I'm starting over from scratch.
Then planning is key. Knowing your needs and desires will make a big difference in your budget.
(open source is a must for me)
I agree but, the problem is unless you build it yourself that doesn't always ring true. When I built my setup the idea was to roll all of the functions into a single chassis. I achieved that but, when I wanted speed I had to peel off the AP function into an external AP instead of using the internal card I started with because I couldn't find an AX option that worked with hostapd i.e. nothing Intel based
When you go under the hood though of almost any AP / router they all use hostapd to bring up the radios but, they lock down the ability to manipulate the configuration from a CLI standpoint. Even my current AP uses hostapd to run the WIFI setup but, unless I want to crack the code to fine tune things it's impossible.
APs don't have switching capabilities built in?
APs don't have switched because they're not needed. They sometimes offer an uplink port though to connect a switch to it or a single device. The downside to this additional port is it's usually only 1GE where the primary is 2.5/5GE or higher. Anything piggy backing through the AP / Ethernet connection will be slower than if you ran a line to the location and then plugged the switch into that and then from there added the AP / devices.
PoE switch yet. Do you know of a good company?
They all do the same and when it comes down to it it's more about the features you need and then whittle down the options by ports / price. As mentioned though smaller switches mean less noise / cost typically but, sometimes increases the price per port. The other option is using POE injectors
https://www.amazon.com/dp/B0BVR4CNYL/?tag=snbforums-20 - $20 and will power any POE++ device Then you can just plug it into a dumb switch or managed switch of your choice.
https://www.amazon.com/dp/B0BVR4CNYL/?tag=snbforums-20 - $50
- 8 Port Gigabit PoE Switch, 120 Watts total PoE Budget + 2 x PoE+ports ( 60 watts maximum) +6 x PoE+ Ports(802.3at, 30 watts maximum).
https://www.amazon.com/dp/B089VDXQRW/?tag=snbforums-20 = $90
- 6 PORTS TOTAL, 4 POE PORTS, 2 UPLINK PORTS - The switch has (4) 10/100 powered POE ports with 2 additional non-powered 10/100 Ports.
https://www.amazon.com/dp/B0BSMHYY36/?tag=snbforums-20 - $170
- All 5 ports of the Ethernet Switch have PoE+ 30W (802.3at) capacity, while Port 1 has PoE++ 90W (802.3bt) powering capacity
Unmanaged/dp/B0BMFRMS3L - $180
- 802.3 bt PoE++: Provide FOUR 90W max PoE out ports, perfect for power-hungry applications, such as PTZ IP cameras; And it also flexibly fit IP cameras, wireless access points, VoIP phones, etc; supplies 180W total power budget ((so, if it provides 180W but has 4 x 90 ports - 360W what loses power when all 4 ports are in use?))
Switches get tricky as you can see on the port density and allocation of power. For managed switches the price goes up considerably but, you can segregate the traffic from the switch into VL's if you want to keep your cameras from getting out to the internet which most people do to avoid leaks.
If you use Ubuntu or linux in general you can do DHCP reservations based on the MAC of the device and then put the traffic into VL's from there. It doesn't have to be port based like on the switch. Though the switch makes it simple with click and save. So, instead of paying the $180 for 4-5 ports you could use dumb switches and POE injectors for the same / lower price.
So, you said...
10 IP CAMS - 10 ports / at least $100 using 2 x 8 port cheapest option // or // 10 POE injectors for $200 and flex to get any switch you want. Gig switches are cheap
NAS - can roll this into the same box for the price of drives / if you don't need more than gig speeds use one of the NIC ports or bundle 2 ports into a LAG w/ the switch for 2gbps speeds or up the NIC for the priority data to 2.5/5GE and run a direct connect to your PC or primary device for fast transfers. And if you get a dual/quad port you can use that as your uplink to the switch if you go a bit higher end
Printers work w/ a WIFI connection.... Mine is WIFI and no need for a port/cable
----------------------------------
It's not going to be cheap but it doesn't have to be worthy of taking out a loan either.
I would go ONT << DIY <2.5/5/10GE> Switch/es/ AP's w/ POE-I // Cams w/ POE-I
The other thing is going to be space that needs WIFI coverage.... composition of walls / studs / etc. I can cover 1300sq ft w/ a single AP w/ drywall/steel studs. If you have to deal with brick / concrete / plaster and so on it will make a difference in how many you need.
https://www.sherbers.de/diy-linux-router-part-2-interfaces-dhcp-and-vlan/ << looks familiar to the PCLI box
The following is the first part of a multipart series describing how I build (software not hardware) my own Linux router from scratch, based on Debian 11. * Part 2: Interfaces, DHCP and VLAN [https://www.sherbers.de/diy-linux-router-part-2-interfaces-dhcp-and-vlan/] * Part 3: PPPOE and...
www.sherbers.de
If you follow along those commands will work in generic Linux. SFF PC might be not enough but, could work with a dual/quad port NIC as there's only 1 slot to use. The PC cna be as cheap as ~$200 / Quad 5GE NIC ~$200 and then add from there the Switch 2.5ge 4-5 ports $80. Getting 5GE ports is still a tough thing to get at a reasonable price in a switch because they don't show up until you look at 10GE switches and those are a bit pricier which is why I do DIY w/ $200 for 4 ports where switches run $300+ and might offer 1-2 5GE ports.
AP's - I use Zyxel and the NWA210AX run ~$130 last time I checked. There are other options though but, are they worth the money?
As for isolating traffic / VL or not / etc. can all be manipulated using iprules and you can keep it simple or make it as complicated as you want. Since you would be doing DHCP/MAC assignments you can do the routing easier using containers to group things a bit more logically for simplicity sake in writing the rules. My personal preference is to edit them in notepad++ and save the file to the server and run a command that copies / replaces the running rules and activates them at the same time. The other is to edit them through the box itself using nano or whatever editor you want to use.