Skip to main content

Industrial Net and Intranet isolation and access

More
14 years 8 months ago #33986 by DarrellofModesto
Industrial Net and Intranet isolation and access was created by DarrellofModesto
I have two networks in my plant. One is an Industrial network with PLC's and HMI's and the other is the Intranet that has the server and office computers. I have wireless access to the Intranet on my laptops and use Laptops to work on the Industrial equipment. Would a managed switch allow me to connect the two networks without flooding the Intranet with the broadcast data from my Industrial network but allow me to access the Industrial network wirelessly using the laptops through the Intranet? If not then what would be the best was to do it?

Thanks,
More
14 years 8 months ago #33987 by S0lo
Replied by S0lo on topic Re: Industrial Net and Intranet isolation and access
A high performance switch should do fine. If you are sure that the industrial network produces allot of broadcast traffic (i.e. headed to MAC address: FF:FF:FF:FF:FF:FF), Then you could use a switch that supports VLANs and define two VLANs on it, one for each network. Then use a router to route between the two VLANs
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
More
14 years 8 months ago #34016 by DarrellofModesto
Replied by DarrellofModesto on topic Re: Industrial Net and Intranet isolation and access
Thanks for the info.
So I understand that the managed switch separates the two VLAN but how does the router or laptop get configured to allow access from one VLAN to the other without affecting its access to the primary Intranet? I thought that the managed switch would be configured to recognize the laptops on the Intranet VLAN and allow access for them through it to the Industrial VLAN. How does the router play into it?
More
14 years 7 months ago #34019 by S0lo
Replied by S0lo on topic Re: Industrial Net and Intranet isolation and access
A router always separates two or more networks or subnets (i.e VLANs). A normal switch works only at layer 2 (i.e MAC addresses) while a router works on layer 3 (IP addresses). Have a look at the following:

www.firewall.cx/ip_routing.php

Don't hesitate to ask if you have further questions.
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
More
14 years 7 months ago #34028 by DarrellofModesto
Replied by DarrellofModesto on topic Re: Industrial Net and Intranet isolation and access
Okay, so what I really need is a Router. The router then "Learns" the two networks and directs the traffic between the machines on the two networks while still keeping them separate.


For some reason the post dates are wrong. Today is Tuesday the 23rd
More
14 years 7 months ago #34033 by S0lo
Replied by S0lo on topic Re: Industrial Net and Intranet isolation and access

For some reason the post dates are wrong. Today is Tuesday the 23rd


I see your last post on "Tue Mar 23". Try to set the time zone correctly in your account's profile.
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
Time to create page: 0.129 seconds