How to VLAN iot? - eviltoast

Hello, this is not a question on how to configure my router (maybe) it’s more for the concept that I can’t understand.

By the way, I only have a default isp router, that I can’t even modify the dns, so I assume I’ll have to buy my own.

So o want to have all my IOT devices on a different network, so as to not compromise my newly made homeserver, but what I don’t get is how will I be able to turn on and off my light bulbs.

All the articles I see on creating VLANs tell something like “devices on port 2 can communicate with port 1 (internet) but cannot communicate with devices on port 3,4,5, 6…” and so on.

But if my IOTs are on a VLAN A and my Phone, computers, server are on VLAN B, how can I turn the lights on and off from my phone?

Maybe I’m getting it wrong, and my phone should also be on the same VLAN as the IOT, but then how will I connect to my server?

Thanks.

  • bufandatl@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    You basically need a router between the networks. I would recommend pfsense or opnsense or if you like cli vyOS. I run a pfsense that has my ISP router on the WAN port and a network interface for all VLANs and then I configured the firewall to allow specific traffic to specific devices in specific VLANs. For example my PC can reach the smart home controller website but no other device. And the samrthome devices only can reach the DNS in the ISP network (my kinda DMZ) and the router to reach the internet. And for every VLAN there are own rules where goes what communication.

    You also can setup that on the managed switch which you would need for setting up VLANs.