networking question

[OneRedLT4]

When we got a new shop, I installed the network, fed by Comcast business class. I set up the modem with an IP address of 10.90.1.x, and to hand out addresses in the same subnet. It feeds a D-link PoE switch with a static address of 10.90.1.1 and that feeds some cameras. It also feeds a non managing switch which has a couple other devices with 10.90.1.2 and 3.

Then an IT guy installed a Netgear switch and a Sonic Wall wifi. He set up the Sonic wifi to hand out addresses of 172.16.31.x and the Netgear to hand out 192.168.32.x. Since the office printer is jacked into the Netgear and addressed accordingly, and the desktops he purchased are wifi, he had to get into the settings of the Sonic wifi to allow the computers to see and print on the other network.

Now to the issue. The sonic wifi is having problems allowing some laptops and mobile devices to access the internet. The boss asked me to install another wifi. I had/have a Linksys AE6350 router and installed it, fed directly from the Comcast modem. I've got it set at 10.90.1.100 and the problem is, I don't know how to make it so that devices connected to it, can see and print to the office printer (which its option menu is password protected by the IT guy).

Any ideas on how I can make it work?

 

[rodr]

Not enough info. But why 3 different local networks? That adds a lot of complexity.

 

[OneRedLT4]

Haha, I thought it was too much info. What else is needed?

And I know. I don't know why he set it up that way. Drives me nutz

 

[rodr]

First there's the matter or terminology. The Comcast "modem" is surely also a router. The NetGear "switch" is surely also a bridge or router, as it interfaces one IP network with another. Similarly for the Sonic Wall wifi.

The IT guy has some explaining to do -- what exactly these devices are and how exactly they are configured. And most importantly, he better have a damn good reason for the multiple networks other than his own job security. Without cooperation you can only kick the problem upstairs.

 

[secn8ure]

I agree with rodr. :thumbup

Have the IT guy produce a network diagram and explain why it was designed that way and how devices interconnect. Present your requirements, layout the current issues, and request a resolution. :teeth

 

[Ironbutt]

You have a couple choices.

You need a layer three switch; use Vlans to segment the traffic and one router to handle the traffic. --> Same network, different subnets.

If you keep your current config; still use a layer three switch; have the client devices plug into access ports and the routers plug into a routed interface on the switch, basically letting the switch do the routing and the router is the gateway. The comcast modem is just that, a WAN access device. --> Different networks plugging into layer three switch.

You're stumped because you're using no Vlans.. you need to bring things up a level.

And if your IT guy doesn't get Vlans and routing with a layer three switch, find one who does.

C

When we got a new shop, I installed the network, fed by Comcast business class. I set up the modem with an IP address of 10.90.1.x, and to hand out addresses in the same subnet. It feeds a D-link PoE switch with a static address of 10.90.1.1 and that feeds some cameras. It also feeds a non managing switch which has a couple other devices with 10.90.1.2 and 3.

Then an IT guy installed a Netgear switch and a Sonic Wall wifi. He set up the Sonic wifi to hand out addresses of 172.16.31.x and the Netgear to hand out 192.168.32.x. Since the office printer is jacked into the Netgear and addressed accordingly, and the desktops he purchased are wifi, he had to get into the settings of the Sonic wifi to allow the computers to see and print on the other network.

Now to the issue. The sonic wifi is having problems allowing some laptops and mobile devices to access the internet. The boss asked me to install another wifi. I had/have a Linksys AE6350 router and installed it, fed directly from the Comcast modem. I've got it set at 10.90.1.100 and the problem is, I don't know how to make it so that devices connected to it, can see and print to the office printer (which its option menu is password protected by the IT guy).

Any ideas on how I can make it work?

 

[rodr]

That raises the question of what's the size of the local network. If small, there's probably no need for multiple broadcast domains.

 

[GPToyz]

That raises the question of what's the size of the local network. If small, there's probably no need for multiple broadcast domains.

