Newbie to VLANs - GS308Ev4

Hello LW100

And welcome to the NETGEAR Community! 🙂

Indeed you need to have a router that knows VLAN specially if the DHCP server will be coming from the router for all VLANs. To many cases, VLANs are also configured on router for DHCP server purposes for each VLAN.

For port based VLAN it literally diving the port into groups. With this configuration you will still need L3 networks for each group for each devices to communicate in their respective groups of VLAN.

NetworkNeb

1. Level 3 switches can VLAN route. I have GS308Ev4, a level 2 switch. This can read and push the tags to the correct port, but can not official tag the data.

- Yes Vlan can route. GS308Ev4 is a plus switch and needs to be configured with VLANs as well.

2.  You need a Level 3 switch in order to VLAN route or a router to VLAN route. They should also be able to establish inter vlan communications if set up with the firewall. 
- Correct.

3. I'm also attempting the port based approach on GS308Ev4. I have no idea how well this will protect and isolate the networks as they are on the same sub-net. I'm attempting to establish a lot of isolating firewalls between each bridge and have 3 Ethernet cables for 3 virtual bridges. This will not be very secure if I exposed VM 104 to the internet but keep my truenas vm on the same network.
- It is suggested to have separate subnets for each VLAN for them not to communicate and have a separate broadcast domain.

Have a lovely day,
Erwin
Netgear Team