F5F Stay Refreshed Power Users Networks Create a separate network for POS systems

Create a separate network for POS systems

Create a separate network for POS systems

Pages (2): 1 2 Next
A
Alexiopro
Member
Find
91
01-04-2016, 12:17 AM
#1
She has a modest shop running a POS system and plans to add a separate network later. I considered options, but $1300 for network separation seems high for such a small setup. There should be more budget-friendly solutions that meet the necessary security requirements. I’m looking for affordable alternatives that still work well with current policies.
Reply
Reply
A
Alexiopro
01-04-2016, 12:17 AM #1

She has a modest shop running a POS system and plans to add a separate network later. I considered options, but $1300 for network separation seems high for such a small setup. There should be more budget-friendly solutions that meet the necessary security requirements. I’m looking for affordable alternatives that still work well with current policies.

Reply
Reply
P
PinqNoLag
Member
Find
181
01-10-2016, 03:02 AM
#2
For straightforward separation you might consider a Firewalla Gold, though it's still quite expensive on its own. Another choice is a basic managed switch that handles VLANs plus a router capable of 802.1q trunking, provided it supports ACLs to restrict the POS system from connecting elsewhere and vice versa would suffice. You could also install a PoE switch for cameras and add a PFSense device or similar as the firewall/router, enforcing the same isolation rules.
Reply
Reply
P
PinqNoLag
01-10-2016, 03:02 AM #2

For straightforward separation you might consider a Firewalla Gold, though it's still quite expensive on its own. Another choice is a basic managed switch that handles VLANs plus a router capable of 802.1q trunking, provided it supports ACLs to restrict the POS system from connecting elsewhere and vice versa would suffice. You could also install a PoE switch for cameras and add a PFSense device or similar as the firewall/router, enforcing the same isolation rules.

Reply
Reply
H
hi_love
Junior Member
Find
11
01-18-2016, 12:50 AM
#3
Regarding the UniFi Security Gateway, it claims to support VLAN creation and costs around $139. Do you still require a separate router capable of 802.1q trunking or other advanced features? Your note about it being a router suggests you can skip that concern. Edited September 15, 2020 by Modifyinc
Reply
Reply
H
hi_love
01-18-2016, 12:50 AM #3

Regarding the UniFi Security Gateway, it claims to support VLAN creation and costs around $139. Do you still require a separate router capable of 802.1q trunking or other advanced features? Your note about it being a router suggests you can skip that concern. Edited September 15, 2020 by Modifyinc

Reply
Reply
I
IronHammer12
Member
Find
50
01-25-2016, 05:49 PM
#4
We're also looking at a few licenses within the next year for full capabilities. However, a lower-end model should work just fine. What are your specific needs? I think I'll settle for a basic MikroTik or Edge Router, around 100 dollars or less. You likely won't need VLANs—just connect the POS system to one port and the rest to another. How much bandwidth will you require? Probably the edge router unless you already have Unifi devices.
Reply
Reply
I
IronHammer12
01-25-2016, 05:49 PM #4

We're also looking at a few licenses within the next year for full capabilities. However, a lower-end model should work just fine. What are your specific needs? I think I'll settle for a basic MikroTik or Edge Router, around 100 dollars or less. You likely won't need VLANs—just connect the POS system to one port and the rest to another. How much bandwidth will you require? Probably the edge router unless you already have Unifi devices.

Reply
Reply
P
PimOla_PvP
Member
Find
166
01-25-2016, 05:54 PM
#5
They advised keeping the POS distinct from her primary network. It seems she didn’t require two modems—just ensure the POS isn’t reachable via the other network. Her internet speed is about 75mbs, so maintaining speeds close to what she pays for would be ideal. She doesn’t currently use any Unifi devices. Which edge router were you talking about? EdgeRouter X costs $59, but I doubt it fully isolates the network.
Reply
Reply
P
PimOla_PvP
01-25-2016, 05:54 PM #5

They advised keeping the POS distinct from her primary network. It seems she didn’t require two modems—just ensure the POS isn’t reachable via the other network. Her internet speed is about 75mbs, so maintaining speeds close to what she pays for would be ideal. She doesn’t currently use any Unifi devices. Which edge router were you talking about? EdgeRouter X costs $59, but I doubt it fully isolates the network.

Reply
Reply
X
xWaseem09
Member
Find
161
01-30-2016, 10:12 PM
#6
I’d purchase the EdgeRouter-X for $60, set it as the main router, and set up a separate network via one of the eth ports for the POS. You can find a guide on how to do this in a video.
Reply
Reply
X
xWaseem09
01-30-2016, 10:12 PM #6

I’d purchase the EdgeRouter-X for $60, set it as the main router, and set up a separate network via one of the eth ports for the POS. You can find a guide on how to do this in a video.

Reply
Reply
M
matei91
Member
Find
86
01-31-2016, 12:54 AM
#7
The edge router x should fulfill your requirements. It can manage several LAN networks and configure firewall rules to prevent LANs from communicating with each other while allowing both LANs to connect to the WAN.
Reply
Reply
M
matei91
01-31-2016, 12:54 AM #7

The edge router x should fulfill your requirements. It can manage several LAN networks and configure firewall rules to prevent LANs from communicating with each other while allowing both LANs to connect to the WAN.

Reply
Reply
X
xXStrikeBackXx
Member
Find
220
01-31-2016, 07:21 AM
#8
Consider a more basic approach: on the router or AP simply create another wireless network for guests or a second network, enable isolation between APs, and configure separate networks for POS devices with isolation, while assigning different channels for PCs. JP
Reply
Reply
X
xXStrikeBackXx
01-31-2016, 07:21 AM #8

Consider a more basic approach: on the router or AP simply create another wireless network for guests or a second network, enable isolation between APs, and configure separate networks for POS devices with isolation, while assigning different channels for PCs. JP

Reply
Reply
I
ItsJeGirlRomy
Member
Find
200
02-07-2016, 12:08 PM
#9
I’d be cautious about connecting a POS terminal to a wireless network, even with security features. Using the proper tools and patience could allow someone to compromise wireless protection and capture data packets. Adding wireless interference to critical gear isn’t worth the risk, especially when reliability is essential.
Reply
Reply
I
ItsJeGirlRomy
02-07-2016, 12:08 PM #9

I’d be cautious about connecting a POS terminal to a wireless network, even with security features. Using the proper tools and patience could allow someone to compromise wireless protection and capture data packets. Adding wireless interference to critical gear isn’t worth the risk, especially when reliability is essential.

Reply
Reply
B
bellaaa_
Member
Find
173
02-07-2016, 06:46 PM
#10
I assumed it was a Wi-Fi POS system and didn't realize POS makers are still producing wired models. Are we discussing a PCI-certified terminal for credit or debit cards? JP
Reply
Reply
B
bellaaa_
02-07-2016, 06:46 PM #10

I assumed it was a Wi-Fi POS system and didn't realize POS makers are still producing wired models. Are we discussing a PCI-certified terminal for credit or debit cards? JP

Reply
Reply
Pages (2): 1 2 Next