Hello,
My parents own a small company (family business) so the place of business is also their home. Up until now we had one network for the business pcs, a linux server and private laptops etc. We also have wifi accesspoints that are connected to the network, so employees can access the internet on their private devices.(I attached a basic overview to this post) This system is a total mess and it is incredibly stupid to not separate the business network from the private network.
I am a complete noob with networking stuff so I wanted to ask you guys if you could point me into the right direction. The basic idea is to separate the wifi network into two user-groups and two subnets. one that only has access to the internet the other has access to the whole network. As a firewall/router system I am currently running a dedicated pc with ipcop. As far as I know I have to use a radius server for authentication to the wireless network and somehow have to figure out how to configure the dhcp-server on the ipcop-system so it puts all 'guest' users form the radius authentication into a subnet that only has access to the internet.
My question now is how can I use the radius authentification-name with a dhcp-server so it puts the user 'guest' into the subnet 10.xxx.xxx.xxx and the user 'admin' into the subnet 192.168.xxx.xxx? I am sorry if the answer is just a quick google search away but I have read a lot about this in the past few days and couldn't find an easy solution.
Sorry for being such a noob - thanks