Access between LANs

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

Hans Pettersson

New Around Here
Hi

My home network looks lake this

First router connected to Internet 100 Mbs fiber

Connected to this router is a second router to witch some devices are connected
devices like cameras remote switches ant switch.

The second router has its own local network and all its clients are listening to port 80

There is a port forwarded on the first router to the second

1. Can a device/client on the second router/network be accessed from the first router/network (internet)
knowing the devices IP, on the second network without forwarding any port on that network.

2. Can a device/client on the second router/network access a device on the first router/network
knowing that devices IP on the first network.

/HansP
 

ColinTaylor

Part of the Furniture
There is a port forwarded on the first router to the second
This statemnet makes me think that your second router is performing NAT on its WAN interface. Assuming that is the case...

1. Can a device/client on the second router/network be accessed from the first router/network (internet)
knowing the devices IP, on the second network without forwarding any port on that network.
No.

2. Can a device/client on the second router/network access a device on the first router/network
knowing that devices IP on the first network.
Yes.
 

Hans Pettersson

New Around Here
2. Can a device/client on the second router/network access a device on the first router/network
knowing that devices IP on the first network.
Yes.


How?

/HansP
 

ColinTaylor

Part of the Furniture
2. Can a device/client on the second router/network access a device on the first router/network knowing that devices IP on the first network.

Yes.

How?
It just works - This is assuming that there isn't a firewall on the target device that would block traffic from a non-local source. Try it.

Think about it like this: as far as the second router is concerned everything upstream of its WAN port is "the internet". It doesn't matter whether the destination is on the "real" internet or the primary router's LAN. It's all the same as far as the second router is concerned.
 

CaptainSTX

Part of the Furniture
Because devices on your second router can access devices on your first router it would be more secure to reverse the order of your routers and have your IoT devices connecting to this router then if/when they are compromised they will not be able to access your primary and hopefully more secure LAN and its connected devices.
 

ds5686920

Occasional Visitor
If you have extra money lying around, check out the Firewalla Gold. Its a great firewall/router/switch to have as your network/segments become more complex. Any device can be quarantined from smartphone app. New devices auto-quarantined option. I have no financial connection to Firewalla.
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top