Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2063
Views
0
Helpful
1
Replies

Secondary Network Routing

dhandler
Level 1
Level 1

‎09-14-2009 07:26 PM

Although I think this is an easy question, I am quite rusty when it comes to IOS.  In an effort to save money my Temple is not upgrading our still working Cisco 831.  We are running a primary network - the "office network" 10.100.10.0, and a new "Guest network" 10.10.10.0, which is configured as the secondary network on the one Ethernet port.  Both networks are working fine and can access the Internet connection we have.

We want to prevent the guest network from being able to access the office network, yet still allow both to access the internet.  I have tried various combinations of ACL's - such as denying IP between 10.100.10.0 and 10.10.10.0 and vice versa, but to no avail.  I can still ping devices on one network from the other.

I originally was hoping to wire the guest network to one of the ethernet ports, and the office network to another; but on this router, I cannot address the 4 ethernet ports seperatly, so I am stuck putting both networks on the same wire.

Is this even possible to prevent the networks from seeing each other while still maintaining their internet connectivity?

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

David Hornstein
Level 7
Level 7

‎09-14-2009 08:45 PM

Hi dhandler,

If it can't be done in the software in the router why not try hardware  access lists in managed L2 switch that connects to the router.

Just a thought, buying even a low cost SRW208, if you don't currently have a managed switch, has got to be most cost effective compared to upgrading routers.

regards Dave

0 Helpful
Customers Also Viewed These Support Documents