Staff and "Other" Network originating from one router, then connected via mesh inside the building.
Staff and "Other" Network originating from one router, then connected via mesh inside the building.
Hey everyone, welcome to the first post—I apologize if it looks a bit off. I'm working on setting up a secure network for one of our residences. Right now we have a subpar setup: four 4G modems paired with a broadband connection in the living room. The building is essentially a converted gatehouse, so the walls are about a foot and a half thick rock. This means the WiFi from each access point stays mostly confined to one area, which makes it necessary for each room to have a temporary 4G router.
I'm thinking of dividing the network into two parts: one for staff and future smart security devices, and another for residents and visitors. We could use our existing business-class router/modem combo for this. Then, we'd need a mesh solution to extend both networks throughout the house—staff access should only be downstairs, but we still want coverage at the property's ends.
Given the building constraints, we can't run any hardwired connections. So, is it realistic to build such a system? Would it be a good and practical choice? The residents are sensitive and don’t want to be there, but they’re not completely isolated either, so we don’t need top-tier security like Fort Nox. I just want to make sure someone with technical expertise can manage these systems without accidentally disabling them or causing trouble.
We have a budget of around £250 (UK), which is tight. Any suggestions for a mesh network that could handle both networks? And how would we actually implement the two separate networks? Thanks for your understanding, and let me know your thoughts!
Oh, wow! It seems like this setup is meant for both people and devices. You can set up different SSIDs for residents or visitors and separate them from IoT equipment. With a firewall and switches that support VLANs, you can label traffic by SSID and organize client connections accordingly. These challenges make sense, but it’s important to recognize that mesh networks can still struggle with WiFi connectivity, especially in complex environments. If you choose this path, you’re opting for a setup that may not always deliver the best performance. In such cases, wired connections are often more reliable. It can be tough to visualize running Ethernet through a secure barrier, so hiring a professional network expert could help manage cable placement more effectively. I believe each room should have an AP connected to a central router, rather than giving residents their own modems for personal internet use.
Something in between, but for young folks, right? We're aiming to be the bridge between independence and staying in a youth accommodation. Sadly, because of the circumstances, we're taking in people who are at risk outside the home but prefer not to stay there. I shared this with the manager, but unfortunately the building's age means we can't drill or install wires easily. We also don’t own the place, which makes things harder. My idea was a mesh network with a router near the main hub and another at key spots like hallways or stairwells. It’s either that or using power-line adapters for Ethernet. Given the building's age, we might get lucky with a solid ground connection. Sorry, my wording might have caused confusion. They currently have 4G routers in each room since they're teenagers and need internet at home. We're trying to phase them out because the monthly cost is around £30 per box, and we're struggling to explain why their phones don’t work when used elsewhere. (Some aren’t very tech-savvy). I’ve experimented with router settings during shifts, but it seems the setup depends on the job. Now I just need to figure out how to balance the two networks without breaking the bank. The IT team insisted a solution would cost thousands, so they asked me to investigate. They seem to think an Electrical Engineering student is the right fit for a Network Engineer. Thanks for your reply.
Hey there! That’s one of those situations, isn’t it? Sorry about that. It seems like the only choice left might be what’s offered. I’m not sure if a regular consumer system can handle VLANs, but activating AP isolation in mesh mode could help prevent clients from talking to each other. Most Ubiquiti UniFi APs now support mesh, though you’ll need to enable it through the controller first. There are also standalone mesh APs that just plug into power outlets. Performance depends on obstacles and interference, which you won’t know until they’re installed. The plus with Ubiquiti is built-in VLAN support. I’m not a big fan of Powerline unless it’s the only option, especially if the building’s wiring is outdated. If you ever have budget for upgrading, you could take advantage later—run ethernet properly while staying safe. Or go with Powerline if that’s not possible. Great job on handling this together!