Hi -I'm hoping someone on here could assist with solving this conundrum without spending too large a sum.
After researching a lot of options, I'm looking at purchasing FW Gold for my home network. However, i am struggling to figure out how i would achieve network segmentation for my IoT devices.
I have 1Gb cable connection and own my own equipment. Cable Modem>Linksys MX5300 parent node>2 x MX5300 Child Nodes.
At present i run the linksys velop in its combined wireless mode - 1x2.4 and 2x5Ghz bands acting as one mesh network with a single SSID. Guest is also enabled with its own SSID but i am debating the long term use of that after reading some articles.
At present the IoT things i really dont trust are sitting on the guest network, somewhat riskily. There are many more i would like to add to an IoT dedicated segment.
As far as i can tell the linksys Velop does not support VLANs - which i am assuming means there is no way i can vlan tag. So with the following model i don't think i would be able to have new devices joining a specific SSID, and automatically be assigned to the right VLANs that i would set up on the FWGold.
CableModem>FirewallaGold>Velop MX5300 parent>MX5300 child nodes
1. Velop does allow me to separate the wireless into 3 different SSIDs, so i might be able to use the 2.4 for IoT and the 2 x 5Ghz for two other SSIDs. However, not sure how i could vlan tag those. Also questionable what kind of performance hit there would be for devices moving about the house and joining different nodes.
2. I could deploy simple mode where the firewalla gold would sit off the velop parent node and arp spoof to do its job leaving present network in tact, but i think i would not be able to acieve the goal of segmenting the IoT devices this way. Also not sure if in that mode there would be a performance hit to the network.
3. I could buy another linksys velop node, or perhaps something cheaper and run in 2.4Ghz mode and dedicate that to the IoT network. But this on top of the cost of the FWG would be the most expensive option, and its a bit clutterey. Investing in the velops was in part to clean things up.
Thoughts and suggestions welcome, as i don't want to push the button on buying the FWG without a clear plan to deploy it. Its going to be quite painful enough having to restructure the network for the large number of smart devices on my home network (not even sure of the number - dozens, which is a problem in and of itself (switches, plugs, bulbs, cameras, fridges, doorbells, heaters, HVAC, weather sensors, cooker etc.)
Please sign in to leave a comment.