Jump to content

Dual LAN [Suggestions Needed]

zwunder
By zwunder
in Networking
 Share
Go to solution Solved by zwunder,

We have solved this by literally cutting off internet to the pc and having the PC switch to wifi, which is generated by the secure network only. We are using This to turn off the wiredlan to the PC then windows will automatically switch to the wifi for projector control.

Posted

I work at a movie theatre, and we have a single PC that we use for projecting non-cinema content onto our projector. We also use this PC to control every function of the projector, however we also need to have it connected to the internet, so here are where the problems start. 

 

The projector has it's own LAN that it runs between itself, the media server, and our audio DSP. We also plug the PC into this network to control the projector, however this LAN cannot be internet connected for security reasons. We also have a building LAN that has all of our computer systems on it that is internet connected. Basically I need a good suggestion for how to connect the PC to both LAN's simultaneously. I need it to be able to talk to the projector via one LAN and to the internet via the other.

 

I have no networking experience so I am coming here hoping someone can help solve this issue.

My Build:


i7 5820k ~ Sabertooth X99 ~ 32GB Crucial Sport ~ Nvidia Titan X ~ Enthoo Luxe ~ 512GB 850 Pro ~ Asus PB287Q


PC Part Picker List

Link to comment
https://linustechtips.com/topic/332671-dual-lan-suggestions-needed/
Share on other sites
Link to post
Share on other sites
Posted

you could do this with a 3rd party firmware on the router

hook everything up to the router and then disable certain ports from talking to the outside network

If you need remote help fixing something on your computer

I can help over Teamviewer if you wish

just msg me on my profile

Link to post
Share on other sites
Posted

Hi zwunder, 

 

It is a real bad idea trying to have this machine on both networks, to do this properly this machine should be behind a firewall that connects to the internet facing segment. Then you should allow ports and flows that you need to connect to.

 

If you bridge this you are exposing the secured LAN to the net, this includes adding a dual network card setup to the machine.

 

If you could give me a little more info on the models of router/firewall that you have I can help you to design something that will be secure and give you the function that you need.

Link to post
Share on other sites
Posted
  • Author

Hi zwunder, 

 

It is a real bad idea trying to have this machine on both networks, to do this properly this machine should be behind a firewall that connects to the internet facing segment. Then you should allow ports and flows that you need to connect to.

 

If you bridge this you are exposing the secured LAN to the net, this includes adding a dual network card setup to the machine.

 

If you could give me a little more info on the models of router/firewall that you have I can help you to design something that will be secure and give you the function that you need.

We are just using windows firewall with a Netgear CG3000DCR modem and router, with a five port switch downstream.

My Build:


i7 5820k ~ Sabertooth X99 ~ 32GB Crucial Sport ~ Nvidia Titan X ~ Enthoo Luxe ~ 512GB 850 Pro ~ Asus PB287Q


PC Part Picker List

Link to post
Share on other sites
Posted

I'm with @flexin1981

 

I work on classified and unclassified networks.  For security reasons, they naturally cannot talk.  The moment you connect 2 different networks to 1 PC, they are now talking and you have a breach.  You can get around this with pretty intensive firewalls, we have one, but it is like $250k and extremely specific to its purpose.  One other thing to consider, connecting your secure media network to your theater internet network may be a breach of contract with the media companies.  Windows firewall will not even be close to good enough to prevent crosstalk if that pc gets compromised. 

 

Are you an administrator for both networks?  I would make sure you are even allowed to connect these networks, because basically, once you connect the media network to the internet, it isn't secure anymore.  And it may have most of its security based on not being connected.  When you have a closed network, you can ignore a lot of security problems.

Link to post
Share on other sites
Posted
  • Author
  • Solution

We have solved this by literally cutting off internet to the pc and having the PC switch to wifi, which is generated by the secure network only. We are using This to turn off the wiredlan to the PC then windows will automatically switch to the wifi for projector control.

My Build:


i7 5820k ~ Sabertooth X99 ~ 32GB Crucial Sport ~ Nvidia Titan X ~ Enthoo Luxe ~ 512GB 850 Pro ~ Asus PB287Q


PC Part Picker List

Link to post
Share on other sites
Posted
  • Author

yea except wifi isn't really totally secure

Over the wifi network you cannot access the media server which is where all of the sensitive media is. The wifi is exclusively for projector control.

My Build:


i7 5820k ~ Sabertooth X99 ~ 32GB Crucial Sport ~ Nvidia Titan X ~ Enthoo Luxe ~ 512GB 850 Pro ~ Asus PB287Q


PC Part Picker List

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×