Will a dedicated router allow unique DNS by Port?

[dlbzone]

Background:

ISP Modem (Bridged) --> Wireless Router 1 --> Wireless Router 2(Dual NAT)

Goals, Current Approach:

• Have both content filtered and non-filtered network access (Family Internet Safety).
  
  [*]Wireless Router 1 uses ISP DNS, unfiltered.​
  [*]Wireless Router 2 uses OpenDNS, filtered.​
• Have both content filtered and non-filtered Guest network access (Wireless only is fine, Family Internet Safety, and Business Guests).
  
  [*]Wireless Router 1 GuestNET for Business.​
  [*]Wireless Router 2 GuestNET for Personal/Family.​
• Have VPN for work isolated from rest of network (Security and Privacy).
  
  [*]Wireless Router 1 GuestNET.​

Thoughts, Works well 99.9% of the time.

• I have to reset the system once every couple months on average, which is actually as good or better than when I was running a single Linksys wireless router by itself.
• Occasionally experience unexplained glitches that may or may not be related to my network.

Question, Reading that Dual NAT is bad for network performance and reliability, is there a simple way (<$200) to eliminate the Dual NAT, but meet all my other goals?

• Hardware Router between Modem and Wireless Routers?
  
  [*]Will a separate router support specifying multiple DNS Servers by port, or by other means?​
  [*]Will wireless routers (Cisco/Linksys E3000(1), Apple Airport Extreme(2)) support GuestNET when used in Access Point mode?​

Thank you,
dlbzone

 

[CaptainSTX]

I have never had any problems with double NATed routers. I have been running this way for over five years and I have never had to reboot either my primary or secondary routers because of slowness or lack of responsiveness. I run my VPN on my second router.

If you do decide to run everything on a single router you will be asking a single SOHO router to do everything which in the case of VPN is a lot.

With all the filtering, potential clients and VPN I think you will be better off continuing to use two routers.

If you want to be sure what ever setup you end up with is as stable as possible consider connecting both your routers and modem to a UPS. Adding a UPS to my network noticeably improved the reliability of my network.

 

[jea101]

I think an Ubiquiti Edge router lite ($100) as the router and using your existing routers as access points would meet most of your requirements. However, I don’t understand what you are trying to do with work VPN. The ERlite can be setup with one WAN port and two independent LAN ports each with its own DHCP server that can push different DNS servers.

This will eliminate double NAT. However, there are also some consumer grade routers that allow you to turn off NAT and route between LAN and WAN ports.

 

[dlbzone]

I think an Ubiquiti Edge router lite ($100) as the router and using your existing routers as access points would meet most of your requirements. However, I don’t understand what you are trying to do with work VPN. The ERlite can be setup with one WAN port and two independent LAN ports each with its own DHCP server that can push different DNS servers.

I will look at this router when I get a chance, but based on the OP comment, I am not sure I need to change my current setup. I also just discovered a couple really old (20years) CAT5 cables in my system where I was getting some issues (Tivo to Tivo Mini) and replaced them with new Cat6 cables and my wife already swears the Tivo Mini streaming and control is more responsive.

I am only a single VPN client most of the time unless I have work guests over and then may have up to 5 or 6 VPN clients tunneling back to my employer. Hopefully, not all that demanding.

This will eliminate double NAT. However, there are also some consumer grade routers that allow you to turn off NAT and route between LAN and WAN ports.

VLAN seams interesting, but I don't want to spend a lot for a smart switch. I just bought the TP-Link 24port unmanaged Gig Switch to replace two 8 port switches at my main panel. Not installed yet. I have 4 x 8 port gig switches scattered about and an 8 port 10/100 switch I can retire now.

I will post update in a few weeks after upgrading cables and new switch. I may also add a UPS as the OP suggested, but since my wireless routers aren't located at the main panel with my cable modem, I would need multiple UPSs and still on the fence about that investment.

I'm open to any more thoughts and suggestions.

Thanks,
DLBZONE