Isolating computers on a LAN from each other - A special kind of switch

  • Thread starter Thread starter R.Wieser
  • Start date Start date
R

R.Wieser

Hello All,

I have an ADSL modem with just a single connection coming outof it, which
goes into a simple simple hub to which I've connected several computers.

Currently I want to install another computer on which I should be able to do
*anything* with it in regard to downloading stuff from the web, which means
its pretty open to catching some sort of disease .... For this reason I need
it to be seperated from my other computers (only be able talk to the
internet, not to any of the other computers I have).

I thought of a special kind of switch, one with a single output (to the
model) and two or more inputs (from the computers). The data coming from
the inputs will only be routed to the output, *not* to any of the other
inputs. Ofcourse, any data coming in from the modem for one of the
computers will be routed to it (and only it).

My question : does some sort of device like it exist (for the
consumer-market) ? I've taken a look at NetGear and LinkSys, but can't
seem to create a search-query to return anything worthwhile.

If anyone knows another solution (*not* involving setting up a seperate
computer) I would allso like to hear about it.

Regards,
Rudy Wieser
 
Hi
First you should know that your DSL Modem is probably a combo Modem/Router.
This page depicts the principle of one good option,
http://www.ezlan.net/shield.html
Disconnect the computer from the Hub and leave on the hub only the Internet
Computer.
Plug to the hub a regular Wireless Router. Connect the rest of the computers
(wire, or and Wireless to the Wireless Router).
As a result, all the computers would be able to surf the Internet. The
computer after the second Router would be able (if you wish) to pickup files
from the Internet only computer. The Internet only computer would not be
able to access the computers (wire or wireless behind the second Router).
 
Hello Jack,
Plug to the hub a regular Wireless Router. Connect the rest of the
computers (wire, or and Wireless to the Wireless Router).
As a result, all the computers would be able to surf the Internet.
The computer after the second Router would be able (if you wish)
to pickup files from the Internet only computer
Click to expand...

I've been thinking about a solution like that, but it would mean that I than
have *two* NATs and firewalls to manage for the "safe" computers. And thats
something I want to avoid. The double NAT would not be much (if any) of a
problem (I think), but a double firewall seems often to lead to undesirable
results ...

Thanks for the suggestion though.

Regards,
Rudy Wieser


-- Origional message
 
R.Wieser said:
Hello Jack,


I've been thinking about a solution like that, but it would mean that I than
have *two* NATs and firewalls to manage for the "safe" computers. And thats
something I want to avoid. The double NAT would not be much (if any) of a
problem (I think), but a double firewall seems often to lead to undesirable
results ...

Thanks for the suggestion though.

Regards,
Rudy Wieser


-- Origional message
Click to expand...

Read Jack's linked page more carefully. The configuration he describes
does not have the issues that concern you. In addition, the potential
problems with two firewalls are when you have two software firewalls
running on the same machine, not firewalls running on two different
machines (consider that the most common recommendation is to run a
*software* firewall on your PC notwithstanding that it is behind the
*firmware* firewall running on your router.
 
Hello Lem

Thanks for the warning, I'll re-read what he suggested. As for two
software firewalls on a single machine, I must say I did not even consider
that.

Regards,
Rudy Wieser


-- Origional message
 
Back
Top