Sounds like an "IT" guy making sure he stays relevant

vlans to segment networks (big or small) isn't necessarily a bad thing if you want to keep people from accessing certain resources or future proofing expansion. Network appliances are weak points of entry that I would want to make sure are logically separated from financials.

OP Tell us in ENGLISH exactly what your boss wants to do like:
"I want my iPhone to be able to get on the internet"
or
"I want some wifi, spotify, shared printer and cloud based surveillance system"

This will help the pros decipher what the hell your IT guy did and why.

 

[Ironbutt]

Okay, I read it again. The sonicwall is layer 3. router on a stick. You don't need to log into the Sonicwall; plug into his network, use his wireless and everything will work.

That means you have to turn off your DHCP, everywhere. (your DHCP)

You can plug your unmanaged switches #'ed for the class A network into his class B network with no ill effects. You just won't be able to get to the switch, and who cares? It's unmanaged anyway.

That means you have to give the comcast modem an IP address of 172.16.32.X and let the Sonicwall be whatever it is already. Turn off DHCP on the comcast router.

Plug an ethernet cable from the link sys router into a switch plugged into the Sonicwall. That makes it an Access point.

Then, walla..you're done. and you have Vlans, one for wireless and one for wired.

Whats the gateway? The Sonicwalls IP address.(whatever that is) Whats the subnet? 255.255.0.0 Whats the Sonicwalls gateway address? (the comcast router Ip address)

Clear as mud?

 

[OneRedLT4]

Thanks. After carefully looking at the rack, I realized he had wired up differently than I assumed (see attachment).

I did partially as you suggested and plugged the new Linksys into the Netgear and it didn't have internet initially. I started turning off all the DHCP settings in the modem/router and killed my internet and my ability to get in to it. Comcast got it back up, put back the DHCP settings and we're golden,

Thanks!

 

[Ironbutt]

Thanks. After carefully looking at the rack, I realized he had wired up differently than I assumed (see attachment).

I did partially as you suggested and plugged the new Linksys into the Netgear and it didn't have internet initially. I started turning off all the DHCP settings in the modem/router and killed my internet and my ability to get in to it. Comcast got it back up, put back the DHCP settings and we're golden,

Thanks!

Yeah great but; the sonicwall is still handing out DHCP too. Call comcast and tell them you want the comcast modem to be in a 'bridge mode'. Or NO DHCP or routing or anything.

Then you let the sonicwall do what it does best(break, just kidding), route traffic, be a firewall, do DHCP, be a layer 3 switch and act as a wireless access point. All in one fantastically impossible to configure device that doesn't scale at all. ;-) (more kidding, I like Cisco)

That means you have to plug everything into switches that are plugged into the Sonicwall. and only ONE ethernet cable from the sonic wall to the Comcast Modem.

Otherwise, you're double Natting and using dissimilar subnets on the LAN and that creates network-funk and slogglyness that can't be 'splained'.. I would scream.

 

[rodr]

Hmm... the SonicWall needs to serve DHCP for the 172.16.31 network, so shouldn't the Comcast box do it for 10.x.x.x? Or are you saying the SonicWall will do both?

I also have Comcast Business Class. DHCP can be turned off/configured via the SMC modem/router web interface.

 

[Ironbutt]

Hmm... the SonicWall needs to serve DHCP for the 172.16.31 network, so shouldn't the Comcast box do it for 10.x.x.x? Or are you saying the SonicWall will do both?

I also have Comcast Business Class. DHCP can be turned off/configured via the SMC modem/router web interface.

Yes, sonic wall will do it all; let it be the router and the comcast modem be a WAN access device; only one device on the network should be handing out DHCP, routing and NAT.

Besides, the Sonicwall is doing layer three routing, you want that feature. Good luck configuring the sonic wall(I can't stand them), but it's a good feature to have and I'll do a sonicwall before I'd use a Linksys or a Belkin.

Personally I'd use a $75 Cisco 3550 and let it do the layer 3 and routing. Some of them you can even make a firewall.. Just access lists and whatnot. Dead simple and reliable.