I am redesigning my home network and have put together a proposal of what I would like to accomplish. This is a bit of a loaded question but I will try to explain as best I can. If I need to split up the question, let me know as I am still novice with Cisco equipment.
I have a Cisco 1841 router running IOS 12.4(15)T17 AdvEnterprise. The router has two expansion modules - HWIC-AP-AG-A (WIFI) and HWIC-4ESW (4-port ethernet card). I also have a Cisco SG300-20 switch with latest firmware 1.4.1.03. I have console and GUI access to both the 1841 and SG300 up and running via Putty, Web, and Cisco Configuration Professional.
I bought the router and modules used so I don't have SmartNet. Also, I am aware that the 1841 has a max speed of 38 Mbps at 64 byte packets. My Internet speed is only 20 Mbps. I will not be doing VPN in this setup.
My goal is to:
have the router run firewall and NAT from Internet.
Router network is 10.0.0.0/29 for 6 hosts - router, UTM, and SG300-switch
Create a VLAN10 for WIFI traffic 10.0.1.0/28 and serve DHCP to those clients
Create a VLAN20 for game traffic 10.0.2.0/29 and serve DHCP to those clients
Create a VLAN30 for lab network 10.0.3.0/26 - 62 hosts for virtual servers and workstations
Setup an Untangle box in bridge mode to act as UTM for traffic passing from router to SG300 switch
What I need help with is:
The SG300 is in layer 3 mode and I would like it to route VLAN30 10.0.3.0 traffic to 10.0.0.0 network and then to Internet.
Create the WIFI VLAN10 network 10.0.1.0 on the router and route it to 10.0.0.0 and then to Internet.
Create the Game VLAN20 network 10.0.2.0 on the router and route it to 10.0.0.0 and then to Internet
Configure router to serve DHCP for 10.0.1.0 and 10.0.2.0
Configure the VLANs so they do not communicate with each other, I don't want the WIFI or Game network to see the Lab network
I have attached a Visio diagram to illustrate what I would like to do. I'm hoping this is an ideal course of action and that I am not bat **** crazy.