We're a small design studio that is moving from our own huge office to a big co-working space (also with our own – much smaller – office). We're pretty excited about all the other people/work environment, but it also has its drawbacks – and one of them is the networking side of things.
I'm looking for advice on how to keep our current network/services within an existing network we don't have much influence over?
Our current setup is:
Asus RT-AC3200
(We can no longer run a DHCP-server or port forwarding (and hence the Asus router is not going to be a part of the network anymore)).
Requirements:
I've been thinking a bit about it, and are contemplating the following:
I'm not totally sure how to do the OpenVPN part, but I guess I might have to set up a VPS somewhere as a form of bouncer? And regarding separating the networks, while staying connected to the internet via cable, is VLANs anything to consider (I'm guessing no since I don't have access to routing/firewall)?
What would you guys do?
Appreciate any advice/inputs on both the network and the OpenVPN part.
I'm looking for advice on how to keep our current network/services within an existing network we don't have much influence over?
Our current setup is:
Asus RT-AC3200
- Running Tomato Firmware
- Dynamic IP service
- OpenVPN server
- connected to server via 2 x gbit connections to the switch (trunked).
- 4 iMacs connected
- OmniOS VM for ZFS (raidz2), with SMB/NFS shares.
- Ubuntu VM with rclone for offsite backup
(We can no longer run a DHCP-server or port forwarding (and hence the Asus router is not going to be a part of the network anymore)).
Requirements:
- Give Ubuntu VM access to the internet for the offsite backup.
- Shield the OmniOS VM from the existing network, so our fileserver is not visible for anyone else (the alternative is to let it be visible, but lock it down further)
- Get access from the outside via VPN?
I've been thinking a bit about it, and are contemplating the following:
- Keep everything offline by setting up static IPs and just use the switch without connecting it to the existing network.
- Passthrough a NIC to the Ubuntu VM and connect that directly to the existing network.
- Use WiFi on the iMacs to get internet (since the ethernet it taken by the internal network)
- (Once in a while connect the server and update)
I'm not totally sure how to do the OpenVPN part, but I guess I might have to set up a VPS somewhere as a form of bouncer? And regarding separating the networks, while staying connected to the internet via cable, is VLANs anything to consider (I'm guessing no since I don't have access to routing/firewall)?
What would you guys do?
Appreciate any advice/inputs on both the network and the OpenVPN part.