Our school has a print server running PaperCut to manage student printing. It "charges" students for each page they print. It works well. However, students can bypass the print server and print directly to a printer once they determine a printers IP address. I need to prevent this. Someone suggested that this could be done using a separate subnet for the printers which would separate them virtually or using a separate network for the printers which would separate them physically. I don't know how to do either and could use some help. I want to redesign our network to meet this criteria.
Here are some specifics on our network and equipment:
Windows 2008 server setup as a print server and running PaperCut
Subnet mask: 255.255.248.0
Address pool: 10.0.1.0-10.0.0.7.254
Network equipment such as switches, servers, access points, and printers are statically assigned in the range 10.0.0.2-10.0.0.255
We are not using active directory.