1

This is probably asked a thousand times but I can't seem to find an answer.

The situation is this:

I have one Ethernet connection (over 4G) which will be used by 2 households. I need to seperate the internet connection in 2 different networks unable to talk to each other.

What I found so far is using a managed switch and make use of VLAN. I think the solution is this:

enter image description here

VLAN1:

  • Untagged: port 2 till 23
  • Tagged: port 24 (where the router is plugged in)
  • Forbidden: port 1

VLAN2:

  • Untagged: Port 1
  • Tagged: port 24 (where the router is plugged in)
  • Forbidden: port 2 till 23

Am I doing this right? Does anyone know a better option?

Bilesh Ganguly
  • 1,049
  • 1
  • 7
  • 16
Maik Verheijen
  • 11

2 Answers2

1

As pointed by @Tim_Stewart, you can add a router (I suggest also Mikrotik) which is VLAN-aware, in a trunk port (so you have only a single NIC). Then, you add a third VLAN only for the 4G-router and VLAN-router.

If you use a Mikrotik, they have multiple ports, so you won't need a third VLAN.

Of course, if you need to isolate both networks, you need to configure some firewall on the router in order to allow internet from both networks, and reject every connection attempt from one to the other internal LAN.

0

You can configure one of the LAN ports of the Fritzbox to be a Guest network. This will automatically separate two networks in the router, which you can then switch independently.

https://en.avm.de/service/fritzbox/fritzbox-6890-lte/knowledge-base/publication/show/949_Setting-up-LAN-guest-access-in-the-FRITZ-Box/

Configuring guest access

  • Click "Home Network" in the FRITZ!Box user interface.
  • Click "Network" in the "Home Network" menu.
  • Click on the "Network Settings" tab.
  • Enable the option "Guest access enabled for LAN 4".
lkraider
  • 209