giopas
Regular Contributor
Hi all,
In my educational journey, I am trying to conceptually (for now) explore how I could better organize my internal home network using VLANs.
The ultimate purpose is to allow me to monitor and increase the security of my network, while keeping a user friendly environment.
I was therefore thinking to create something along those lines:
Given the above, I wanted to grant the following access rights:
As I have no experience with VLAN, I would really appreciate your comments/advices.
Thanks for your precious input!
In my educational journey, I am trying to conceptually (for now) explore how I could better organize my internal home network using VLANs.
The ultimate purpose is to allow me to monitor and increase the security of my network, while keeping a user friendly environment.
I was therefore thinking to create something along those lines:
- 192.168.1.1 router
- 192.168.1.x (internal network: NAS + Omada environnement + smart TVs + SIP phone + main WiFi + game console + laptops + smartphones + tablet + raspberry pi with reverse proxy and pihole)
- 192.168.2.x (smart speakers)
- 192.168.3.x Internet connected home alarm
- 192.168.4.x Internet connected video cameras
- 192.168.5.x Guest network + all unrecognized (wired or wifi)
Given the above, I wanted to grant the following access rights:
- 1.x outgoing connection allow all - incoming connection deny all
- 2.x outgoing connection deny all - incoming connection allow only from 1.x and 2.x
- 3.x outgoing connection deny all - incoming connection allow only from 1.x and 3.x
- 4.x outgoing connection deny all - incoming connection allow only from 1.x and 4.x
- 5.x outgoing connection deny all - incoming connection allow only from 1.x and 5.x
As I have no experience with VLAN, I would really appreciate your comments/advices.
Thanks for your precious input!