Trusted
You'll laugh... but for 'old school' sysop memories I want to have a crack again at running a BBS on a box at home (192.168.2.1) and have it accessible via Telnet from the internet.
That said I want to keep this box off the rest of my home LAN (192.168.1.x) so it operates separately, can't see any of the other machines etc. to ensure if the box was ever compromised my home network is not under threat.
So I figure I need two subnets - right?
The BBS box on one and the rest of my machines on the other and some routing and NAT magic in between - sound ok?
My setup is a 2-Wire (Telecom) 2701HGV-W modem/router. It uses the 192.168.1.x subnet and most of my devices on the network have static IP assigned to them.. with a small DCHP pool set up for visiting devices to the home.
This connects to a TP-Link TL-SGL1008D 8 port gigabit switch which in turn talks to another identical device as well as another five port version by the same vendor.
Now I figure I could source something like http://www.gowifi.co.nz/coming-soon-new-products/ubiquiti-edgerouter-lite.html and attempt to configure things so that the 2-wire is placed in bridge mode (no firewall etc.) and then connects to the edgerouter.
Then set the edgerouter to pass traffic from the WAN to one Ethernet port handling the 192.168.1.x range (home LAN) and another Ethernet port configured to pass WAN traffic on port 22 to the box connected to it set up as 192.168.2.1
Does this sound right so far?
Questions
I like the 2-Wire as I use the extra features (content filtering for kids etc. on it) and I figure I will loose those firewall toys if I drop to just bridge mode.
...so could I use a separate router/modem in just bridge mode in lieu of the 2-wire and connect this as the WAN to the edgerouter and then hang the 2-wire off another port on the router and the BBS box off the other port? Both ports on the router configured as suggested earlier to send traffic from the WAN to (mostly) the 192.168.1.x port (2-wire) or telnet traffic from the WAN to the 192.168.2.x port?
Are there better hardware options / set-ups (other than the edgerouter Ive identified) I should consider that would leverage the hardware I have in place already? I don't really want to start over as the present system works well for the home users. It's just accommodating this box within the home so that it's a seperate and secure from the rest of the LAN as possible.
I'm aware the edgerouter can do VLAN (not that I've used this tech before) but do you know if the switches I have would support it - I suspect perhaps not?
Cheers :-)
Prodigi
Retired Mod
ID Verified
