Yeah - 4th post I clarified VPN...
Thanks for the input though..
Well for some reason I never read the 4th post. I didn't even know what a VLAN , when your first posted. Then I looked it up and decided that I should separate some of our network stuff. So thanks for posing the question, even if it wasn't the question you meant to ask. I learned something.
Now I'm curious did you actually decide to get a VPN service? if so which one did you go with?
Haha! I was trying to get my head around what your setup at the house must look like to need VLANs and MPLS!!!Yes - VPN - sorry. unfortunately you can edit a post content, but not the title...
Your friend has probably drank the marketing kool-aide.My buddy insists I do. I really don't want to pay for another ongoing 'service'.
Note that VPNs are probably not as secure as you think. Also see vpn provider turns over logs.Are they necessary? What's good? And Cheap?
lololol... Actually, I do VLAN my wifi. Also, my wifi is on a different zone anyway but I have two vVLAN wifi- one for fam that can do certain more things and one for family and friends that come over. Since my youngest uses chromecast, she is on a separate wifi vlan since you need to open up thingsHaha! I was trying to get my head around what your setup at the house must look like to need VLANs and MPLS!!!
The network segregation is probably a good idea.I do VLAN my wifi. Also, my wifi is on a different zone anyway but I have two vVLAN wifi- one for family that can do certain more things and one for family and friends that come over. Since my youngest uses chromecast, she is on a separate wifi vlan since you need to open up things
pfsense is pretty good. I am Sonicwall certified since like early 2000's. I have a nice one at home and APs. I use that and forced Comcrap to make my router bridge mode. Eff double NAT. I can shape on my firewall if I want but I do not care about uploading speeds like people do for after hours. Either layer 2 it using the tagging or like me a hybrid setup- mostly for the wifi.
I use a bunch of vlans to segregate traffic that shouldn't be on the same network.
Management traffic (what you use to configure your routers, switches, APs, etc) should always be on its own vlan.
Then
Admin VPN
User VPN
User wired network
User WiFi
Guest WiFi
Work WiFi (not trusting any laptop I don't control)
Cloud based IoT devices (Roomba and whatnot)
Local control IoT devices (Raspberry Pis driving relays)
VoIP devices
Media devices (Roku, AppleTV)
Security cameras
Home security system
Most categories have no need to talk to each other. Some have no reason to go out to the Internet. VLANs give you fine control when they're used with a router with a rule based firewall.
Yes, I fake the gps location on my phone when pairing, so the Roomba thinks that's the White House it's mapping.You do realize that the Roomba maps out your house and records what you have an sends it to the local criminals.
Your friend has probably drank the marketing kool-aide.
Note that VPNs are probably not as secure as you think. Also see vpn provider turns over logs.
What problem are you trying to solve?