Netopia 4686-XL - Can it separate internet from VPN?
Results 1 to 7 of 7

Thread: Netopia 4686-XL - Can it separate internet from VPN?

  1. #1
    Junior Member
    Join Date
    Feb 2007
    Posts
    4

    Netopia 4686-XL - Can it separate internet from VPN?

    Hello,

    Our business has 3 different locations. All 3 locations have DSL currently installed. We were planning on purchasing 3 Netopia 4686-XL's and hooking those up to the DSL modem, and then the computer to that router. We want to have 2 computers at each location tied into the VPN that would only be able to access the VPN and not be able to access the internet. If it matters, they will be contacting port 821 only. We also want to have two other computers that aren't connected to the VPN to be able to view web pages, email, etc. and not be able to tinker with the other machines which are in the VPN.

    Is this possible using the Netopia 4686-XL, or would I have to look into using alternatives?

    Thanks in advance.

  2. #2
    Senior Member MadBeaver's Avatar
    Join Date
    Jul 2003
    Location
    Bath, Maine
    Posts
    252
    I haven't used a Netopia 4686-XL before, but from what I can tell you should be able to do what you by using the filters in the firewall.
    Mad Beaver

  3. #3
    Junior Member
    Join Date
    Feb 2007
    Posts
    4
    Thanks for the response. I'll look into this a little more. I think we're going to go with these routers. At worst, we'll return them.

    Thanks again! If anyone else has any comments, I'd sure like to hear 'em!

  4. #4
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,324
    Do you want to prevent them from internet access ALL together, or just not use your resources?

    If you want to allow them to use their own internet connection while connected to the VPN, then setup split tunneling.

    Basically, only traffic destined for resources contained within the VPN go through the VPN. This alleviates some bottlenecks associated with internet traffic over the VPN. The user would use their own internet connection. So, the user would still be able to surf the web, listen to streaming media, etc. They just do it with their own bandwidth.

    If you want to prevent ALL internet traffic while the VPN is connected, then create ACLs in the router like MadBeaver suggests.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  5. #5
    Junior Member
    Join Date
    Feb 2007
    Posts
    4
    I didn't include this in the original, and I apologize if this makes any difference (I thought it wouldnt). We have another server which is going to be colocated at a hosting company that will have the same VPN router attached to it. Basically, we have 2 computers at each store which will be contacting that server located at the hosting company. We want to make it as secure as possible by only allowing those computers to talk to each other, and nothing else. We wanted to give our employees a couple laptops they could plug into the router so they could view web pages, go on myspace, etc. but will NEVER be able to access the other computers inside the VPN.

    Make sense?

  6. #6
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    Quote Originally Posted by djcronos
    We wanted to give our employees a couple laptops they could plug into the router so they could view web pages, go on myspace, etc.
    Myspace......employees....whats wrong with that picture.

    Cheers:
    DjM

  7. #7
    Junior Member
    Join Date
    Feb 2007
    Posts
    4
    A lot...but your comment doesn't help my issue

Similar Threads

  1. Internet Explorer URL Spoofing Vulnerability
    By anjali in forum Microsoft Security Discussions
    Replies: 2
    Last Post: February 16th, 2004, 06:24 PM
  2. the anonymity tutorial
    By hot_guy in forum AntiOnline's General Chit Chat
    Replies: 3
    Last Post: August 2nd, 2003, 02:18 PM
  3. The Worlds Longest Thread!
    By Noble Hamlet in forum AntiOnline's General Chit Chat
    Replies: 1100
    Last Post: March 17th, 2002, 08:38 AM
  4. CERT Advisory CA-2002-04 Buffer Overflow in Microsoft Internet Explorer
    By jcdux in forum Microsoft Security Discussions
    Replies: 4
    Last Post: March 3rd, 2002, 04:02 PM
  5. Denail Of Service FAQ
    By Ennis in forum The Security Tutorials Forum
    Replies: 4
    Last Post: November 15th, 2001, 06:42 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides