Network Layout Help

[ztbatchelor]

I have a 5 bay hot-swap I have been using for years for extra drives etc and its time I upgrade to a server. I don’t know anything about network layouts or security so I am asking for advice. I have posted a diagram of what I have, I am willing to purchase any needed items such as a switch etc, and what I want out of a network. Everything in blue I already have. I can purchase any needed products to make the network. The physical locations of devices does not matter. I can run any wires or change as needed to achieve the network and I prefer everything being wired except the devices accessing the WiFi router. The diagram is my best explanation of what I am trying to achieve. I do not know networking layouts so I am asking what layout would be best to achieve my goals. Let me try to explain what I am trying to achieve or my goals. I only want the WiFi router to have access to part of the server / specific drives. Main computer can access all server drives. I want 500mbps speed for the WiFi router that devices use mostly for tv streaming and phone usage since phone service hardly works in my area. I want 500mbps type speeds for my main computer to access internet. I want faster speeds between my main computer and server. The server can have slower speeds to the internet if I give it access and am not sure if I want to do that. I may backup server to cloud or remote access files however I can do without that if necessary. Security is of concern however I know nothing about it. Security is why I mention not having the server connected to internet.
What you recommend to me as a layout and how to achieve that network? Or should I have multiple networks? I am open to any options.

 

[nexox]

It's a big topic with lots of options but what you're probably looking for is a wired router and a managed switch, both using VLANs to split up the one physical switch into multiple (probably overlapping) virtual network segments. Traffic between devices in the same VLAN would just go through the switch like normal, traffic between VLANs would go through the router, where you can apply ACLs or filtering or whatever to allow access to a limited set of services on specific devices.

If the computer and server are physically close enough to run new cables then you could go for one of the many switches that has two 10G ports to get a nice fast link between those hosts without any additional wiring.

But again, it's a big topic, and you'll need to learn a few things to set it all up.

 

[RecursiveG]

I don't think VLAN is necessary here. Though you do need to config your "Server" properly, e.g. a separate account for your TV that can only access the music folder etc. How that can be done depends on the software you use.

 

[tubs-ffm]

There always are more ways to achieve something. But if I understand you correctly your main goal is not to separate networks but to control access to the file shares or services served by your server. These access rights you manage the easiest way by the server itself.

A simple network set-up in this case is sufficient like tis one. The shown switch could be the one build in the router or a separate device that also could provide faster speed between computer and server in combination with faster network cards in computer and server.

Separating of networks (physical networks or VLAN) only helps if you want to isolate devices from each other. This can be helpful in a home network if you want avoid that a guest mobile phone via WLAN or a company PC via LAN do not get access to any of your home devices but can get internet access.