Good day to all,
I'm taking a Data Communications and Network course, and was wondering how information systems apply to the coffee industry. I'm actually on a project and wondering what would be an ideal network for a coffee shop. Anybody got pointers?? Thank you so much for your insight. ;) Coffee rules!
Tags:
Typically, the main computer used in a coffee shop would be the PointOfSale system. The one in my shop is connected to four printers (one to the kitchen for food orders, one to the bar for drink orders, one at the terminal for receipts, and one in the office for general/menu printing). I use a network splitter (one for the wireless network and another into the POS for merchant processing). I also have another computer set up to the stereo for music. I have seen network (wireless) projectors used to display menus on the wall, or large computer screens mounted on the wall to display the current menu. Many places also have a second computer screen attached to the POS computer terminal that is directed towards the customer to display their order and a promotional slideshow. Some coffee shops have multiple network cards installed into their system to handle WiFi access software (see antamedia.com for an example). Giftcards, scheduling, bookkeeping/accounting, customer loyalty, etc. are other examples of how I use my system. Looking at POS systems and features can tell you a lot about what they are used for, what others are looking for, and how you could better a product.
Troy
Denise, Troy nails most of the setup used for coffee shop networks. Since we are a POS company I thought I'd list typical configurations:
Most coffee shops are peer to peer networking between one or more computers. A main router and then a secondary router for the WiFi is common. It's important to keep those separate from a security standpoint.
A number of stores also have a separate system (sometimes linux) that is running for a camera setup. These cameras are typically accessible through the internet.
I think Troy covered most of the other scenarios.
A conversation about even a small network without a secure side and non secure side is not a complete talk. A pos that is just sitting on a network that has a wireless access point that gives customers access is a disaster waiting to happen. That puts the pressure on a switch that is downstream from the internet provider modem. That switch can do alot of things from prioritizing, (when the POS wants the network IT GETS ALL OF IT because processing a ccard is a little more important than someone watching a youtube video)....and splitting the network into two sides, one secure one not......
Also having a backup plan so when the internet goes down you can process ccards is important to many. Without a dial up CCard processing machine, you would either have to take cash. Also, if a piece of hardware fails that allows your POS to connect to the cable or dsl you can't just reconnect your cable from the switch to the modem.....you need to call your provider, which brings in a simple network map and document that deals with it.
Good points John. I've included a picture here that is from our PA-DSS implementation guide concerning network setup. This is a more detailed diagram of the way we suggest a store should be setup from a network standpoint. Keep in mind that this full featured setup rarely happens however. (SP-1terminals means POS).
What's interesting is that we have had multiple customers that install cameras and then wind up with their POS computers running in bridged mode - nasty business as the computer is then virtually unprotected!
Hi Mike....yep its incredible and sometimes RIDICULOUS what a cafe has to do technology wise.....I mean this, not too long ago, was a pretty involved setup........now its 'required'......phew....
Hi everyone,
Thank you so much for the information again. And thanks Mike for the diagram. It helps me even more. I've never worked with setting up POS computers, and wasn't sure how they were integrated in the network. I'm wondering if VLANs to separate offices is another way to ensure security from the public wifi provided to customers. Also, on the diagram, which office has the High Security Zone? I didn't even realize that VoIP phones were utilized in coffee shops as well. I'm assuming, why not since VoIP is the new technology and better than using traditional telephone lines.
Denise I haven't seen VLAN's used for coffee shops. This kind of network setup is what the PCI / PA-DSS council wants to see for stores. I'd bet that the reality is that most stores are no where near this secure. A "typical" setup that is really used would be:
Modem ---- Router with POS connected.
\
\--------- Router with WiFi enabled.
Unfortunately, a number of stores have the WiFi enabled on the main router and no separate router at all for the POS.
Sort of. PCI is the council that sets the standards for how credit cards are monitored and secured in the store. Anyone that takes a credit card in a retail store should be part of this in order to avoid fines etc. Basically it was designed to help cut down on fraud and card theft.
Part of the standard is to figure out what is in "scope" when talking about credit cards. If you have a POS that is accepting the credit card (via a magnetic swipe), then the entire network falls under scope as technically that computer can be affected by other devices on the network.
We had to undergo specific certification to be approved - part of that certification was to include documentation to inform a store on how a network SHOULD be setup. It also dealt with password handling, audit tracking and all sorts of fun stuff
Documents on PCI can be found here: https://www.pcisecuritystandards.org/security_standards/documents.php
Certification here: https://www.pcisecuritystandards.org/approved_companies_providers/v...
I hope this did not hijack the thread into a credit card discussion!
I find VLANs are better for buzzword compliance than PCI compliance. They can be used to help meet PCI requirements, but generally VLANs are overkill.
In a coffee shop you can just keep your DHCP pool in one subnet and your POS in another and then use firewall rules. It will be a lot simpler and easier to diagnose. Remember from the computer you won't be able to tell what VLAN tags are getting applied to your packets but you will know your IP.
If your wireless clients are DHCPed out of 192.168.1.x then just have your POS / Offices in 192.168.4.x
Are you enjoying Barista Exchange? Is it helping you promote your business and helping you network in this great industry? Donate today to keep it free to all members. Supporters can join the "Supporters Group" with a donation. Thanks!
© 2024 Created by Matt Milletto. Powered by