VLAN for Hotspot?

seedubya · Mar 8, 2013

A client of mine - a pub - just got 150MB broadband installed. We're installing a hotspot for him based in 5x Unifi access points.

Currently, on the network he has 1 pc, some dvrs and some ePOS terminals. I want to isolate these from the hotspot but the PC needs to be able to access both segments.

How would you accomplish this? The router is a Cisco EPC3925 EuroDocsis and doesn't support vLANs.

A managed switch maybe?

Budget is not a huge issue.

YeOldeStonecat · Mar 8, 2013

Is the Cisco RV220W avail on your side of the pond?
Supports multiple SSIDs and client isolation and I believe port based VLANs.
(whoops..just noticed you may already have Unifies...was suggesting this instead of them..in which case a basic managed switch that does port based VLANs would be my approach also).

Nerm · Mar 8, 2013

Yes a managed switch that supports VLAN's would be the way to go. In fact if budget isn't an issue I would recommend a Layer3 switch with POE since you are using Ubiquiti UniFi's (fewer POE adapters hanging from the access points).

Knightsman · Mar 8, 2013

You need to setup a guest portal with client isolation. You can do this within unifis controller.

Nerm · Mar 8, 2013

Knightsman said:
You need to setup a guest portal with client isolation. You can do this within unifis controller.

This is true. I completely forgot about that feature.

seedubya · Mar 8, 2013

Knightsman said:
You need to setup a guest portal with client isolation. You can do this within unifis controller.

Okay...

So no need for the managed switch then?

A quick read though, tells me that the PC hosting the controller software needs to stay on all the time.

Real world experience very welcome.

Nerm said:
Yes a managed switch that supports VLAN's would be the way to go. In fact if budget isn't an issue I would recommend a Layer3 switch with POE since you are using Ubiquiti UniFi's (fewer POE adapters hanging from the access points).

Nerm, I don't think they support 802.3af or 802.3at POE. AFAIK you need an inline adapter to make them work?

Nerm · Mar 8, 2013

seedubya said:
Nerm, I don't think they support 802.3af or 802.3at POE. AFAIK you need an inline adapter to make them work?

The Pro unit supports 802.3af.

Knightsman · Mar 8, 2013

seedubya said:
Okay...

So no need for the managed switch then?

A quick read though, tells me that the PC hosting the controller software needs to stay on all the time.

Real world experience very welcome.

Nerm, I don't think they support 802.3af or 802.3at POE. AFAIK you need an inline adapter to make them work?

That is true, but if it does go offline, then the unifis will fail safe and stay in guest mode which still isolates them from the network. It will however stop showing the initail sign on screen.

We use an amazon instance to host as our controller. The cost is more, but its cheap as well, and opens the door to charge them maintenance.

Here is the wiki for unifi: http://wiki.ubnt.com/UniFi_FAQ it explains how to do a lot of things.

ill be glad to help out as much as possible.

krtechsolutions · Mar 8, 2013

Get a cyberoam cr25NGi with a managed layer 2 switch, you will be golden.

seedubya · Mar 8, 2013

krtechsolutions said:
Get a cyberoam cr25NGi with a managed layer 2 switch, you will be golden.

Next time kr and thank you for the recommendation.
The Unifi's are already mounted.

Knightsman · Mar 8, 2013

seedubya said:
Next time kr and thank you for the recommendation.
The Unifi's are already mounted.

I think once you figure UBNT out, you will realize for the price its a lot better than any other offering. Picostations cant be beat for a access point, the power and flexability, M2s for extending an network to a building across the street.

There is a big learning curve, check out the forums. It's an awesome product.

uprighttech · Mar 9, 2013

seedubya said:
Okay...

So no need for the managed switch then?

A quick read though, tells me that the PC hosting the controller software needs to stay on all the time.

Real world experience very welcome.

Nerm, I don't think they support 802.3af or 802.3at POE. AFAIK you need an inline adapter to make them work?

Ubiquiti has a new series of TOUGHSwitches out that can power the non-Pro 24V Unifi models. The entry-level switch can only power the 24V Unifis. The two higher end models can also power the 48V Pro model. I really wish Uniquiti would make all of their equipment 802.3af compliant.

@seedubya, these switches do support VLANs so they may work great for what you need. They can power the Unifis without the PoE injectors and do the VLANs.

seedubya · Mar 9, 2013

uprighttech said:
@seedubya, these switches do support VLANs so they may work great for what you need. They can power the Unifis without the PoE injectors and do the VLANs.

Thank you so much! I'll call my supplier on Monday and see if he has them.

Knightsman · Mar 9, 2013

seedubya said:
Thank you so much! I'll call my supplier on Monday and see if he has them.

I can almost guarantee they don't. Is been a 3 month waiting period. But you might get lucky. Point is i wouldn't expect it to arrive in time for this job of yours.

seedubya · Mar 9, 2013

Knightsman said:
I can almost guarantee they don't. Is been a 3 month waiting period. But you might get lucky. Point is i wouldn't expect it to arrive in time for this job of yours.

Alrighty - a 3com + POE injectors it is then.

Knightsman · Mar 10, 2013

Just so you know, these are cool too!

http://www.ubnt.com/8023af

VLAN for Hotspot?

seedubya

Well-Known Member

YeOldeStonecat

Well-Known Member

Nerm

Member

Knightsman

Well-Known Member

Nerm

Member

seedubya

Well-Known Member

Nerm

Member

Knightsman

Well-Known Member

krtechsolutions

Member

seedubya

Well-Known Member

Knightsman

Well-Known Member

uprighttech

Active Member

seedubya

Well-Known Member

Knightsman

Well-Known Member

seedubya

Well-Known Member

Knightsman

Well-Known Member

Similar threads