I need help i'm confused, can someone tell me if my setup is "safe from hackers", and if it is a stable setup?
Please read first :
*My provider gave me a
5 public Static IP address
The old setup was : the modem was connected to the router and the router is connected to the d-link. the problem was, there is not enough ventilation in there. One day i noticed that some of the users are arguing "THERE IS NO INTERNET" when i checked the router, i noticed that it is too hot?. so I tried another router (for 3 days) and concluded that the router is defective.
Now, the owner of the company asked me to transfer the router to the other room (which is the server is located).. Since the router is defective, I tried to look for a spare and sad to say I found another router (same model -- linksys) but it is defective too. Then all of the sudden I got an idea of upgrading the firmware of the 2 router. After few secs. It works normally again BUT. when most of the users use the internet (browse-download mails) simultaniusely. It drops the internet. So what I did is
1. edit the scope in my DHCP server and added another gateway. (in my research, they say that you could setup a fault tolerant gateway in which that if the gateway is not available (due to repair, or not reachable), then windows will look for another gateway in his list.
After reading that, i've made a similar setup -->" I've made Fault tolerant gateway in which that incase the other linksys "request timeout", all users automatically goes to the other linksys (vice versa)"
but the problem is , I've put the modem into the switch along with the network. After my friend see my diagram, he asked me: (along with my answers)
1. Why is that the modem is connected to the "switch and not connected to the router directly?"
--> Because that room was made into a "stock room". and I noticed that the router can't handle the room temperature in there"
2. Your router seems useless since you connected it to the entire network. Also You are subject to hackers since you connected your modem directly to your network.
--> I told him. I tried to use the modem as a gateway ( the modem has a an IP addresss of 192.168.1.1) because i wanted to know if I can use it as a gateway. But i failed. Later I realized that I can only have an access to the internet if I use the public IP given by the provider. so I asked him.. How can a hacker attack one of the PC connected to the same swtich if the subnet is different. So.. to attack one of the PC without going to the two gateway (in my setup) is impossible unless, the provider has configured the modem to allow to act as a "gateway" -- i think
here is the diagram: