Wireless Access Point recommendation for Dental Practice

Hampden Comp

Hampden Comp

Member
Reaction score
5
Location
Hampden, Maine
Here is my thought. I have been able to keep them off wifi for many years and have had next to 0 networking issues. Now the Doc has bought a new sensor that needs wifi. I was thinking if I could drop one in line between the wall cat jack and one of the operatory workstations, 1-2-3 Bob's your uncle, no fuss no tears shed. Any ideas for a dead reliable unit, it can run off wall power. Thanks!
 
So you're looking for an AP and a switch? I would only put a switch outside of the networking closet for a temporary fix.

Run a new drop and use a Unifi AP
 
How big is the practice in terms of space? I just upgraded a small practice, 4 chairs, with a UniFi AP AC LR. Works like a charm.
 
I'm going to make it a little more complicated for you:
You need to do SOMETHING to provide WiFi to the users now, or it has to be named something completely unrelated to the practice. If the practice users realize that there's WiFi, they will track down the passphrase from whoever has it and you'll have personal phones and tablets connected to the network, starting with the dentist most likely. Or his kids when they come to the office with him sometime.
 
fencepost said:
I'm going to make it a little more complicated for you:
You need to do SOMETHING to provide WiFi to the users now, or it has to be named something completely unrelated to the practice. If the practice users realize that there's WiFi, they will track down the passphrase from whoever has it and you'll have personal phones and tablets connected to the network, starting with the dentist most likely. Or his kids when they come to the office with him sometime.
Click to expand...

I would just hide the SSID and then that won't be a problem. Depending on the capabilities of the access point he chooses, he also may be able to decrease the power of the WAP so the signal won't reach but the circumference of the room.
 
Encrypted Existence said:
I would just hide the SSID and then that won't be a problem. Depending on the capabilities of the access point he chooses, he also may be able to decrease the power of the WAP so the signal won't reach but the circumference of the room.
Click to expand...

Beat me to it. See that all the time. And make the SSID some random string rather than some permutation of the business name, slogan, etc. For small installations white listing MAC's makes it even better if you can't use a more sophisticated authentication system.
 
Markverhyden said:
Beat me to it. See that all the time. And make the SSID some random string rather than some permutation of the business name, slogan, etc. For small installations white listing MAC's makes it even better if you can't use a more sophisticated authentication system.
Click to expand...

This is what I would recommend- white list the MAC's with a default deny rule. That way you have complete control over what device can connect. Then hide the SSID so the employees don't send you emails asking for the WiFi password.
 
For businesses like that, we make an additional "guest" SSID, enable the guest policies, VLAN it to a different subnet too, and throttle it. This way, "guests" go on the guest network, keep 'em off the production network. Nothing wrong with allowing guests on, and businesses typically like offering that to their clients.

Unifi controller makes it easy to eyeball things, many of our clients even log in themselves to manage it, change passwords at some frequency, or if things seem super slow, log in and look for someone banging the bandwidth hard and kick 'em off.
 
Your biggest problem is going to be maintaining HIPPA compliance with an AP installed. It's not that it can't be done, it just adds another factor into HIPPA compliance.

You are keeping them in compliance, right?
 
Right, the HIPPA Compliance is easier without wifi access. That is why I haven't gone down that road with them. It is a small practice, one Doc 4 chairs maybe 1,000 square feet. I was thinking of a ubiquiti picostation m2hp. Connect it up to the switch in the closet and mount it outside near the ceiling. I will hide the SSID and use a strong password. Should be strong enough to hit the rooms which are maybe 30 feet away max. Any other ubiquiti models that would work better? No running a new drop in this building, trying to keep it clean, reliable and secure. Thanks again!
 
YeOldeStonecat said:
For businesses like that, we make an additional "guest" SSID, enable the guest policies, VLAN it to a different subnet too, and throttle it. This way, "guests" go on the guest network, keep 'em off the production network. Nothing wrong with allowing guests on, and businesses typically like offering that to their clients.
Click to expand...
This is what I would do. It satisfies HIPPA & infosec best practices.
 
Slaters Kustum Machines said:
Why would you use a Pro when the load is going to be kept to a minimum? I suppose it does give you some expandability if they open up a guest network, but I still don't see a high load on it. Why not use a lite?
Click to expand...

The all AC models allow an isolated guest LAN. But a building like that would probably be fine with a Lite but I use the LR version to make sure they get good coverage. Around $20 more than the Lite and worth every penny in my book.
 
Markverhyden said:
The all AC models allow an isolated guest LAN. But a building like that would probably be fine with a Lite but I use the LR version to make sure they get good coverage. Around $20 more than the Lite and worth every penny in my book.
Click to expand...
I wish there was a cut and dry use the Lite for this, Pro for this, and LR for this. I typically use the Lite when I am pretty confident there will only be a couple of users/devices connected at any one time and go for the Pro's when There will be 15+ connected at one time regularly. I haven't had a need for the LR and I don't want to run into an issue where the AP can blast signal way farther than devices can talk back.
 
Slaters Kustum Machines said:
I wish there was a cut and dry use the Lite for this, Pro for this, and LR for this. I typically use the Lite when I am pretty confident there will only be a couple of users/devices connected at any one time and go for the Pro's when There will be 15+ connected at one time regularly. I haven't had a need for the LR and I don't want to run into an issue where the AP can blast signal way farther than devices can talk back.
Click to expand...

The "Pro" is when you need the best of the best. It's the fastest (it adds 3x3 MIMO to the 5.0 radio versus the 2x2 of LR and Lite models) , and can handle the highest loads. And the option of the built in intercom system (the Edu model). It also has dual ethernet ports.
BUT....not a lot of "clients" are capable of 3x3 MIMO on the 5.0. Thus, to take advantage of those high speeds of the Pro....you need to have clients that have 3x3 radios on 5.0 to get the 1300 speeds.
The 2.4 radio the LR model is 3x3, so 450 megs there. On the Lite model it's a 2x2 to 300 megs.
The 5.0 radio on the Lite and LR models is 2x2 so 867 megs, and on the Pro/Edu/Outdoor it's 3x3 so 1300 megs.

We have tons and tons of Unifi APs at clients....none are Pros.
 
You must log in or register to reply here.

Similar threads

Romaniac
[REQUEST] 6500 sqf+ Log Home with Eth; WiFi Setup Help
Replies
15
Views
3K
marley1
M
NETWizz
Swamped by Brocade Devices Suddenly
Replies
2
Views
998
jzukerman
jzukerman
Back
Top