Soho97 - Lan - Wlan

[P1pp0]

Ciao a tutti,
vorrei un aiuto per configurare al meglio il mio router in quanto ho una rete composta da 3 PC LAN e 5 PC Wireless.
Ho pensato, quindi, di suddividere gli indirizzi in due blocchi ed attivare due IP (primario 192.168.1.1 ed secondario 192.168.1.129) sulla eth del router.
I PC hanno la seguente congurazione:
- Server [LAN] 192.168.1.100 255.255.25.128
- Access point wireless 192.168.1.150 255.255.255.128
A questo punto volevo fare in modo che tutti i PC che si collegano mediante wireless possano navigare su internet ed interrogare solo un PC della LAN (server); i rimante PC della LAN non possono connettersi o ricevere connessione dai PC collegati mediante wireless.
Vi posto la mia configurazione:

Codice: Seleziona tutto

version 12.3
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
!
hostname ******
!
boot-start-marker
boot system flash soho97-k9oy1-mz.123-4.T4.bin
boot-end-marker
!
logging buffered informational
enable secret 5 ******
!
username ****** password 7 ****
clock timezone METDST 1
clock summer-time METDST recurring last Sun Apr 2:00 last Sun Oct 2:00
ip subnet-zero
ip name-server 212.216.112.112
ip name-server 212.216.172.62
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.2
ip dhcp excluded-address 192.168.1.3
ip dhcp excluded-address 192.168.1.100
ip dhcp excluded-address 192.168.1.101
ip dhcp excluded-address 192.168.1.102
!
ip dhcp pool CLIENT
   import all
   network 192.168.1.0 255.255.255.128
   default-router 192.168.1.1 
   dns-server 212.216.112.112 212.216.172.62 
   lease 0 2
!
ip dhcp pool SEGRETERIA
   host 192.168.1.102 255.255.255.128
   client-identifier ******
   default-router 192.168.1.1 
   dns-server 212.216.112.112 212.216.172.62 
   lease 0 2
!
ip dhcp pool SALA
   host 192.168.1.103 255.255.255.128
   client-identifier ******
   default-router 192.168.1.1 
   dns-server 212.216.112.112 212.216.172.62 
   lease 0 2
!
ip dhcp pool SERVER
   host 192.168.1.100 255.255.255.128
   client-identifier *****
   default-router 192.168.1.1 
   dns-server 212.216.112.112 212.216.172.62 
   lease 0 2
!
!
ip ssh break-string 
no aaa new-model
!
!
! 
no crypto isakmp enable
!
!
!
!
interface Ethernet0
 ip address 192.168.1.129 255.255.255.128 secondary
 ip address 192.168.1.1 255.255.255.128
 ip access-group 106 out
 ip nat inside
 ip tcp adjust-mss 1452
 hold-queue 100 out
!
interface ATM0
 no ip address
 no atm ilmi-keepalive
 pvc 8/35 
  pppoe-client dial-pool-number 1
 !
 dsl operating-mode auto
!
interface Dialer1
 ip address negotiated
 ip access-group 105 in
 ip mtu 1492
 ip nat outside
 encapsulation ppp
 dialer pool 1
 dialer-group 1
 ppp authentication pap callin
 ppp pap sent-username *** password 7 *****
!
ip nat inside source list 101 interface Dialer1 overload
ip nat inside source static udp 192.168.1.102 4672 interface Dialer1 4672
ip nat inside source static tcp 192.168.1.102 4662 interface Dialer1 4662
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
no ip http secure-server
!
!
access-list 101 permit ip host 192.168.1.100 any
access-list 101 permit ip host 192.168.1.101 any
access-list 101 permit ip host 192.168.1.102 any
access-list 103 deny   ip any any
access-list 105 deny   tcp any any lt 1024
access-list 105 deny   udp any any lt 1024
access-list 105 deny   icmp any any redirect
access-list 105 deny   icmp any any information-request
access-list 105 deny   ospf any any
access-list 105 permit ip any any
access-list 105 deny   icmp any any information-reply
access-list 105 deny   icmp any any mask-reply
access-list 105 deny   icmp any any mask-request
access-list 105 deny   icmp any any fragments
access-list 105 deny   icmp any any net-tos-redirect
access-list 105 deny   icmp any any ttl-exceeded
access-list 105 deny   icmp any any source-route-failed
access-list 105 deny   pim any any log
access-list 105 deny   tcp any any range 135 139
access-list 105 deny   udp any any range 135 netbios-ss
access-list 105 permit udp host 193.204.114.232 any eq ntp
access-list 105 permit udp host 193.204.114.233 any eq ntp
access-list 105 permit udp host 129.24.32.4 any eq ntp
access-list 105 permit udp host 125.52.73.55 any eq ntp
access-list 105 permit udp host 133.46.3.66 any eq ntp
access-list 106 permit tcp any any established
access-list 106 permit udp host 212.216.112.112 eq domain any
access-list 106 permit udp host 212.216.172.62 eq domain any
access-list 106 permit udp any any eq bootps
access-list 106 permit udp any host 192.168.1.102 eq 4672
access-list 106 permit tcp any host 192.168.1.102 eq 4662
!
control-plane
!
!
line con 0
 exec-timeout 120 0
 no modem enable
 transport preferred all
 transport output all
 stopbits 1
line aux 0
 transport preferred all
 transport output all
 stopbits 1
line vty 0
 access-class 101 in
 exec-timeout 120 0
 login local
 length 0
 transport preferred all
 transport input all
 transport output all
line vty 1 4
 access-class 103 in
 exec-timeout 120 0
 login local
 length 0
 transport preferred all
 transport input all
 transport output all
!
scheduler max-task-time 5000
sntp server 193.204.114.232
sntp server 193.204.114.233
sntp server 129.24.32.4
sntp server 125.52.73.55
sntp server 133.46.3.66
sntp broadcast client
!
end

Infine come posso configurare il DHCP per fare assegnare in automatico gli indirizzi IP con un certo range (es. da 192.168.1.110 a 192.168.1.150) e perchè il router non riesce ad aggiornare il prorpio orario e data dai server ntp configurati??
Grazie a tutti ed a presto.

[P1pp0]

Ho corretto il testo del thread e spero di aver descritto il mio problema in modo un pò più chiaro.
Grazie a tutti

[P1pp0]

Colgo l'occesione di farvi gli auguri di buon natale e di riportare l'attenzione al mio problema.
Grazie a presto