We're setting up a new branch office.
* ~10 users.
* Each user has a VOIP phone provided by a hosted solution.
* Users need access to resources on HQ (located in another state), so setting up VPN tunnel
* HQ only supports certain Cisco/Juniper devices. VOIP provider only supports SonicWall, so current plan is to have two routers w/ separate subnets for VOIP vs. PC traffic.
* PC's will plug into pass-thru Ethernet jacks on the VOIP phones, but the phones vs. PC's will point to different subnets.
* Cable Modem is 50Mbps / 5Mbps DOCSIS 3.0 business line w/ 5 static IP's.
* Each of the 2 subnets will map to one of the 5 public IP's.
* May or may not also need to support a VPN tunnel with a second branch office because of a file server they have there that some in the new office use. I'm pushing to have them move the files to a server on the HQ's network so we don't have to worry about setting up an additional tunnel.
Questions:
Do you foresee any issues with the below set-up?
Router recommendations by HQ IT staff: Cisco Router 2811, or Juniper SSG5 or SSG20.
Any recommendations about these routers?
We need Wi-Fi too – looks like the above routers have models that support this, any reason not to use this?
Users need to be able to work from home.
If so, how is authentication handled? Right now we use AD credentials for the HQ's domain, but we currently don't plan to have an AD system in the new location since it's only 10 users. We can't tie the authentication system from the new location's router to the AD system of the HQ.
All the PC's that will be in the new location are currently in the existing office that is closing down, and are already joined to the domain of the HQ. Please confirm: this + the VPN tunnel will be sufficient for them to connect to authenticated resources on the HQ's network from the new location, correct? Mainly SQL servers and file servers, and a few remote desktop sessions.
I'm sure I'll have some more questions, but can't think of them right now.