Jeroen1000
Regular Contributor
If you could please offer some advice on this I'll be very thankful:
My gear:
Setup description:
The cable modem is connected to the Draytek's WAN port, and the Cisco switch is obviously connected to a Lan port. For simplification, all other devices I own are connected to the Cisco Switch.
Normal operation is as follows:
1. the cable modem will offer a routable IP (from my ISP) to my Draytek.
2. The Draytek will hand out DHCP addresses in the range of 192.168.0.x and will perform NAT.
3. all devices but *ONE* are in VLAN 2
4. One device, is in VLAN 3
My Q:
My cable modem can offer 2 routable IP's. One of those will be offered to the Draytek's WAN port, but the other one should be offered to that one device in VLAN 3.
So for VLAN 3 I do *not* want the Draytek to hand out a 192.168.0.x internal IP-address and subsequently, NAT is not needed for that VLAN. I want the device in VLAN 3 to get an DHCP offer from the cable modem and *not* from the Draytek router.
My thoughts:
1. Forgetting about VLAN's, I could place a switch between the cable modem and the Draytek. This would require the so-called "VLAN 3 device" to be directly connected to that switch. Since DHCP requests would not propagate beyond the Draytek's WAN interface, only the cable modem can offer an IP, wich would be the second routable IP my ISP hands out.
This would require me to get into the basement and pull a brand new cat5e wire. Plus I'd have to buy a switch. In short, bad idea.
2. Briefly, I wondered about DMZ. But DMZ requires me to input an INTERNAL IP-address. I wish there was a kind of DMZ that converts a LAN port on the Draytek as a second WAN port. But wait... doesn't this sound like a 1 member VLAN
3. Can I somehow configure the Draytek to allow the VLAN 3 device to cross the WAN interface when asking for an IP? Of course the answer should also be able to return but no unsollicited broadcasts are to be allowed in the WAN -> LAN direction.
*Cries help*
Cheers,
Jeroen
My gear:
- A cable modem (Motorola SURFboard)
- A router (Draytek Vigor 2130)
- A Switch (Cisco SLM2008)
Setup description:
The cable modem is connected to the Draytek's WAN port, and the Cisco switch is obviously connected to a Lan port. For simplification, all other devices I own are connected to the Cisco Switch.
Normal operation is as follows:
1. the cable modem will offer a routable IP (from my ISP) to my Draytek.
2. The Draytek will hand out DHCP addresses in the range of 192.168.0.x and will perform NAT.
3. all devices but *ONE* are in VLAN 2
4. One device, is in VLAN 3
My Q:
My cable modem can offer 2 routable IP's. One of those will be offered to the Draytek's WAN port, but the other one should be offered to that one device in VLAN 3.
So for VLAN 3 I do *not* want the Draytek to hand out a 192.168.0.x internal IP-address and subsequently, NAT is not needed for that VLAN. I want the device in VLAN 3 to get an DHCP offer from the cable modem and *not* from the Draytek router.
My thoughts:
1. Forgetting about VLAN's, I could place a switch between the cable modem and the Draytek. This would require the so-called "VLAN 3 device" to be directly connected to that switch. Since DHCP requests would not propagate beyond the Draytek's WAN interface, only the cable modem can offer an IP, wich would be the second routable IP my ISP hands out.
This would require me to get into the basement and pull a brand new cat5e wire. Plus I'd have to buy a switch. In short, bad idea.
2. Briefly, I wondered about DMZ. But DMZ requires me to input an INTERNAL IP-address. I wish there was a kind of DMZ that converts a LAN port on the Draytek as a second WAN port. But wait... doesn't this sound like a 1 member VLAN
3. Can I somehow configure the Draytek to allow the VLAN 3 device to cross the WAN interface when asking for an IP? Of course the answer should also be able to return but no unsollicited broadcasts are to be allowed in the WAN -> LAN direction.
*Cries help*
Cheers,
Jeroen
Last edited: