Esoteric router question

Post by **Beowulf** » 2008-03-09 07:31pm

So I have Tomato running on my WRT54G v3, and I want to setup a second VLAN, that I'll be connecting another wireless router to, so that I can get my wife's DS Lite on the internet, but not on our network. Also I want a decently simple way to either deactivate said VLAN, or some other way to disconnect the second router, so if nothing is going to be using it, nobody can actually use it.

My problem is that my knowledge of the config options is about 0. If it can't be done with the GUI, I don't know how to do it.

Pu-239 · Post by **Pu-239** » 2008-03-09 09:59pm

AFAIK, you need DD-WRT v24 for VAP support since tomato doesn't support it (at least w/ a GUI).

Post by **Beowulf** » 2008-03-09 10:15pm

I'm not looking for virtual SSIDs. I tried and failed at that already. So I'm going with the less elegant, but more likely to work method of having two physical routers.

RThurmont · Post by **RThurmont** » 2008-03-10 03:16pm

It's funny, I actually am running a set up that is extremely similiar (from network level/OSI layer 3 standpoint) to what you are describing.

I have a WDS system using Tomato Firmware on four WRT54GL units. I have a WRT54G (v8) running DD-WRT Micro which connects to one of the WRT54GL WDS client/repeater units, and broadcasts a separate WLAN with a different SSID. The trick has to do with the IP addresses.

Assuming your first WLAN is 192.168.1.0, the second one should be 192.168.2.0. Thus, the router should appear, to its clients (as opposed to clients on the primary network) as 192.168.2.1. The second router's default gateway should point to 192.168.1.1.

I'm going to attempt to contact you via AIM to provide additional info as needed. It's not *that* hard to set up, but some aspects of it are non-obvious.

Pu-239 · Post by **Pu-239** » 2008-03-10 06:01pm

Just plug wan port of router 2 into router 1

phongn · Post by **phongn** » 2008-03-10 06:32pm

Pu-239 wrote:Just plug wan port of router 2 into router 1

That's not a good solution.

RThurmont · Post by **RThurmont** » 2008-03-11 03:55am

Nor would it neccessarily work. If both routers wanted to be 192.168.1.1, clients on the second SSID wouldn't have any connectivity to the first network.

What I'm presently working on is figuring out how to control the firewall settings on Tomato Firmware to a fuller extent; once I can do that, I should be able to paste in here a simple firewall rule that will correct the problem.

Pu-239 · Post by **Pu-239** » 2008-03-11 05:56pm

RThurmont wrote:Nor would it neccessarily work. If both routers wanted to be 192.168.1.1, clients on the second SSID wouldn't have any connectivity to the first network.

What I'm presently working on is figuring out how to control the firewall settings on Tomato Firmware to a fuller extent; once I can do that, I should be able to paste in here a simple firewall rule that will correct the problem.

To Phongn, what's wrong w/ doing this?

And why not just set it to a 192.168.2.* network then? (I forgot about this detail, I set my router to 172.18.18.* so it doesn't conflict w/ 192.168.0.* networks when I do... esoteric... stuff.

He just wants internet access for the DS, nothing fancy.

Obviously you want firewall rules to deny access from the lan port and IP the 2nd router is plugged into to the main network on router1, allowing only access to the internet.