My small setup and questions

Discussion started by elnuevopajaro, May 16, 2006.

  1. I am trying to design an architecture for my new office. My objectives are:
    - supporting employees totalling not more than 24 at the moment.
    - segregating each department to have control over who can reach who
    - having an WiFi access point to the meeting room for public access via laptop. This probably mean another VLAN which will not see the other departments at all.
    - having a WiFi wireless network with encryption and password authentication.

    My current proposal is:

    broadband connection
    layer2 managed switch
    | | |
    n dept n dept WiFi Access pt/router

    1) I would be using a layer2 managed switch such as Linksys SRW224G4 and D-link 3526 where VLAN is implemented by port grouping. When this is done,
    a) will the VLANs be able to see one another implementing
    these layer2 VLANs by default?
    b) ACLs are avail but only seems applicable for specific
    addresses within each VLAN, not a ACL between VLANs.
    Anyway to implement ACL VLANs via these L2 managed

    2) For the WiFi, i stated either AP/router. Logically speaking AP is used but i would like to know if i can use those broadband routers as the access point instead such as Linksys WRT54G? I am thinking of WRT54G as it is in most FAQs for opensource firmware and radius. If yes then wad is the point of using access points when these routers have more features yet cheaper?

  YeOldeStonecat

    YeOldeStonecat Network Guru Member

    Is this a single business? With so many computers...on a network surely by now you have a "server"..meaning a true server OS. Handle the "who has access to what data" by using active directory..groups.
    Yes with port based VLANs...members of different VLANs will never be able to see each other on the's almost like they are on separate networks.

    The wrv200 is a small business wireless router which supports multiple SSIDs..on vlans.
