Hello there
I am looking for help with upgrading and increased control over my home network. I have a little, but not very much, experience with configuration and administration of networks, but have tried to learn a lot via e.g. Lawrencesystems’ YouTube channel. I have, among other things, a desire to master the setup and maintenance of division into multiple VLANs.
I have the following setup now:
Synology AC2600 router with 2 wifi networks, which is properly divided into VLANS, managed by a built-in function in the router. I have some Tado heating system, a synology NAS and 2 old Netgear GS110TP swithes, where the switches are simply used to extend the wired network and create space for more wired devices.
I have a few different computers, a wireless printer, some wireless security cameras from Reolink, and various mobile phones and tablets, as well as some specific devices that I eventually want to switch from wifi to wired connections.
Some time ago I bought a Netgate 2100 which I want to set up first in my network instead of my ISP’s router.
In addition, I am considering replacing the switches (possibly with equipment from Unify), but I am not clear which equipment and models I should choose. And I’m not sure if I should add access points from Unify as well, or if it’s fine enough to use my existing router, my provider’s router or possibly both.
I would like to learn how to set up the network myself and have an overview, but in the past I have had challenges configuring my NAS to be accessed remotely, and I have also not succeeded in getting external access to my printer. So any help on concepts and configurations I should focus on will be appreciated.
Therefore, I would like to hear from you about the following:
-
Which devices should be isolated in separate VLANs and how do I best ensure this?
For example, would it be possible to have a guest network that has access to my chrome-casts, printer and Sonos system, but not to my server and my cameras.
Can a mobile device, based on the mac address, be set up to be able to e.g. all devices in VLAN 1 and at the same time a specific device in VLAN2, without the device having access to all devices in VLAN2? -
I understand that Unify devices are easy to set up, but is it okay to have a specific device to be able to manage the network remotely from? I don’t usually need that with my Synology server.
What equipment can you recommend? -
What should I be aware of in order to gain secure access to my various devices from external computers, without exposing and risking unwanted intrusion on my network in general?
I hope you can and will help me on my way and look forward to hearing from you!
With best regards
Allan