I need to provide internet access to 14 rooms, each with 1 to 8 pc hosts. Internet access will be provided by ONE ADSL router. I need that no communication flows between rooms, but all of them will go Internet through the same ADSL router.
I have two ideas: a) VLANS b) Firewalls
a) Using VLANS would separate traffic from each room (1 VLAN per room), but i think that i need a multilayer switch in order to make every VLAN connect to the same ADSL router (is that correct?). If im correct, i would like to know the lowest (cheapest)Cisco Catalyst able to perform inter VLAN routing (which is what i think is necessary for this case, right?).
b) One firewall per room. Im thinking of one PIX 501 per room. Yes, i know, 14 PIX's, maybe that's too many little green boxes to deal with, but this solution im sure it would work, but not quite sure its the best one.
Please, i would like opinions on these two options also, which one do you think is the best? is there any other?