>I'm no Cisco-Certified Network guy. So, take it with a grain of salt. You seem to be doing well enough without a diploma! Thanks.
>With the SOHO router/NAT devices, you are not doing VLAN trunking, >so you are not carrying two networks in the wires at the same time. That is why I used the term "subnet." >If a bad guy were to get on the WiFi network, he can flood the MAC >address table for the switch in the "New Router" and make the >switch part (LAN side) behave like a dumb hub. So I see it is possible to break the router and lose the benefits of the isolation the router is supposed to provide. But doesn't the ARP flood have to originate on the LAN side of my router. If someone produces an ARP flood on the WiFi side of the network won't it fail because it is on the WAN port side of my inside router? >What is the connection (drawn above) from the 192.168.1.xxx LAN to the >10.10.10.xxx WiFi AP#1 (verticle line) for? That makes no sense to me. I need to give that sketch another try. ************************************************************************* ** List info, subscription management, list rules, archives, privacy ** ** policy, calmness, a member map, and more at http://www.cguys.org/ ** *************************************************************************
