Utilizing two ports on an SFP switch to act as a media converter
Utilizing two ports on an SFP switch to act as a media converter
You have three main paths for your network setup. Option 3 involves purchasing an Edgeswitch with SFP and PoE+, which would require a PoE+ switch and a private VLAN to connect the SFP to RJ45. This approach can work but may be complex. Option 1 suggests spending a lot on a USG Pro 4 with an SFP port, which is costly. Option 2 uses a media converter to change the port type and pairs it with a regular USG, offering flexibility. The most efficient choice depends on your budget and technical comfort. A diagram would help clarify your plan.
Option 3 is often called a “Core Switch” and appears in nearly all Marriott, Hilton, or Hyatt locations that were updated within the past three years or more. A DMZ VLAN is standard practice. It benefits the industry by simplifying direct internet connections for many devices instead of relying on numerous LAN ports on routers, and it enables quick traffic rerouting if a device fails.
EDIT: You can also implement VLANs to reduce the need for a single Ethernet link between the USG and the switch, offering greater flexibility for future server setups that may require access to both networks.
I had to execute option 3 during a recent deployment. Chucklehead requested a copper handoff, and the demarcation needed roughly 200 meters. The media converter in the telco room handled UTP to MMF, but only an ASA was available at the edge device, which didn’t include an SFP. I had to shut down a SFP switch port on an outside VLAN and then use another copper port within that VLAN to route it to the firewall’s external interface. It functions, though it’s a bit complicated—your diagram matches the setup well.