I have a customer, a law office, that is moving to a new location. As part of their move their considering purchasing new desktops and servers. I've picked everything out and they're going to have a uote this coming week.
One of the things they are doing in addition to the move is to subnet space in their new office space. They're moving to a location that has more room than they need so they thought it a good idea to rent out the offices they're not using to non-competing attorneys. They want to offer them a desk with a fully function computer with internet access.
I need to allow the three offices that will be rented to have internet access through the same connection as my customer but they are not to be able to access the servers or other equipment on the LAN.
This is what I'm going to try and it's worked before. I'm going to get a manageable switch that has the capability to do VLANs. I'll setup each of the renters in their own vlan, and my customer who owns the network with their vlan. I'm going to try to to this without changing out the router to try and keep the project within budget. Than means that I'm going to gamble a little that I could repeat what I've done before. Put the router's connection to the lan in all three vlan groups and each of the routers and my customer in their own vlan and without access to the other.
If all goes well then all of them will share internet access but not be able to see each others computers or files and I didn't have to get a router with trunking capabilities.
