Hello,
I have two Openwrt routers in my house: one in the attic and the other in the basement.
The one in the attic is the "main" router: Gateway to internet, Firewall, DHCP, NTP, DNS server, etc. It has its WAN port connected to the internet provider's router. This means there is a LAN (192.168.1.0/24) between my home LAN (192.168.2.0/24) and the internet.
In that intermediate LAN (192.168.1.0/24) I've wired (Ethernet) some devices that are outdoors and if someone access it (take the cable and connect a laptop, for instance), the security risk would be small because they would be outside my LAN.
The OpenWRT router in the basement is acting as a 5 port switch (the WAN port is configured as another LAN port). Any device connected to it receives its IP address from the router in the attic.
Now I'd like to connect other device outdoors, but connected to the router in the basement. However, if I connect with the configuration that I have today, that device will receive an IP from my attic's OpenWRT router and would be "inside" my LAN (huge security risk).
So, I though creating a VLAN towards the intermediate network (192.168.1.0/24) and somehow configure it in both OpenWRT routers. The idea would be to assign a port of the basement router to that VLAN so that any device connected to it would get an IP from the 192.168.1.0/24 network.
A diagram with the above:
http://picpaste.com/vlan-yYsGIQyS.jpg
I've tried a few VLAN configurations in the attic router but I always loose access to the internet and have to put it back.
Any ideia if this would be possible and if so, any suggestion on how to make it work?
Thanks,
Jabss
(Last edited by jabss on 28 Feb 2015, 16:15)