this post was submitted on 01 Jul 2024
53 points (98.2% liked)

homelab

6635 readers
24 users here now

founded 4 years ago
MODERATORS
 

Help I now have several lans

top 18 comments
sorted by: hot top controversial new old
[–] dhork@lemmy.world 9 points 4 months ago (1 children)

It just means you need to figure out how to route between them, that's all.

[–] possiblylinux127@lemmy.zip 6 points 4 months ago (2 children)
[–] SzethFriendOfNimi@lemmy.world 11 points 4 months ago (1 children)

You get a gateway, and you get a gateway.

Everybody gets a gateway!

[–] possiblylinux127@lemmy.zip 11 points 4 months ago (1 children)
[–] SzethFriendOfNimi@lemmy.world 3 points 4 months ago

Virtually…

[–] czardestructo@lemmy.world 3 points 4 months ago (2 children)

It's going to haunt you for years. Wife: "why doesn't this iot thing work?" Oh its on the wrong network. "I don't understand it just doesn't work". Then I go add more exceptions in pfsense and the cycle continues.

[–] Lem453@lemmy.ca 5 points 4 months ago (1 children)

The correct way of doing this is to never interact with an iot device directly. Put all of them on the same network with Home Assistant and then control all of them only via Home Assistant. Then you make one exception for home assistant to be accessible to the other networks.

This also allows you to disable Internet access for every single iot device Except home assistant.

[–] czardestructo@lemmy.world 1 points 4 months ago (1 children)

I have so much trash on my network. For instance my security cameras are decentralized and we use tinycam on android to view them so I had to allow an exception for rtsp to get between the dirty iot WiFi and our normal WiFi. Our WiFi connected Bose speakers and Spotify is also another set of annoyance, they will only work if you try to connect to them from the same subnet via Spotify and app. I've tried to NAT the traffic and it didn't work.

[–] Lem453@lemmy.ca 1 points 4 months ago

It's not easy but they only way to make it all work without creating massive security holes is to only buy things that allow connection with open standards (which means home Assistant can connect to it.

[–] Manifish_Destiny@lemmy.world 2 points 4 months ago (1 children)

Wan rules already takes 5 minutes to load. No more hosting, only blacklists.

[–] possiblylinux127@lemmy.zip 1 points 2 months ago

That's not least privilege

[–] BearOfaTime@lemm.ee 6 points 4 months ago (2 children)
[–] Taleya@aussie.zone 4 points 4 months ago

Well it was worse around lan 2, now it's definitely worst

[–] Reddfugee42@lemmy.world 0 points 4 months ago

Hah, can Op's grammar get any worst

[–] qjkxbmwvz@startrek.website 5 points 4 months ago

I have a Mikrotik router, 2x VLAN-enabled switches, and 3x VLAN-enabled APs. My Internet access broke every day for a month while I figured out what I was doing.

[–] chahk@beehaw.org 3 points 4 months ago (1 children)

Have you tried a patch cable‽

[–] possiblylinux127@lemmy.zip 5 points 4 months ago

No need I have vlans

[–] Tylerdurdon@lemmy.world 1 points 4 months ago

Managed switches are the way to go. I have various segments and none talk to each other.