For one phone you'll find a cheap hosted PBX service not too much more than a SIP trunk and much less hassle/effort.
If you have appropriate resources then use 3CX.
Block port 53 from LAN clients to external recursive DNS resolvers, and also consider using a traffic-aware edge security appliance that can apply web content filtering policies externally to DNS filtering.
1.I'm going to assume that by firewall you mean a modern security appliance here.
Accessing the interface over SSL isn't something I would consider a challenge, that sounds a specific issue to an old DD-WRT router.
Things that can be intensive for firewall / security appliances:
VPN
Web...
We use Cisco Meraki Access Points in my day job, but my cousin works for a bank and needed to improve the WiFi in his house for Zoom calls etc. I recommended him one of those Tenda three-packs, and he has been very happy with them. Much better than the stock Virgin router. So it really depends...
We had a client once who lied about not receiving an invoice before we terminated their contract for repeated non-payment.
Microsoft 365 e-discovery showed that the Director and their bookkeeper had both received the invoice email, and read it.
Rather than use screenshots, I took a video...
DNS doesn't use port 80.
Google default to HTTPS 443 these days I believe.
To answer your question, your local DNS server would provide the client with the IP address for Google.com and the client would then attempt to connect to that IP address.
You have numerous mechanisms to restrict or...
NMap or solarwinds.
VPN Passthrough would still require the ports to be forwarded to a VPN appliance. We use this configuration for Windows Server SSTP for example.
And checking open firewall ports is not a pentest. If a port is open and forwarded there is nothing to penetrate in terms of the...
This is of course an inappropriate item and if it was for business production use I'd be returning them, angrily.
You have no visibility if they were bought in bulk, opened, returned, fake, etc.
That said, while I would have some concerns about potential physical damage...
...I'm not sure...
Although expensive, you may wish to consider Cisco Meraki equipment. If you get lucky, you may be able to get some (non-stolen) units on eBay on the cheap. We wouldn't recommend that for business use but perfectly viable for MIL. There are still ongoing license fees to consider however.
The...
Yes, you can have more than one DHCP server within a subnet/VLAN as long as the scopes do not overlap.
In fact, it's a potential resiliency scenario because if one DHCP server was to fail then others will still provide an IP address.
That said, it also adds administrative complexity because...
The main issue with this being that all IT projects are generally conceived for a technical reason.
For virtualisation this would generally be hardware consolidation, power, ease of administration, ease of backup/recovery, etc.
It's a struggle for me to see how a 2-gaming-PCs-one-chassis is...
Cisco Select Certified Partner here.
The honest advice is that your question just isn't appropriate to a highly technical and complex enterprise as large as Cisco.
You are never going to get a straight answer as to how Cisco 'switched to the cloud' because this is a fictional scenario and I'm...