× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Orbi WiFi 7 RBE973
Reply

Can I have a separate SSID for IoT devices?

peacalmer_at52
Aspirant

Can I have a separate SSID for IoT devices?

Hi,

 

I'm running a legacy setup which consists of a 24 port gigabit PoE switch in the attic, slaved to a MIMO router, which has a wired connection to the DSL router. It's got a bit complicated...

 

1. There is a separate SSID just for IoT devices that support strong passwords but don't like dual band WLANs - they only need to talk to each other, a ZigBee hub, and a cloud service all of which talks on the 2.4ghz band only.

 

2. I have a some low risk monitors and loggers that could sit on the IoT network, but one of them will only work on a 2.4ghz WLAN if the SSID password is short and weak - so the 2.4+5ghz WLAN won't work and the IoT WLAN security is too strong.

 

It's time to upgrade the MIMO router but can anyone confirm, if I use the XRM500 router + EX7700 range extender  to cover the blue zone in this diagram with the mesh wi-fi, can I port the config for the green zone across so that I still have segregation between gaming and office kit, IoT, and system controllers? And if I can't, is there a workaround I haven't thought of yet?

 

Network architecture.png

 

 

Model: XRM570|Nighthawk Pro Gaming Router and Mesh WiFi System
Message 1 of 5
Netduma-Fraser
NetDuma Partner

Re: Can I have a separate SSID for IoT devices?

Can't see your diagram until it has been moderated. If you provide an imgur link for example I can take a look.
Message 2 of 5
peacalmer_at52
Aspirant

Re: Can I have a separate SSID for IoT devices?

Hi,

Looks like the pic passed moderation.

 

To be honest I'm a bit surprised that it's not easy to answer the question myself. For quite some time, all router manufacturers have known that commodity IoT devices often have cheap low-security chipsets that don't always play well with dual band SSIDs, and they must all be aware that cyber security specialists (and the FBI now) have been advising segregation of the network so that those devices have no connectivity to PCs, laptops and network attached storage.

 

I know I can configure any of my old routers (that have no firewall/antivirus/anti-malware protection) in bridge mode and add a dedicated 2.4ghz SSID for IoT kit. That includes a router that's ten years old. But I'm trying to upgrade my Wi-Fi infrastructure to make it MORE secure overall, as well as more resilient - and if I buy this kit, I'll be getting a router and AP so do I really need a second, less secure AP just for IoT?

Message 3 of 5
peacalmer_at52
Aspirant

Re: Can I have a separate SSID for IoT devices?

Just to expand further - this post from 2017 describes a very realistic scenario... with more people (indeed entire families) working from home on a semi-permanent basis thanks to COVID, and using home automation / smart meters, controls and sensors / voice assistants more than before, this isn't the edge case that it used to be.

 

https://community.netgear.com/t5/Orbi/VLAN-Tagging-for-Guest-Network/m-p/1361958/highlight/true#M130...

 

Message 4 of 5
Netduma-Fraser
NetDuma Partner

Re: Can I have a separate SSID for IoT devices?

Take my advice with a pinch of salt as it's not specifically in the DumaOS realm what you're asking as it's more to do with Netgear hardware and software capability. I can't really comment on the Extender capabilities as I haven't used it too often. On the router side, you can make a guest WiFi SSID and have the option as to whether you can allow it to access other guests and the network. You could try VLAN but you couldn't apply it to the guest network to have more flexibility.
Message 5 of 5
Discussion stats
  • 4 replies
  • 2355 views
  • 0 kudos
  • 2 in conversation
Announcements

Orbi WiFi 7