Best setup for sharing internet conneiton with 3rd party office

We are going to be getting a new 50mb connection to our office and splitting it with another office in the building (different company).

What is the best setup for this? I'd like some minimum reporting of their usage, not necessarily what they are using it for.

Do i have a simple router in front with our individual routers behind it? Any lead into this would be greatly appreciated.

As fare as needs they will be on a different ip address as we will, need some services routed via ip to the office and possible vpn in both locations
LVL 2
loki0609Asked:
Who is Participating?
 
Rob WilliamsConnect With a Mentor Commented:
The following outlines some options if you are not going to buy a commercial grade router that will create isolated LAN's (VLAN's).  Option 1 would be the best bet if you have multiple IP's available:
http://blog.lan-tech.ca/2011/05/23/create-an-isolated-network-using-one-isp-connection-and-modem/
0
 
ddiazpConnect With a Mentor Commented:
2 critical questions

1. How many people, how much bandwidth are you expecting this other office to use?
2. Is there any requirement for voice ports, QoS, and the like?

You should put a firewall in between your company and the other one. What i've done in the past for the same situtation is put a firewall behind the ISP router, dedicated one interface for the other company and make sure there's no access between the 2 companies via firewall config.
0
 
rauenpcCommented:
I agree with ddiazp. Use a firewall that can separate the two companies. An ASA can be configured for netflow or snmp to get traffic statistics. Snmp is more what you described because you don't care what they re using it for. The ASA can also do qos to ensure neither company can hog the bandwidth.
0
 
Sandeep GuptaConsultantCommented:
If you don't want to spend on firewall..then you can define two vrf domain for each company and two IPSEC vpns over those vrf.

with this set-up you can control BW usage by applying service policies on those IPSEC tunnels.
0
 
loki0609Author Commented:
There isn't any voip requirments, it's all pure data. There will be some rpd for some of the offices but that's just ip routing.

Some great suggestions here. I like Robwill's example, but we do have in the budget a new router so we can go with something. Rauenpc, I'm not sure what you mean by ASA but we do want some sort of reporting. Do you have any good brands in mind? I know Cisco is at the top but they sure are pricey and I've heard good things about some of the cheaper brands that have been around for a while.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.