How to VLAN iot? - eviltoast

Hello, this is not a question on how to configure my router (maybe) it’s more for the concept that I can’t understand.

By the way, I only have a default isp router, that I can’t even modify the dns, so I assume I’ll have to buy my own.

So o want to have all my IOT devices on a different network, so as to not compromise my newly made homeserver, but what I don’t get is how will I be able to turn on and off my light bulbs.

All the articles I see on creating VLANs tell something like “devices on port 2 can communicate with port 1 (internet) but cannot communicate with devices on port 3,4,5, 6…” and so on.

But if my IOTs are on a VLAN A and my Phone, computers, server are on VLAN B, how can I turn the lights on and off from my phone?

Maybe I’m getting it wrong, and my phone should also be on the same VLAN as the IOT, but then how will I connect to my server?

Thanks.

  • dlchase24@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Basic concept is VLAN A can only communicate to your VLAN B through routes you configure. But, anything on VLAN B can reach anything on VLAN A. So your phone could see all your IOT devices but your IOT devices couldn’t see your phone, unless you want them to.

    My setup has changed since, but to help illustrate, I used to have an MQTT server on VLAN B, so I had setup a rule that VLAN A could reach the MQTT server on VLAN B through the MQTT port, but blocked everything else.

    It’s possible you don’t need to do that and only need to allow VLAN B to reach VLAN A.