My home network is firewalled and reasonably secure (all permanent devices and IOT devices have MAC addresses tracked and registered) but I’d like to improve it even more:

  • Home devices (servers, printers, laptops, etc) with registered MAC addresses which can’t be accessed from my registered IOT devices or from unregistered guest devices.

  • QOS rules for all guest devices.

Using a HEX to run the network with unifi AP hardware.

  • the_boxhead@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    6
    ·
    11 months ago

    I’d split your network into 3 vlans. One for home, one for IoT and one for guest access (probably over WiFi). That way your firewall can handle the access rules.

    • Nogami@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      That sounds like a good starting point. I’ll need to read up on setting up VLANs.