IoT network VLAN 30Īll my smart lights, roomba, smart locks, cameras will be here, these devices cannot communicate to the other networks or connect to the Internet. I'm using the UDM as an access point only because most of the routing and DNS resolution will be done by Pfsense. The main goal was to have a clear separation between IoT devices, guest devices and my home devices so i came out with this designĭisclaimer: I’m a security software engineer but I know a thing or two about networking, if you see something wrong or do you think this design can be improved in any way please let me know.Īs you can see, I’m putting the Pfsense at the edge of the network so I have full control over the traffic. I had to integrate them together but I faced a couple of issues during the process to the point where I got locked out from the network and I had to reset the devices multiple times, either the PfSense or the UDM would work but not both of them at the same time but after some time it’s finally working so I decided to document the process in case it helps someone in the future. So I started looking at networking appliances that will let me do more advanced configurations and I quickly found about Pfsense (Protectli Vault) so I got one.Īdditionally, as a birthday gift from I got The Dream Machine from Ubiquiti (usually you will use one or the other) so I had two routers now. However I wanted to learn more about networking and in particular how to configure a couple of monitoring tools, network packet inspection, security, firewall rules, etc. My original home network consisted of a single Google Wifi router, if you are interested the device it’s limited but will get the job done. ![]() ![]() A couple weeks ago I did a mayor reconfiguration on my home network, I migrated from a single flat insecure network in where any device was able to talk to any other to a more secure design in where the network is segmented (IoT devices, guests, home lab, etc) and where I control who has access to what resources via firewall rules and other tools.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |