands out IP addresses to my devices. I also have my own internet provider. This is the network of a friend I want to connect to. 192.168.1.1-254 and there is a DHCP server in it that hands out IP addresses to my friend's devices. My friend also has his own internet provider. We want to have a common local network so that we can share files.
- Copy Link
- Report Inappropriate Content
You need to seperate these networks with different VLAN tags on a trunked link and preferably through a managed switch with untagged access ports..
Connecting two seperate network togther, which have the same native vlan tag will lead to strangeness
- Copy Link
- Report Inappropriate Content
Could it be done like in the picture? Connect port 3 and 4 with a cable and assign vlan10 there. Port 2 and 5 are the default vlan1.
- Copy Link
- Report Inappropriate Content
No, the router can only assign networks to vlans, it cant just process the traffic like a managed switch can - in your scenario, you will create a loop and it will kill all networks and probably crash the router.
I havent tested this, but.... you might be able to do this
Create a second network on the router, with a different vlan number (say, 10) matching your friends IP range (.1.X) and give it an IP, but disable DHCP on that network on your router.
Then, assign it an untagged port (which you can do in standalone in networks > vlans), which you then connect your friends network to
It should allow you to bridge the two networks - but on your friends router he will need a static route pointing to your routers IP on his vlan
eg
Your side, of your ER605 VLAN 1
192.168.0.1 (router)
DHCP .0.1 - .0.254
His side of your ER605 router, VLAN 10
192.168.1.10 (router IP)
DHCP Disabled
Untagged LAN 4 port
His router
static route 192.168.0.0/24 > next hop > 192.168.1.10 (your routers IP on his network)
Your Router should not need a static route to his network, as it has a gateway IP on it so it "owns" the traffic coming from your side and recieved from his side to its IP and will route it correctly.
His router needs the route as it wont have any idea what to do with traffic on his side going to your IP range when it hits his router, so the static route points it to your routers IP on his network, otherwise it will just drop all traffic coming form his side destination your network.
Be aware that this will allow both sides to free access absolutely everything on each others networks without putting any gateway ACL rules in place.
- Copy Link
- Report Inappropriate Content
I have a question about this sentence:
"It should allow you to bridge the two networks - but on your friends router he will need a static route pointing to your routers IP on his vlan"
My friend has a default vlan1 in the network and I understand that I should create a static route on it?
- Copy Link
- Report Inappropriate Content
Im not sure i can be much clearer, unless i am entirely misunderstanding the situation...
It doesnt matter if his network is vlan 1 as well, as far your ER605s point of view, if its connected to an untagged port on it, it has whatever vlan you assign it on the 605
unless im mistaken about somehting... he does have his own router, that is seperate to yours? If so, it doesnt matter what his vlan ID is, as long as its untagged (very likely) and his IP range is different, what i stated should work
- Copy Link
- Report Inappropriate Content
I'm not a professional when it comes to VLANs and I'm trying to understand it. It always seemed to me that if there is a new defined VLAN on one side, e.g. VLAN 10, then on the other side there must also be VLAN 10 so that devices can recognize each other. This is certainly the case in tagged VLANs. Is it the same in untagged VLANs? If so, I have to make VLAN 10 untagged on some port in the router at my friend's, which will connect to my router with an untagged port. I apologize for my lack of knowledge.
- Copy Link
- Report Inappropriate Content
untagged vlan can talk to any other vlan that is untagged, e.g. vlan 10 can talk to vlan1 if both are untagged.
tagged vlans must match.
- Copy Link
- Report Inappropriate Content
I forgot to add, in standalone mode you must ensure the PVID of your untagged port (for his LAN) is set to whatever you set his network VLAN ID to in your ER605. I dont remember if it does this automatically or not in standalone - it may do.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 286
Replies: 20
Voters 0
No one has voted for it yet.