I was thinking of going with
Cisco 2901
router with
D-Link 24 port DES 1024 switch.
One quick question. Due to budget issues, if we need to go for a lightweight setup initially, should we go for a better quality router with relatively cheaper switches (like un-managed or semi-managed) or should it be the other way round (cheaper router and managed switches)? Thanks.
The SHDSL modem supplied by Airtel *should* act as a gateway and as such I think you need one or the other, that is, a managed switch.
That being said, if it turns out that you do need both, I'd go for a better quality router and cheaper unmanaged switches because if it craps out you can simply swap out the hardware and be back up and running in minutes (IF YOU DO THIS, ENSURE YOU BUY A SPARE AND TEST IT EVERY MONTH OR SO). They won't perform as well as a better quality switch but for the sake of a 4mbit/s Internet connection, I doubt it will matter.
As far as which brand to choose, you should look at the long-term. The likelihood is that going Cisco will save you money over time - you set it up once and leave it, whereas the short-term savings you'll get buying another brand (such as
D-Link) *may* cost you a bundle in support costs and/or downtime and/or upgrade costs later. Like I said, there's a reason the device is more expensive, an there is no point in doing things in a half-assed way - it's a VERY common mistake made by companies all over the world - I can't stress how many times I've had companies come to me in the past regretting taking the cheaper option and being only too happy to shell out 150EUR an hour to fix it. Ahh, those were the days... some of those companies are still running the same hardware I put in several years ago.
In addition, finding someone to configure a Cisco box should be pretty easy too because of the system it uses - not necessarily so with other brands.
Also, do we need a UTM or is there another option for us to block access to some objectionable sites from our internal network? I was thinking of configuring a proxy server and setting up access rules and iptables on them. Also, maintaining an internal
DNS server for access restrictions. Would you propose we go for UTM?
If you set up a proxy server (not an entirely silly idea, but again, ensure you set up two), then you won't need a router - you can (and probably should) use such a box to do the routing as well. AGAIN, BUY A SPARE. ENSURE THE HARD DRIVE IS MIRRORED OFTEN. As far as access restrictions, this can be taken care of by a managed switch - you can actually block one port from talking to another if you want to. Don't bother trying to run your own DNS server unless it's absolutely vital - it can be a massive headache and an unnecessary drain on system resources.
So, to conclude, possibly the best setup will be:
50 node network > Cisco managed switch(es) > Linux box for access rules/iptables/routing/bandwidth control > SHDSL modem
Spend more money now: you will thank me later if/when something goes wrong.