Retail Computer Store Network Setup

RCD_Technology_Solutions

RCD_Technology_Solutions

Active Member
Reaction score
30
Location
Long Island NY
Good morning all.

I recently purchased a small computer repair shop and slowly making changes as I see fit to better support the local customers.

The network is a simple 192.168.0.x flat hanging off a cable modem. One of my worries is that if a customers PC is virus infected it could spread unknowingly, Another is if a PC has some type of LogMeIn, teamviewer installed and the PC is on over night, the PCs owner could try to remote connect and see what else is on the network... I know too paranoid.

Currently we have several "Shop" pcs for connecting customers hard drives to backup and scan for viruses....

My thought is to have a sonicwall-ish device (Or even Untangle) with a DMZ and LAN on 2 different networks throughout the store running on seperate networks. Use 192.168.0.x for the store pc, shop pcs, NAS and printer, and 172.16.0.1 for the "DMZ" on seperate switches for the customers PCs to connect to the internet and scanning.

Thoughts? Too Paranoid....?:eek:

Thanks Bob
 
When I had a retail store we had a sonicwall and seperated the techroom bench pc's from our network as there are too many possibilities for a virus to spread through the network. Also it is important not to be able to see other PC's that they have on the bench that could also infect each other.
 
From our modem, it goes into a MikroTik, The MikroTik is plugged into a Switch that leads to the benchs. Incase a computer doesn't have an ethernet jack, the MikroTik is broadcasting a WiFi as well. A SonicWall is also plugged in the MikroTik that leads to our switch and AP.
 
RCD_Technology_Solutions said:
My thought is to have a sonicwall-ish device (Or even Untangle) with a DMZ and LAN on 2 different networks throughout the store running on seperate networks. Use 192.168.0.x for the store pc, shop pcs, NAS and printer, and 172.16.0.1 for the "DMZ" on seperate switches for the customers PCs to connect to the internet and scanning.

Thoughts? Too Paranoid....?:eek:

Thanks Bob
Click to expand...

I don't call that paranoid at all, matter of fact..common sense.

Service area separated from the rest, that's smart...keeps infected computers from spreading their disease to your stuff, and other clients computers.
 
acscva said:
When I had a retail store we had a sonicwall and seperated the techroom bench pc's from our network as there are too many possibilities for a virus to spread through the network. Also it is important not to be able to see other PC's that they have on the bench that could also infect each other.
Click to expand...

My shop's setup is pretty similiar to acscva. I have a separate network for the bench computers\laptops then my own network of my work computers\laptops\servers.
 
With todays cost effective managed switches, you can easily and securely do this with VLANs that the switch manages. Heck you can even do it on the cheap with cheapy unmanaged switches and an old Stinksys routers with DD-WRT firmware....and do port based VLANs on the 4 port switch. Port 1 uplinks to a switch which leads to your office network, port 2 with second VLAN uplinks to a switch for your service bench. Keeps it simple..same IP range, same physical network.
 
YeOldeStonecat said:
With todays cost effective managed switches, you can easily and securely do this with VLANs that the switch manages. Heck you can even do it on the cheap with cheapy unmanaged switches and an old Stinksys routers with DD-WRT firmware....and do port based VLANs on the 4 port switch. Port 1 uplinks to a switch which leads to your office network, port 2 with second VLAN uplinks to a switch for your service bench. Keeps it simple..same IP range, same physical network.
Click to expand...



Great Advice,

Many Thanks....
 
You must log in or register to reply here.

Similar threads

HCHTech
Windows 11 folder sharing problem
Replies
19
Views
4K
HCHTech
HCHTech
ThatPlace928
Support for Windows 11 23H2 Ends November 10, 2025
Replies
11
Views
820
Diggs
Diggs
E
[SOLVED] 24H2 will not reconnect to mapped drives even with passwords
2
Replies
31
Views
3K
John Kennedy
John Kennedy
Pork Chop
I can see former MS Store apps on freshly n&p PC
Replies
9
Views
1K
YeOldeStonecat
YeOldeStonecat
britechguy
Getting Exact Model Information for Your Computer
Replies
3
Views
450
YeOldeStonecat
YeOldeStonecat
Back
Top