NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Question on creating multiple Wireless VLANs for Security (IoT devices, Family WiFi, Guest WiFi)
Hey Everyone,
I'm in the process of re-doing (re-designing) my entire Home Network. I've decided to go the VLAN route for both Wired and Wireless devices. From a security standpoint, I would li...
Great feedback from everyone!! I guess my issue now, is that I need to diagram out what I currently have as far as cabling and ports.
In a perfect world, I could configue Pfsense so that each LAN port would be dedicated to a different VLAN and go downwards from there.
Unfortunately, I'm thinking that I may have to go another option and create a VLAN Trunk since I may have to have multiple VLANs on the same port, due to the limitations of how my cable and ports are currently layed out.
I'm going to try to throw something together, perhaps a simple sketch or Visio, so that you guys can see what I'm dealing with.
OBTW, Right now...since I'm still waiting on both my Pfsense Firewall and EdgeRouterX to arrive...and since I haven't installed my 24-port ZyXEL Managed Switch just yet, here's what I have layed out:
1 Gbps CenturyLink Modem C1100T >>> Orbi Router (Router Mode) + Satellites >>> Ethernet ports
(I haven't fully setup the ZyXEL Switches just yet)
Is there any advantage if I do this:
1 Gbps CenturyLink Modem C1100T >>> Netgate SG+3100 >>> Orbi Router (AP Mode) + Satellites >>> Ethernet ports
instead of this...
ONT >>> Netgate SG+3100 >>> Orbi Router (AP Mode) + Satellites >>> Ethernet ports
So basically, is there any advantage in keeping the CenturyLink Modem C1100T as the primary Gateway as it stands now, then adding the Netgate SG-3100 behind it?
Thanks!
BJ
b1ggjoe wrote:
Great feedback from everyone!! I guess my issue now, is that I need to diagram out what I currently have as far as cabling and ports.
In a perfect world, I could configue Pfsense so that each LAN port would be dedicated to a different VLAN and go downwards from there.
Is there any advantage if I do this:
1 Gbps CenturyLink Modem C1100T >>> Netgate SG+3100 >>> Orbi Router (AP Mode) + Satellites >>> Ethernet ports
instead of this...
ONT >>> Netgate SG+3100 >>> Orbi Router (AP Mode) + Satellites >>> Ethernet ports
So basically, is there any advantage in keeping the CenturyLink Modem C1100T as the primary Gateway as it stands now, then adding the Netgate SG-3100 behind it?
Thanks!
BJ
Case850 has a great point which is why I previously asked your interest level... I still think your overall experience will be better with pfsense once you learn it. Just the level of flexability/options on such a system you won't get from EdgeRouterX. If you want a set it and forget it option... do that. If you want to play with traffic and have a lot more options, you were right in the sg3100 option. The EdgeRouterX may not have been a waste of $ if you could use it to extend PoE and also provide ethernet uplink elsewhere. I may purchase a couple of those.. they have great benefit if they fit in the overall design.
I'm assuming (based on previous posts) you have an ethernet hand off and already tried ONT -> ORBI? Why did you go back to the CL modem? Do you rent it or own it?
I helped a buddy do an install recently where we briged the ISP modem (xfinity) because they needed the cable modem for MoCA and wasn't preparend to pay $ for a new modem.. Since you are ethernet, I don't know how that could help you. It just adds an extra hop for no reason. The only thing I can really think of is support. Your ISP may not spend as much time with you troubleshooting your own equipment than they would if you are using theirs.... If this is important to you, it may be worth it to keep it around in case you need to revert back to prove to the ISP the problems are on their side. If you don't use ISP standard equipment... it's easier for them to blame your equipment.