Hi!
I have been running my RB750GL for about a year now in my home.
It has really worked fine and we’ve have had a lot of fun together trying out different configurations.
The former setup was very simple and straight forward with one subnet, a few access points, an PPTP server for outside connections and a bunch of internal clients.
But my needs have changed over the past couple of months and I need a more advanced setup.
I’m an IT guy with general networking knowledge, but I know my limits in this department.
I would really appreciate if someone would help me decide and configure a new setup that suits my needs.
Here is a list of the HW I’m thinking of using and what I want to achieve with this:
- RB750GL as a router, connected to my ISP on the WAN side and all other HW on the LAN side.
- A patch panel with the network cables from around my apartment ends up
- Powerline adapters from devolo:
a. One dLAN650+ connected to my RB750GL
b. One dLAN 650 triple+ (3 LAN ports)
c.Two dLAN 500 WiFi (each with 1 LAN port besides the AP functionality)
- I need two separate subnets for my own privacy and for my company’s policy
- The ability to open up port and services between the two networks easily
- I would like to setup a Site-2-Site tunnel using L2TP between me and my company
- I want to be able connect to both subnets thru a VPN connection that the router is hosting
- I’m thinking of signing up an account to a local VPN provider in my town and would like all traffic besides the Site-2-
Site tunnel and my own VPN server on the router
Please let me know if something is unclear and I’ll try to explain.
Thankful for all feedback I can get.
Regards
Min Kontaktyta
Let’s see if I can be of any help:
-
RB750GL as a router, connected to my ISP on the WAN side and all other HW on the LAN side.
I would step up to a more robust router. I looked, very quickly, and I cannot find anywhere that says this router can perform VPN services. I have a CCR1009, that is most likely over kill for your needs - though I don’t think the RB750GL can be a VPN termination point.
-
A patch panel with the network cables from around my apartment ends up
Ok… Are you looking for someone to run cables or is this just an idea you have?
-
Powerline adapters from devolo:
a. One dLAN650+ connected to my RB750GL
b. One dLAN 650 triple+ (3 LAN ports)
c.Two dLAN 500 WiFi (each with 1 LAN port besides the AP functionality)
I’m not a fan of powerline adapters, I would try to use other methods instead of them.
-
I need two separate subnets for my own privacy and for my company’s policy
5.The ability to open up port and services between the two networks easily
Simple enough. With a router that has FW built in you can setup permit/deny statements between the subnets. If you are going with a PPTP tunnel between your home router and company you will need to pay attention to your IP addressing scheme. You don’t want to have the same IPs in use at home and at work.
-
I would like to setup a Site-2-Site tunnel using L2TP between me and my company
Do you have access to the other end? Will your company allow you to setup a VPN? If so, as long as the router you choose can terminate VPNs, you should be fine. You may run into issues, depending on the various vendors, that will require tweaking of configs to get things working right. You will also have to pay close attention to your IP addressing scheme - as I eluded to in the previous answer.
-
I want to be able connect to both subnets thru a VPN connection that the router is hosting
So are you talking about reaching back from your company over the VPN into your LAN environments? If you have routes pointing to your home network via the VPN you should be fine. You may run into issues if your company won’y allow you to run such a VPN setup. At which point you could always use L2TP from a host machine without using PPTP.
-
I’m thinking of signing up an account to a local VPN provider in my town and would like all traffic besides the Site-2-
Site tunnel and my own VPN server on the router
Why? If you have a router that can terminate VPNs this is unneeded. If you use L2TP, this is unneeded. Typically using VPN providers is what one does to limit their “footprints” on the internet. Yes there are legitimate uses…