Adding another DNS server for a vlan as a vm, but for physical machines

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › Adding another DNS server for a vlan as a vm, but for physical machines

davidcole

6034 posts

Uber Geek

Trusted

#205449 13-Nov-2016 22:12

With hyper v, coukd I create a guest vm with a DNS server (maybe openwrt or something) that could be a DNS server for a 2nd vlan (for a guest network), so I can run it in a different subnet?

How would the vm be set up to have a lan and wan side? The nics in question would be the same ones used by other guests, so I'd rather not force those nics to be used only by that one vm.

Any other way I Vcoukd get a second dhcp server on my network for this guest network.?

Previously known as psycik

Home Assistant: Gigabyte AMD A8 Brix, Home Assistant with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Shelly Humidity and Temperature sensors
Media:Chromecast v2, ATV4 4k, ATV4, HDHomeRun Dual
Server Host Plex Server 3x3TB, 4x4TB using MergerFS, Samsung 850 evo 512 GB SSD, Proxmox Server with 1xW10, 2xUbuntu 22.04 LTS, Backblaze Backups, usenetprime.com fastmail.com Sharesies Trakt.TV Sharesight

davidcole

6034 posts

Uber Geek

Trusted

#1676272 23-Nov-2016 17:32

So to answer my own question yes.

I made a linux ubuntu minimal install VM in hyper-v and gave it two network cards. Both are attached to the physical card in the server.

The first, ie the wan side, is left alone. The 2nd, ie the LAN side, has VLAN5 on it (done in the hyper-v settings)

I then followed a bunch of guides, to add the two NICs to the VM, WAN side (eth0) on DHCP, LAN side (eth1) with static 10.1.1.1

I then added dhcp on the 10.1.1.0 network on the eth1 nic, with a DHCP range of 10.1.1.50 - 10.1.1.100. I added name servers of 192.168.10.1 (my main gateway).

Then I added iptables rules to allow routing between eth1 to eth0.

Lastly in unifi controller I made the 10.1.1.1 network on vlan 5.

Finally after a bit of toing and froing, I managed to get both an internal vm and a guest on the guest ssid to pick up dhcp.

I can now look at putting in restrictions on my network - which I'd done with the unifi already, but now my gateway can control it, and I can add quotas etc.

vulcannz

436 posts

Ultimate Geek
Inactive user

#1677179 25-Nov-2016 09:12

I dunno what router/switch you are using, but you know you can just have two VLANS and forward DNS / DHCP requests from one side to another and just have a single DNS and DHCP server.

davidcole

6034 posts

Uber Geek

Trusted

#1677241 25-Nov-2016 09:40

vulcannz:

I dunno what router/switch you are using, but you know you can just have two VLANS and forward DNS / DHCP requests from one side to another and just have a single DNS and DHCP server.

I use gargoyle-router and the switch is a TP Link SG1024DE.

As the gargoyle doesn't have native VLAN support - and any changes you make in the gui seem to reset it, and the AP while connected directly to the switch, but I only wanted one SSID on a vlan, I didn't think either approach would work.

So at the moment I've kinda made a virtual router for the guest network, with it's own dhcp, and then I've put ntopng on it (for giggles), and all seems to be going, and since all outbound guest traffic comes from 192.168.10.5 (the virtual router) I know with gargoyle I can limit it's throughput/bandwidth allowed, and put in restrictions to deny local network access.

I couldn't figure an easyish solution with my existing hardware.

vulcannz

436 posts

Ultimate Geek
Inactive user

#1677297 25-Nov-2016 11:43

Fair enough, I have one of those TPLink switches, god it is awful :) . I could never get the Web GUI to save the config, only their Windows app seems to work.

davidcole

6034 posts

Uber Geek

Trusted

#1677552 25-Nov-2016 18:20

So a complication is now getting the chromecast etc working from the guest subnet (10.1.1.x), do I have to forward 224.0.0.0 and 239.255.255.250 from eth1 (10.1.1.x) to eth0 (192.168.10.5)?