How do you all do it?

[EXTRADODO]

I have a problem of not having enough IP address.

 

Have a total of 500 or more devices including NAS, Printers, Deskops, Laptops, iPads, Phones in the office.

 

Currently have 3 of gigabyte internet lines going inside the office.

 

How do I make use of all 3 of those gigabyte internet and connect all the devices on the same network?

 

Please let me know in simple networking 101.

 

Thanks

[Jumballi]

I'm still learning networking, but you should in theory be able to have an infinite amount of ip addresses depending on how it's set up.

you should have access from 192.168.0.0 to 192.168.255.255 by default, which is over 65 thousand.

[BobVonBob]

6 minutes ago, Jumballi said:

I'm still learning networking, but you should in theory be able to have an infinite amount of ip addresses depending on how it's set up.

you should have access from 192.168.0.0 to 192.168.255.255 by default, which is over 65 thousand.

It could very well be not enough ipv4 allocation. That would require a call to the ISP to fix, if the ISP will even do anything about it.

Edited July 22, 2020 by BobVonBob
Realized just after I said it that's not how that works.

[Electronics Wizardy]

You probably want a advanced router, like pfsense, untngle, mikrotik, or edge routers.

 

YOu probably want a bigger subnet like. /22, but you probably just want multiple subnets internally, maybe something like one for wifi and one for wired devices.

 

 

[Dujith]

Multiple ways todo this for the ip addresses.

- Create Vlans and set routes between them so they can talk to each other. Or block if you dont want guest to access the rest of your network

- Create a lager range. 192.168.1.1/23 would for example create 510 ip addresses to dish out. /22 - 1022 addresses.. ect ect

 

Your router will have to support it, which most normal routers will. Excluding the crap you get from your ISP  

 

As for the 3 Gigabit lines, you will need something custom or enterprise to deal with that. Most "normal" routers are designed for 2 WAN's

You could get a pfsense box with multiple WAN's

 

I have to ask tho, if you are responsible for a decent size installation. Why dont you know this?

[Korben]

10 minutes ago, BobVonBob said:

It could very well be not enough ipv4 allocation. That would require a call to the ISP to fix, if the ISP will even do anything about it.

I doubt all of his devices are exposed to the internet... it would be..äääh...doesn't matter.

@ZWELINHTET considering the lack of information provided here I would guess you just need to change the IP range and subnet mask settings on your router (if it runs also DHCP service).

I recommend first to study some videos or guides about DHCP and IPv4, maybe even IPv6.

[TheBean]

if you have that many devices, you will need to get a router that is better than the isp provided trash. then changed the subnet mask to allow for more IP allocation. 

 

Edit: 255.255.250.0 should be more than plenty. that means that there should now be 1275 available IPs (subract 1 for the router so 1274)

Edited July 22, 2020 by Saksham

[mariushm]

Use switches/routers and create VLANs if needed. 

You can use your subnet mask to set up small networks ... like one above me says, you can do a subnet mask for up to around 60k computers (because you can use .255.255  and then have ips up to something like 248

Not all devices need internet accessible address ... can do port forwarding and stuff like that if you need to access a device from internet. Also vpn.

[Jarsky]

As other's have pointed out, dont use a /24 subnet.

Expand it to like a /22 which will give you over 1000 IP's (assuming you want them all in the same network)

 

e.g 192.168.0.0/22

Start IP: 192.168.0.1

Finish IP: 192.168.3.254

Subnet Mask: 255.255.252.0

 

You might need a better router, depending on your existing routers capability. 

If you want to combine all those internet connections, you can consider something like pfSense which balances all your WAN interfaces to its firewall. 

 

You might also consider using VLAN's with more advanced network equipment to segment your network. 

 

[Nergale]

Honestly I'd never just bundle up everything in the same Network.
Define an IP range for your printers, one for your WLAN devices, one for your Guest network, one for your normal users and one for your admins.

Get a Linux server and slap some easy to use firewall on it (PFSense is okay, OPNSense is also okay). Then grab a VLAN capable switch and assign VLANs to your defined ranges.

Don't forget to assign VLANs to your internet lines and hook those up on your switch. Then assign your VLANs according to your respective users and build a firewall for their needs.

For example:

- Printers don't need to surf the Internet, don't open connections from those to anywhere (Maybe for firmware updates). Just incoming connections to that zone

- Your guest network doesnt need any access to anything but a DNS Server, and ports 80 and 443 to the internet. Maybe also dedicate an internet line to this.

- Your admins should be able to access everything in your network.

- Access for your office users should be limited to stuff they actually need

- Internal WLAN Devices should be similar to normal user access. Maybe consider an Administrator WLAN.

 

This may be a bit much input and a very rough idea of what to do, but if you do it correctly now you'll be a lot happier later on.

[Sir Asvald]

@Lurick is the man for this!

 

 

[Donut417]

5 hours ago, ZWELINHTET said:

3 of those gigabyte

So you have 3 Gigabit  lines for internet. I don't know of any network provider doing Gigabyte lines, that would be Sweet Jesus speeds. 

 

Any who, you need to look at multi WAN routers. These routers would support something like Fail Over (If a connection fails it would fall to the other connection to pick up the load), or Load balancing (it will balance internet usage across all the internet lines). I myself don't know of any that have 3  WAN ports. Your most likely looking for some kinda of business class Equipment. Its probably no going to be cheap, unless you DYI it with a PFsense build.