Two routers, one DNS but won't work.

Comments

15 comments

  • Avatar
    maintenance

    You need to refer to the router instructions on connecting two routers together. Not sure what it you are losing, so I can't advise much further. But the second router should not be taking (WAN) DHCP from the primary (at least not for DNS), or settings will be overwritten. If you lose connectivity, you may have not set IPs correctly. That second router will have two different IPs - the one that the upstream router sees, and the one that the downstream devices/computers see, so ensure you are not confusing the two. And the primary should expect the WAN IP of the downstream router if you are settings it as static.

     

     

  • Avatar
    st.pierre87
    What I am loosing is the parental controls. When I hook up the second router to the first the web filter does not work. I can access both routers seperatly from my browser via different IP address and see that I have the DNS set on the second router but once I access the second router via any device there is any web filtering
  • Avatar
    pandas555

    I also need parental controls for my teens.  I use a linksys router for device specific and website specific parental controls.  However, I much prefer the category specific parental controls offered by OpenDNS. 

    BUT -  I do not want the controls to be blanket applied to all devices on the network.   I understand that I need  to implement a second router with a different IP address so I can have some devices go through the DNS controlled network and others not.  

    Would the upstream/downstream configuration described here be a good solution?  If not, what do you recommend??

     

  • Avatar
    rotblitz

    Before you go for two routers, you may consider the following two easier and cheaper options:

    • Either configure the OpenDNS resolver addresses only on the devices you want to have content filtered,
    • Or configure the OpenDNS resolver addresses on the router, but configure alternative ones (e.g. your ISP's) on the devices you want to exempt from content filtering.

    The decision will mainly be made based on the aspect of maintenance. If you have less devices to be content filtered, the first option is the way to go, else the second option is more efficient.

  • Avatar
    rishiforum

    I know the solution & i can help you.

  • Avatar
    Chris Frost

    @st.pierre87 where you able to get everything all sorted out?

  • Avatar
    anthonytexas

    I have a similar issue.  Main router does not have content filter via OpenDNS. However, a second router (which is connected to the primary router) does.  This is okay since my kids are only connecting to the the wifi on the second router.  Now, I have a need to apply OpenDNS content filter on the primary router as well. How would I go about doing this?  Thanks.

  • Avatar
    mattwilson9090

    The simplest way is to assign the OpenDNS addresses on the first router as well, and then either leave the 2nd router configured as it is, or to point it at the first router for it's own DNS. However, using the free OpenDNS service you will not be able to apply two different sets of filtering since ultimately both routers will share the same public IP address, and that address is what OpenDNS uses to control your filtering.

  • Avatar
    Alexander Harrison

    If you're using two full fledged routers at home, since the configuration is at the router level you'd need to also configure the second one (as mentioned above) and that should take care of the settings for both routers.

  • Avatar
    cjvervaet

    However, in your case, it sounds like you really want two separate networks, one for your use and one for your kids. You can do this with what you have.

    • One of your routers will be connected to your ISP. This router needs to be assigned the internal LAN IP 192.168.1.1, and hand out DHCP addresses on something like 192.168.1.2 through 192.168.1.50. Call this router Router A.

    • Connect a cable from one of the LAN ports on router A to the WAN port on router B. Set Router B's WAN IP address to 192.168.1.51, and its internal LAN IP to 192.168.2.1. Tell it to hand out DHCP addresses on something like 192.168.2.2 through 192.168.2.50. Set the DNS settings on this router's DHCP to what you want for your kids.

  • Avatar
    kuduboet

    So I have mine setup like this, Router 1 is plugged into ISP and is has IP 192.168.2.1 and is serving up DHCP from 192.168.2.50 up to 192.168.2.120. Router 2 is plugged into LAN port of 1 and WAN port of 2. Router 2 IP is set set to WAN IP 192.168.2.150 and LAN IP is 192.168.3.1 serving DHCP 192.168.3.50 to 192.168.3.120. The issue I now have is that systems are on different subnets and can't access things like printers and Plex, how do I solve that?

  • Avatar
    mattwilson9090

    @kuduboet This forum is for user support, comments, and discussion related to OpenDNS, not general IT questions. Are you having issues with OpenDNS with this setup, or just the more generalized IT issues you referred to?

  • Avatar
    kuduboet

    Sorry for not being clearer mattwilson, yes I am trying to do what one of the earlier posters was trying to do, to setup up two SSID's, one with OpenDNS protection and the other without. I thought I had it right, and was getting access and all, but OpenDNS Updater was giving me an error saying my IP addresses had a mismatch. I then realized it was because both routers were set to DHCP for WAN, so after setting it up as described in my original post the OpenDNS part seems to be working the Updater app seems happy but I couldn't access things between the networks. I think I might have solved it by changing the IP assignments for the second router, making the WAN IP 192.168.2.150, the LAN IP 192.168.2.151 and serving DHCP for the second router from 192.168.2.160 to 192.168.2.210. It seems to be working, see anything fundamentally wrong with this, the Updater app still seems to be happy and I seem to be able to access things between networks . Thanks.

  • Avatar
    rotblitz

    "...but I couldn't access things between the networks"

    And exactly this is what is not OpenDNS related, as mattwilson9090 said, but is a topic for your router's support forum.  You even didn't state what exact router models you have, so we cannot help much anyway.

    Just this general direction to go:
    Because your network consists of two separate subnets now, 192.168.2.0/24 and 192.168.3.0/24, you have to configure static IPv4 routes on at least one router to indicate how to route from one to the other subnet.  How to do this is the topic to be raised on your router's support forum.

  • Avatar
    ftballpack

    I do this exact thing for my parents, not to block adult content but instead malware, although this would also work for filtering out adult content for children.

    Our main router/dsl modem is configured with the ISP DNS servers. This provides DNS to the unrestricted part of our network. I then setup the Sophos Home UTM in Transparent proxy mode and installed an Apple Airport Express behind it to act as an Access Point. Using this setup, 1/2 of my network is using the ISPs DNS servers and 1/2 of the network is using OpenDNS on the Transparent Web Proxy on the Sophos UTM.

    This setup prevents double NAT issues and allows 1/2 of the network to be heavily malware/phishing filter while the other 1/2 of the network has nothing additional applying to it.

Please sign in to leave a comment.