F5F Stay Refreshed Power Users Networks One modem and two routers provide two separate Wi-Fi networks. New apartment setup.

One modem and two routers provide two separate Wi-Fi networks. New apartment setup.

One modem and two routers provide two separate Wi-Fi networks. New apartment setup.

X
Xo_PVP_Girl_oX
Senior Member
Find
500
03-10-2023, 09:40 AM
#1
I’m setting up in a new place with built-in Wi-Fi, but I’m worried about keeping my data private—especially for banking online. My smart devices like Google Home and Chrome Cast are also connected, and I don’t want them interfering. Could I connect my own router to theirs so we can keep the networks separate?
Reply
Reply
X
Xo_PVP_Girl_oX
03-10-2023, 09:40 AM #1

I’m setting up in a new place with built-in Wi-Fi, but I’m worried about keeping my data private—especially for banking online. My smart devices like Google Home and Chrome Cast are also connected, and I don’t want them interfering. Could I connect my own router to theirs so we can keep the networks separate?

Reply
Reply
I
Ipod984
Senior Member
Find
707
03-10-2023, 04:40 PM
#2
Connect your other router straight to the modem. This keeps the networks isolated and ensures you only share your internet link. Don't stress about banking—your data travels through a secure layer that reveals only the destination of your packets, not their content.
Reply
Reply
I
Ipod984
03-10-2023, 04:40 PM #2

Connect your other router straight to the modem. This keeps the networks isolated and ensures you only share your internet link. Don't stress about banking—your data travels through a secure layer that reveals only the destination of your packets, not their content.

Reply
Reply
L
LouisPizarro
Member
Find
63
03-10-2023, 10:08 PM
#3
Preferably you need two routing layers (one router before the two routers) or a firewall such as PF-Sense, followed by a switch, then your routers. Most modems lack dual Ethernet ports and chaining routers can cause all devices to share a single network.
Reply
Reply
L
LouisPizarro
03-10-2023, 10:08 PM #3

Preferably you need two routing layers (one router before the two routers) or a firewall such as PF-Sense, followed by a switch, then your routers. Most modems lack dual Ethernet ports and chaining routers can cause all devices to share a single network.

Reply
Reply
D
dinomatt7
Junior Member
Find
5
03-13-2023, 06:13 AM
#4
You could connect any client port from their router to your wan port and enable double NAT. This would isolate your network and block direct PC access. They might still monitor your internet activity if they're skilled. To fully block this, you'd need to use a VPN.
Reply
Reply
D
dinomatt7
03-13-2023, 06:13 AM #4

You could connect any client port from their router to your wan port and enable double NAT. This would isolate your network and block direct PC access. They might still monitor your internet activity if they're skilled. To fully block this, you'd need to use a VPN.

Reply
Reply
Z
zrb2004
Member
Find
72
03-13-2023, 09:25 AM
#5
You can increase the bit rate, as discussed earlier. However, since the data will pass through the router, there are methods they could use to monitor it. Especially if they're tech skilled. If you're not in charge of any link between the client and the internet, the risk increases. That means they might be able to intercept the information. Still, for sensitive transactions like banking, SSL encryption is essential—so you probably don’t need to worry too much about it. Decrypting encrypted traffic isn't a straightforward process.
Reply
Reply
Z
zrb2004
03-13-2023, 09:25 AM #5

You can increase the bit rate, as discussed earlier. However, since the data will pass through the router, there are methods they could use to monitor it. Especially if they're tech skilled. If you're not in charge of any link between the client and the internet, the risk increases. That means they might be able to intercept the information. Still, for sensitive transactions like banking, SSL encryption is essential—so you probably don’t need to worry too much about it. Decrypting encrypted traffic isn't a straightforward process.

Reply
Reply
C
Chickenzinho
Member
Find
69
03-13-2023, 09:48 AM
#6
Best practice is to isolate each network using its own VLAN instead of relying on a double-NAT setup. While most users wouldn’t notice a double-NAT, it may lead to problems with gaming and UpnP apps. You’d need a managed or smart switch with VLAN tagging and a routing device that supports VLANs. Then apply access VLAN rules per port on the switch.
Reply
Reply
C
Chickenzinho
03-13-2023, 09:48 AM #6

Best practice is to isolate each network using its own VLAN instead of relying on a double-NAT setup. While most users wouldn’t notice a double-NAT, it may lead to problems with gaming and UpnP apps. You’d need a managed or smart switch with VLAN tagging and a routing device that supports VLANs. Then apply access VLAN rules per port on the switch.

Reply
Reply
K
kevsom22
Junior Member
Find
13
03-13-2023, 11:25 AM
#7
Place the router in a DMZ area on their device to fully isolate your network from theirs.
Reply
Reply
K
kevsom22
03-13-2023, 11:25 AM #7

Place the router in a DMZ area on their device to fully isolate your network from theirs.

Reply
Reply