VLans and routing.

RimBlock · 18 Sep 2012 at 06:44

Hi,

I have an issue with running a DNS / DHCP server on my own home network. Disabling my ISPs DHCP / DNS server on their ADSL+ unit causes issues for the IPTV boxes we have.

I am now setting up a SBS 2011 server (vSphere virtulised) and would like to have it as the DNS / DHCP server for my home network.

In order to keep the two networks segregated, can I setup two VLans on my HP 1810-24G switch and use a router to link the two. On VLan 1 I would use a different subnet to the one on VLan 2. The ISP router can server DHCP / DNS for VLan 1 and the SBS 2011 can server for VLan 2.

Is this a reasonable concept / way of doing it or is there an easier / better way.

Thanks
RB

DiscoDave · 18 Sep 2012 at 12:06

Most domestic routers won't allow you to specify DHCP on given interfaces and VLANS (I think..) based on the experiences of my own devices..

If your SBS server has two NIC's to each VLAN you might as well use that to serve DHCP to both VLAN's and use your existing router as a gateway.

matthab · 18 Sep 2012 at 12:29

Your ISP router should be on VLAN1 but wont do anything else.

If it was me thoe I would just use your SBS box for both as above.

RimBlock · 18 Sep 2012 at 14:21

The problem is that if I use anything other than my internet and IPTV service providers router as DNS and DHCP then my IPTV boxes do not work. The IPTV boxes are not media players, they are provided by a local TV provider here and source the streams from the service providers servers through my Internet router also provided by the same company.

For this reason, if I want to run a DNS & DHCP server of my own I need the IPTV boxes and my Internet router on a different subnet.

I have a number of PCs and media players on my network and could route the IPTV boxes straight in to my service providers router on VLan 1 and then have my home network on VLan 2 and then put a router between them. I would imagine this should work but would rather confirm if the idea is sound before spending hours finding out it is not.

Note: I have everything on one Lan at the moment and SBS 2011 is not setup for DNS and DHCP.

Thanks
RB

DiscoDave · 19 Sep 2012 at 09:43

Interesting. So there may be some application/device specific settings on the provided router for your IPTV devices.

Lets get a little more information about these IPTV boxes. I assume they're some kind of hardware appliance? When you say they get DHCP from your router, do you know if that's a internal private address or an ISP external public address? Are there any specific NAT rules on the router for these IPVT devices?

Your switch appears to only be layer 2 so it won't route between VLAN's. Which router do you have?

RimBlock · 19 Sep 2012 at 10:22

Sure,

The service is called MIO TV and is provided by Singtel over here. Mine is linked to a 200MBit (local) fibre connection (25Mbit global).

The set top boxes are Motorola VIP1200_US-EN units.
The fibre box is a Pace 5012NV-002.
The internet router is an Aztech DSL1000ER.

When I previously setup a DNS / DHCP server (SBS 2011 standard) on my network it killed both my STBs. Neither could connect to the service providers streaming backend servers (presumably on their own network).

After numerous calls and a number of engineer visits the only way they could resolve the issue was to supply us a separate phone line and router for each STB and another for internet access (we were using the service over phone lines at the time and not fibre).

During their engineer visits I was able to work out that on boot the STBs do a DHCP call in order to get connectivity information for the back end servers and register on them. If they could not get the right IP / Gateway / DNS details then they would not register and could not stream.

I have a Linksys WRT610N router sitting around so I was thinking of using that to bridge the two VLans on the switch (i.e. have one port allocated to each VLan connect to a port on the switch.

Failing that then I could plug the cables from the STBs (I have wired the house with Cat6 in every room to a central patch panel) directly in to the router and have the router connect to the Linksys router which will then connect to the switch and no need for any VLans.

Oh the fun of getting two subnets going at home.

RB

RimBlock · 8 Oct 2012 at 08:35

I put this in place last Sunday and it is sort of going ok but the IPTV boxes may be knocked out on reboot

.

I have;
Fibre box -> ISP router (192.168.1.0) -> IPTV boxes
Fibre box -> ISP router (192.168.1.0) -> DLink 610 Router (192.168.2.0) -> HP 1810-24G -> SBS2011 server & PCs.

I had to set the DLink router back to factory defaults and then it more or less worked routing between the two networks.

The SBS2011 install ended with the DNS server on the SBS2011 box not working at all. I had a play about and now it seems to be working for the domain but it seems it has not configured DNS forwarders so I cannot resolve non-domain addresses.

I can run http://connect to join PCs to the domain, I can access both my DLink 610 and my ISPs router configurations. I can also access the internet.

Last night my wife did report one of the IPTV boxes was not working but as it was 00:30am I have left that for today. I am suspecting that the DNS/DHCP may have knocked it out on reboot but I will have to check the cabling as well just in case. It is also possible that SBS 2011 may have turned off my ISP routers DNS server. The ISPs DHCP server is still working as it is assigning an IP address from the first subnet to the WAN port on my DLink 610.

RB

RimBlock · 10 Oct 2012 at 06:17

Ok, just to confirm, the IP TV box issue was with cabling and so the setup is currently working as I had hoped.

The only issues going forwards may be remote access from outside but I have yet to set that up properly and test.

RB