I don't know much about TCP/IP and what I'm trying to do seems fairly basic to me but I can't seem to figure it out.
I have one central router connecting to my ISP, and all computers connected to this router are currently able to see each other. I would like to isolate one of the physical ports so that computers connected to this specific port can't see the rest of the network, but are still able to access the internet.
The isolated network will be connected via a managed switch (GS105E). The switch can configure VLANs based on ports and 802.1Q, but I have no clue if that's what I need in order to achieve what I'm after.
So far when I create a different VLAN, the computers on that network can't use the DCHP server and can't connect to the internet.
A possible solution is to add another router instead of the switch, but I was hoping the switch would be able to provide a more efficient and lightweight solution to this.
Is it possible to do this with one router and one switch? Or do I really need 2 routers to create 2 networks?
Best Answer
Your router should be able to put port(s) to different VLANs. Say, there are 3 computers A, B, C and a router R. If you want to allow A and B see each other, but isolate them from C, you have an option to add both A and B to
vlan1and C tovlan2. You also need to include R tovlan1andvlan2so that both VLANs are able to connect to R. No extra routers are needed.