From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QRG9v-00045U-Bd for garchives@archives.gentoo.org; Tue, 31 May 2011 04:02:23 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 25EAB1C04C; Tue, 31 May 2011 04:00:51 +0000 (UTC) Received: from mail-fx0-f53.google.com (mail-fx0-f53.google.com [209.85.161.53]) by pigeon.gentoo.org (Postfix) with ESMTP id B3CDE1C04C for ; Tue, 31 May 2011 04:00:50 +0000 (UTC) Received: by fxm8 with SMTP id 8so3485653fxm.40 for ; Mon, 30 May 2011 21:00:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:from:to:subject:date:message-id:user-agent :in-reply-to:references:mime-version:content-transfer-encoding :content-type; bh=vt+oo0SGReX/xdJsolEz21sLDZBQZeRiYyjVXNGHCT0=; b=nv/KLrYFi6fXykvODpqEAVaQielH20pkBstzHey59pAuUYS1ZuINqFFsIKmL6HzCXB 6QlJ30bgANq2OM7u+NTPHe3giS+dwJpLOdoi27HrExjVJZtr/Wd49ltw5HEO8T6QUAe0 ZEdmRZAuRezXob6FBRCWgUT5cB8dELNkjPhTg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=from:to:subject:date:message-id:user-agent:in-reply-to:references :mime-version:content-transfer-encoding:content-type; b=bcws4CjOCZ0sEwmw6kbuGW/B9n0SV4MRZKF3eGnNAylZdQmNs4yEBL00rVqtMxE1ek 33BcnE8I9r+dGT4M67r6MUYRWiacTb2JTi1fVnr6ut/daXszThpd00+r23z4n5zGe7m0 WDNWkBKUEM7Ah59Uyi22ifSdkDVOrEtP7ZgKU= Received: by 10.223.143.20 with SMTP id s20mr3585363fau.10.1306814448980; Mon, 30 May 2011 21:00:48 -0700 (PDT) Received: from localhost.localnet (p4FC74827.dip0.t-ipconnect.de [79.199.72.39]) by mx.google.com with ESMTPS id l26sm927207fah.38.2011.05.30.21.00.46 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 30 May 2011 21:00:47 -0700 (PDT) From: Volker Armin Hemmann To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT - More Router Advice] Cheap Router with decent/reliable VLAN support Date: Tue, 31 May 2011 06:00:42 +0200 Message-ID: <1694281.YvO4oPLuBO@localhost> User-Agent: KMail/4.6 rc1 (Linux/2.6.38.6r4; KDE/4.6.3; x86_64; ; ) In-Reply-To: <4DE406B9.3060303@libertytrek.org> References: <4DE12C71.3020706@libertytrek.org> <2426390.BsS6EyTPdm@localhost> <4DE406B9.3060303@libertytrek.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="us-ascii" X-Archives-Salt: X-Archives-Hash: 09a4e34c13316f2f26e9d74be0adcdfa On Monday 30 May 2011 17:06:01 Tanstaafl wrote: > On 2011-05-29 8:28 AM, Volker Armin Hemmann wrote: > > so - why don't you get a router that ONLY does the routing and a nice > > good switch where you can tag the vlans? > > Money/knowledge level? I don't know how to do it, so I was looking for > something that will work that I can do myself, that is affordable. > > > Because if someone takes over your router it does not matter that you > > have different vlans, they can access everything. > > And the same would apply if they got access to the switch too, right? ;) > since the switch will be in its own managment vlan, it won't be possible. > > But if the router is on a different vlan than the internal network, > > they have to take over the switch - which will be in a vlan > > inaccessible from any active device - to get into the other vlans. > > If this is something that can be done with not a lot of money/expertise, > can you point me to some How-To that walk me through it? the manuals of switches with vlan tagging are pretty easy. On alcatels its boils down to klicking around in a web interface ;)