help about network switch , router etc…

August 1st, 2016

i have a standard single port cable modem and want to split internet connection between 2 pc’s without using any wireless , wi-fi thing. first thing comes to mind is network switch but the 2 computers will be used totally different purposes so in case if 1 get infected , i dont want other get infected too , even though i set network as public and disable all sharing options through windows , they will still have a physical connection which makes me wonder , if one will be safe from other. so basicly i want to share my internet between 2 pcs while they are completely independent from each other , is it possible , if yes how it can be done , i read something about changing subnet mask etc.. but i m no expert so an easier way should be better. and lastly whats the main difference between switch and router ? switches can create lan , routers can both can create lan and connect 2 lans in addition ? thanks in advance.
Answer #1
From Cisco:
Switches create a network. Routers connect networks. A router links computers to the Internet, so users can share the connection. A router acts as a dispatcher, choosing the best path for information to travel so it's received quickly.
On your setup, if nothing is shared then the two computers will be independent of each other and one computer will not pass on malware to the other.
Multiple subnets are really meant for situations where you have more than 255 computers (the max for one subnet).
The mere fact you have a common router accessible by both subnets, automatically makes the two subnets visible to each other. That’s what a router does. It locates your subnets and routes between them. The fact both subnets are using the same LAN doesn’t change that equation.
If you really want separate environments, some ISPs will offer a second IP address for free (others for a nominal fee and yet others not at all). You wouldn’t need a router in this case. A switch would work as each computer would have their own distinct IP address from your ISP rather than one IP address that gets shared. But frankly, there is no need to do this.
Answer #2
it would be problem to get second ip address since mine is dynamic , i can buy a seperate dynamic ip which requires additional cable setup outside of building so i try to do it easy way. so router and switch will do basicly same thing for me , router is more advanced as i guessed. with my setup 2 computers will be independent but through with software , so if a malware can change it through windows , it wont be independent , such a capable malware should be rare. but i wonder if there is a better solution. i also again read setting pc adresses different like 192.168.0.2 and 192.168.1.2 will make them completely independent from each other. so whats my best bet , buying a 4 port switch , and splitting connection through it ? by using 3 ports (modem , pc 1 , pc 2). i would like to seperate them physically for example through button or something capable of doing it , not through software. there are things called powerline adapter which uses electronics to split connection , i dunno if it fits my needs
Answer #3
You can get a second IP address even when dyanamic .. in Canada two of the major cable/internet providers offer the second IP for free – they just don’t advertise it. No separate modem required here but anyhow…
Changing the IP address as you suggested will stop windows from seeing each other, but if we are talking sophisticated malware, it can get around this too. Having said this, I haven’t run into a situation like this ever in 24 years! In fact, I haven’t seen a computer infecting another one even when in the same IP range unless there is a file on a network drive that the computers access.
For normal home use, the easiest setup is to get a router (not switch) as they offer more options in security and other functionality. Before everyone screams switches … yes there are switches with advanced features too, but they are generally for business and not simple to configure.
So you would have the line into the router, and two line running out to each PC. If you want absolute isolation, just create a firewall rule to block each PC’s internal IP address (set up in the router config).
Powerline adapters – just extend / offer a plugin for your ethernet without having to lay cable directly from the router to your PC.
Answer #4
If you want absolute isolation, just create a firewall rule to block each PC's internal IP address (set up in the router config).
This should suffice.
Answer #5
so only isolation option is creating firewall rules through router. it looks like beyond my knowledge since i always hated network things , too complex , too much numbers , too much errors and i still hate. since this will be simple 2 pc at home , what benefits i can get from router over switch in terms of security , and also the setup is simple like plugging in 3 ethernet(pc 1 pc 2 modem) cables onto router-switch , or does it require more setup through router or switch ?
after completing setup , will i be able to directly access the modem setup from any of computer by writing its address to browser since there is router-switch in the middle ?
and yes i never heard such kind of infection in my dealing with 20 years with tech i just want to know if there is a setup with %0 chance infection if not , what is the possible safest way before i buy parts for setup. also not to regret by saying “this could have been better” after i did the setup thank you very much already for the responses you made
Answer #6
For the router, it is as simple as plugging in the ethernet cable – the router does the rest. Most routers have a simple firewall built-in (your common switch doesn’t have one) for DoS protection, URL filters, network services filters. Your normal switch does not give you this. The better routers have more configurable options, and software that guides you through the process in simple terms (for example, the ASUS RT-AC68U).
A switch requires more setup on the PC side; not much, but still more than the 0 you need to do with a router.
Think of a router as a ‘smart switch’.
Simple pic for the next part:
===cable===> modem ====> router/switch ====> PCs
In either switch or router configurations, you don’t access the modem itself. Perhaps you are thinking of the modem/router combos that ISPs try to give you. This combo puts the modem and router into the same physical box, but that is about it. You are actually accessing the built-in router using your browser, not the modem.
There is no such thing a 0% – it is always possible, maybe not worth the effort, but always possible.
One click of a bad thing can disable a firewall, can grab your router password and send it off to some server for later use, whatever. The important thing is that you have to click on that bad thing.
Answer #7
it is too much for me to have dos and other protections since my only requirement is isolation of 2 pc. there could be a 0 chance if computers have no physical connection. according to what u said , there is still no tech. last time i buy a network product was 6 years ago , now i feel like i m from stone age i was just going to ask about , cable modems with more than 1 ethernet port , if they can give me the same security the only available i can buy is http://www.tp-link.com/en/products/details/?categoryid=&model=TD-8817#over
does this satisfy my needs , and will i able to access , modem setup from pc with this since there is nothing in the middle.
and whats the difference between wireless router and access point , dont both they do the same thing

 

| Sitemap |