I am building a new house where I would also like to have a small business with standard pc services (i.e. building and fixing). I am trying to design the network for the house and I would like to get some input on what hardware to use.
Networks & Requirements
Networks & Requirements
- Home network
- a couple of PCs, security cameras and a Active Directory/DHCP/DLNA/File servers
- WiFi access
- VPN access to this network (assuming one public v4 IP won't be a problem)
- Guest network
- Isolated WiFi for customers with a separate SSID (private VLAN?)
- Can only connect to the internet
- "Biohazard" network
- Separate network for the PCs I'm going to be working on (completely isolated in case the PCs are stuffed with viruses and/or other junk
- Should have access to the internet
- Should have limited access to some of the servers in the Home network to access some shared folders
- I won't be able to cover the whole house with one AP, should I use multiple APs or a single one with extenders? Which option would you recommend considering the above?
- For the VPN access, does it make sense to buy a specialized VPN firewall (e.g. https://www.zyxel.com/us/en/products_services/smb-security_appliances_and_services.shtml?t=c) or would you recommend using a custom server as a gateway to the network?
- How would you recommend to implement the isolation of the network for the PCs I'm going to be working on? I'm guessing that port based VLAN will not help since I can't really achieve the limited trust between the networks