Hello guys, I wanted to share with you my current and to be honest, the first networking project of this size.
Its for my friend who wants to wire up the house and install some hardware. Perhaps its best if I show you structure of a planned network that I drew in Cisco Packet Tracer.
Unless you are going to make different subnets with different configuraitons there is no need to have multiple switches. Just have a switch with more ports and a single ap imho.
If one desiers to have different configs on the same network it is easier to create vlans instead of subnets so a switch with more ports is a better idea either way.
ok care to explain why do you need the switch-PT 192.168.1.2, and Switch-PT 192.168.1.5
also subnets please... don't run same subnet /24 over multiple networks it gets buggy unless you are going /25 - /29 etc.
Please copy config over.
In best scenario you should run CDA layer approach (Core, Distribution, Access)
You are currently designing 2 complete failures into this network. 1) If your core wireless-router gets down. 2) If your core switch 192.168.1.2 gets down.
Best approach is either eliminating middle switch and connecting other switches directly to your router, or adding additional switch for fail-over. (2x the cables) then enable spanning tree.
Other security issues is allowing wireless devices through switch, and having workstation attached to same network. (Its ok if they are on separate network pool), then you can initiate gateway network broadcast helper to give them DHCP from your router, and set up your client pooling (thus wifi client can move between networks without loosing connection to internet.) (requries to be set up with same ssid, and same channel only small differences in frequency - else client will loose connection)
Switch 192.168.1.2 - the central one - will be located in ideal spot in the house and it will be place from where all the cables will be going to different appartments. Local switches will work as connections multipliers for PC, TV, Laptop and WIFI AP.
I need switch 192.168.1.5 as it will be located on the bottom floor (of 3 total) to wire up a workshop and wireless AP. The wireless should be overlapping and doing free hand-off no matter where you go in the house.
Friend wants minimal cabeling, without sockets in walls - therefore we use switch at each apartment.
you are aware that if that main switch dies/hangs all your network dies? Its much better to have 2 pairs of cables going to every switch (its not that much of work) and additional switch.
(and that you don't really need the middle switch in between if you have interfaces on your router?.) (in worst case where you need all those switches you'd need only 4 ports on your router for your network)
Yes, but thank for pointing them out. The budget is very limited and its streched already. In case we would buy new and more capable router, that would be definitely a good way to go, but this one does not have enough ports.
Just to make this clear, this will be residential instalation, not small business. All those computers need to connect to internet, not really at same time.
Its not really determined how the LAN will be segmented into VLANs yet.
point them out that they are imposing big security issue on any pc connecting through lan, and having wlan devices run on same network.
As of today, all wlan networks can be hacked within a day.
Other things - You need to disable secret etc admin controls from switch on all ports except console - Disable broadcasting network/updates onto interfaces that connect to your lan segments. - Same segment same pooling may be also a security issue if those will be private apartments... well nothing like good BLACK tools. (penetration testing toolset - no1 pretty much calls it like that anymore but still...)
