we currently have a fios static business connection for our small creative company. We are getting 5 more static ip addresses (have to get them in increments of 5). We are going to use them to host a few web server type things. We are going to have 1 left over.
We currently use an apple airport for a router as it best allows for apple services. One thing we want to add is VPN. As to not mess things up, I am thinking about getting a separate VPN router to allow remote devices to securely access the network.
I am pretty sure that this will work but want a second option:
Internet connection comes in over a ethernet cable. It is then split via a switch to each of the static ip devices. The first is the real network that is behind the airport extreme. The second will be the VPN router. They will be configured as follows:
AIRPORT:
xxx.xxx.xxx.101 (external static ip)
192.168.1.1 (internal ip)
192.168.2.2 (internal DNS server redirecting to ISP assigned DNS)
xxx.xxx.xxx.xxx (ISP assigned gateway)
192.168.1.25 - 150 (dhcp lease range)
VPN Router:
xxx.xxx.xxx.102 (external static ip)
192.168.1.200 (internal ip)
192.168.1.205 - 215 (dhcp lease range assigned only to VPN clients)
Internal DNS and Gateway would point to airport.
The VPN router in this scenario would be plugged into the main network switch and then should be able to coexists without causing any DNS/DHCP/Gateway conflicts. All internal traffic should go out over the airport, while VPN traffic would come in over the VPN router and out over the airport.
If what I am suggesting works, then under this scenario, I would have all of the benefits of the airport extreme plus the ability to securely reconnect to the network via a VPN connection.
Is what I listed above going to work? If so does anyone have a VPN router suggestion?
We currently use an apple airport for a router as it best allows for apple services. One thing we want to add is VPN. As to not mess things up, I am thinking about getting a separate VPN router to allow remote devices to securely access the network.
I am pretty sure that this will work but want a second option:
Internet connection comes in over a ethernet cable. It is then split via a switch to each of the static ip devices. The first is the real network that is behind the airport extreme. The second will be the VPN router. They will be configured as follows:
AIRPORT:
xxx.xxx.xxx.101 (external static ip)
192.168.1.1 (internal ip)
192.168.2.2 (internal DNS server redirecting to ISP assigned DNS)
xxx.xxx.xxx.xxx (ISP assigned gateway)
192.168.1.25 - 150 (dhcp lease range)
VPN Router:
xxx.xxx.xxx.102 (external static ip)
192.168.1.200 (internal ip)
192.168.1.205 - 215 (dhcp lease range assigned only to VPN clients)
Internal DNS and Gateway would point to airport.
The VPN router in this scenario would be plugged into the main network switch and then should be able to coexists without causing any DNS/DHCP/Gateway conflicts. All internal traffic should go out over the airport, while VPN traffic would come in over the VPN router and out over the airport.
If what I am suggesting works, then under this scenario, I would have all of the benefits of the airport extreme plus the ability to securely reconnect to the network via a VPN connection.
Is what I listed above going to work? If so does anyone have a VPN router suggestion?
