Hi all,
Forgive me if this is a stupid question, but it's late (and I couldn't think of good search terms to find any previous answers to this question)...
Basically, I want to know if I can connect a hub (yes, a hub, *not* a switch) directly to my cable modem, with two systems attached to it.
I would like to have an old system with Snort IDS installed off one hub port, and my wireless router off another (with all other systems on the home network behind the wireless router). The idea being that the IDS will see & alert on ALL inbound & outbound traffic from/to Internet, before any filtering takes place, while all other systems are (somewhat) protected behind wireless router.
I initially assumed that this would not be possible because both the IDS and wireless router would try to obtain an IP address from the cable modem, and my ISP will not allow me to have two IPs (presumably). However, I remember reading in the past that a system can be set up without an IP address -- so the IDS could passively receive network traffic, but not be able to be directly communicated with. Would this resolve the issue of two systems each attempting to get an IP from the ISP?
Roughly:
ISP/Internet
|
Cable modem
|
Hub -- IDS (no IP)
|
Wireless router
| | | |
Internal systems
Any other issues? Is this possible at all?
Thanks greatly, in advance, for your help...
Forgive me if this is a stupid question, but it's late (and I couldn't think of good search terms to find any previous answers to this question)...
Basically, I want to know if I can connect a hub (yes, a hub, *not* a switch) directly to my cable modem, with two systems attached to it.
I would like to have an old system with Snort IDS installed off one hub port, and my wireless router off another (with all other systems on the home network behind the wireless router). The idea being that the IDS will see & alert on ALL inbound & outbound traffic from/to Internet, before any filtering takes place, while all other systems are (somewhat) protected behind wireless router.
I initially assumed that this would not be possible because both the IDS and wireless router would try to obtain an IP address from the cable modem, and my ISP will not allow me to have two IPs (presumably). However, I remember reading in the past that a system can be set up without an IP address -- so the IDS could passively receive network traffic, but not be able to be directly communicated with. Would this resolve the issue of two systems each attempting to get an IP from the ISP?
Roughly:
ISP/Internet
|
Cable modem
|
Hub -- IDS (no IP)
|
Wireless router
| | | |
Internal systems
Any other issues? Is this possible at all?
Thanks greatly, in advance, for your help...