Fordward
17-11-15, 07:52 PM
I know there's a few techhies on this forum, and it's a long time since I did a hands on technical job.
I'm looking for a new switch and firewall for the local community centre, who currently run their network off an 8 port hub uplinked to a 4 port LAN switch in the back of a Draytek Vigor firewall. These 10 ports are all utilised and they can't plug in anything else, like new PC's, new printers or their CCTV DVR.
They have two wireless access points which provide public wifi for the bar and village hall, and another client wifi for people renting the meeting rooms. These are all on the same /24 subnet as the server and all the office PC's and the network is open to internal attack from any member of the public connecting to that network. Ports are currently open from the internet straight into this internal network. When there's a lot of people in the building they run out of addresses within the DHCP scope.
So, I want to install a new switch and firewall.
The switch has to support VLAN's, either logically tagged, or untagged and assigned to physical ports, so I can create different segregated networks for the internal network, another for the public wifi, another for the client wifi, and another as a web facing DMZ, all on one switch. 24 port would be enough. 1Gbps RJ45 interfaces.
The firewall needs either 5 interfaces which are configurable, for these 4 different networks plus the WAN port, or it needs to support logical trunking so I can 802.1Q tag all these different networks over a single LAN interface (or a pair of interfaces if it and the switch support link aggregation, but this isn't a critical business so if I have to spend twice as much to get that redundancy I won't bother. The switch and firewall will both be single points of failure anyway).
So, keeping it as cheap as possible (this place is run as a charity where £1000 is a lot of money), what switch and firewall would you recommend?
Thanks
I'm looking for a new switch and firewall for the local community centre, who currently run their network off an 8 port hub uplinked to a 4 port LAN switch in the back of a Draytek Vigor firewall. These 10 ports are all utilised and they can't plug in anything else, like new PC's, new printers or their CCTV DVR.
They have two wireless access points which provide public wifi for the bar and village hall, and another client wifi for people renting the meeting rooms. These are all on the same /24 subnet as the server and all the office PC's and the network is open to internal attack from any member of the public connecting to that network. Ports are currently open from the internet straight into this internal network. When there's a lot of people in the building they run out of addresses within the DHCP scope.
So, I want to install a new switch and firewall.
The switch has to support VLAN's, either logically tagged, or untagged and assigned to physical ports, so I can create different segregated networks for the internal network, another for the public wifi, another for the client wifi, and another as a web facing DMZ, all on one switch. 24 port would be enough. 1Gbps RJ45 interfaces.
The firewall needs either 5 interfaces which are configurable, for these 4 different networks plus the WAN port, or it needs to support logical trunking so I can 802.1Q tag all these different networks over a single LAN interface (or a pair of interfaces if it and the switch support link aggregation, but this isn't a critical business so if I have to spend twice as much to get that redundancy I won't bother. The switch and firewall will both be single points of failure anyway).
So, keeping it as cheap as possible (this place is run as a charity where £1000 is a lot of money), what switch and firewall would you recommend?
Thanks