6/20/2023 0 Comments Setup dd wrt guest private networkI’ll throw my opinion in here at the risk of being shot down. Unfortunately, consumer-grade network equipment doesn’t (yet) offer many options for IoT security, short of using a guest network, which is quite inconvenient. This way, you could possibly also block traffic to the internet from the iot devices for more privacy. Homeassistant would then handle all of the connections to the IOT devices themselves. You would then have to set up firewall/routing rules to allow connections from the main vlan to the server running hass. One would be your main network (vlan 0) and another one for IoT devices. Some customer-grade routers also offer vlan functionality out of the box, which is quite rare, but if your router has them, you should use them! Basically you would have two vlans as the minimum. I would recommend the Ubiquiti Edgerouter X (~$50), as well as their UAP-AC-LITE (~$80) ap (I have the er-x, works really well), or a decent prosumer router loaded with DDWRT if you’re feeling adventurous. You would need to either get a new AiO router which supports these, and multiple ssids, or a router + ap combo. If you are willing to invest the required money, and some time, VLANs would work perfectly. Moving all your devices back to the main network would certainly work, however it definitely wouldn’t be the most elegant nor the most secure solution.
0 Comments
Leave a Reply. |