Richard,
I agree with Eero, VLANs are real security. It will require time and
effort and maybe some additional equipment. If it helps you sleep at night,
it's worth it. You might start with just IP groupings and rules though.
I have an admin network that only has a couple of
Well. You should use VLANs to segment IoT devices into different network.
Anyway... some commercial vendor might provide a bit better protection ;)
You can replace you apple timemachine with unifi aps.
https://www.ubnt.com/unifi/unifi-ap/
Eero
On Sun, May 13, 2018 at 10:44 PM Richard A. Relph
Hi,
I’ve been using a SG-2440 for a couple of years now, but only as a
well-maintained basic NAT router. I know I’m not using all the capabilities the
box offers.
I’m increasingly concerned about ‘infected’ IoT devices inside my firewall.
I don’t have any specific concerns. But
> On May 13, 2018, at 11:39 AM, WebDawg wrote:
>
> "In any case, if you configure your DNS Resolver to use the LAN
> interface as outgoing interface, the DNS Resolver should use the same
> routing than your computer, VPN or not."
>
> Can anyone confirm that this is true? I
"In any case, if you configure your DNS Resolver to use the LAN
interface as outgoing interface, the DNS Resolver should use the same
routing than your computer, VPN or not."
Can anyone confirm that this is true? I never tested it, but it would
be nice to get a confirm. I had an issue, similar