NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Network Topology & Security Question
Ok I have a fairly complex topology question/issue. I have my Orbi Pro 6 SXK80 all set up with the VLANS configured as follows:
Port 1 - LAN 1 - VLAN 1 Admin
Port 2 - LAN 2 - VLAN 2 Employees
Port 3 - LAN 3 - VLAN 3 IOT
Port 4 - LAN 4 - VLAN 4 Guest
All VLANS have client and VLAN isolation.
I don't connect anything into port 1 unless router.
For VLAN 2/Port 2 - I need to setup an Insight switch to have every PC connected to be client isolated. How would I configure that or would it be easier to just use an unmanaged switch since client isolation is already set in router?
VLAN 3/Port 3 - I need to set up a Nest router to get the smart
devices to work. What issues/problems does putting a separate smart router on this port cause?
VLAN 4/Port 4 - I HATE the Orbi guest portal. It's not secured and many devices won't connect. Ideally I would setup a 2nd isolated Nest router to use for Guest wifi. Will this work?
Thanks!
12 Replies
Hello@MattyiceNG
And welcome to the NETGEAR Community! 🙂
For VLAN2/Port2
I guess what you can do is to access the switch GUI/settings and create VLAN 2 and have all the ports you wish to be under VLAN 2 be the member of VLAN 2 with PVID number 2 and connect it to your Orbri Pro 6 router. If that will not work try setting the port where the Orbi is connected as Tag port.VLAN 3/Port 3
You can connect and setup an access point to port 3. You do not really need a router to make smart devices to work.VLAN 4/Port 4
You can simply connect and setup an access point for guest wifi access.You may choose your desired specific devices for switch or access point so I can point you to the right article for the procedure if I can find one.
Have a lovely day,
Erwin
Netgear Team
Thank you for time and thoughtful answers. Yes, I believe I can do that.
- Thanks for the reply and thoughtful answer! I'm going to tweek this as best I can. Many thanks!
Erwin,
Thanks for the reply. It's a catch-22; even though the built in wifi on the Orbi Pro 6 SXK80 than on any Google router, a good number of the smart devices require a Google Nest router to work. Theoretically there shouldn't be any issues but even Google/Nest has posted some (most) of their smart products can only truly work well with a Google/Nest router.
I want the Google network/VLAN isolated from everything else completely. But since it's a router I'm plugging into Port 2, should that be a Trunk or Acess port on the Orbi setup?
MattyiceNG wrote:
It's a catch-22; even though the built in wifi on the Orbi Pro 6 SXK80 than on any Google router, a good number of the smart devices require a Google Nest router to work.
Such as which Smart Devices are that far off the industry standards that these requiring a Nest Router please?
MattyiceNG wrote:
Theoretically there shouldn't be any issues but even Google/Nest has posted some (most) of their smart products can only truly work well with a Google/Nest router.
Reads like bad marketing, if not worse. What does practically not work?
MattyiceNG wrote:
I want the Google network/VLAN isolated from everything else completely. But since it's a router I'm plugging into Port 2, should that be a Trunk or Acess port on the Orbi setup?
Completely isolated? STP and RSTP and similar protocols does always span the full network, regardless of the VLAN config on top. Last but not least, the Orbi Pro SXRnn is the router for all possible (five if I have it right) networks making up the default gateway, handling all NAT (many2one, port forwarding into [one] network, and DHCP for all these).
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
