F5F Stay Refreshed Power Users Networks Recommendations for DHCP, VLAN separation, and subnetting.

Recommendations for DHCP, VLAN separation, and subnetting.

Recommendations for DHCP, VLAN separation, and subnetting.

K
Katamin
Junior Member
Find
5
02-06-2016, 12:55 AM
#1
Hi everyone, I’m new to this setup and have a simple configuration in mind. I understand DHCP and internal IP ranges but am unsure about proper setup and VLAN separation. Currently, everything is on the same VLAN—192.168.0.0/24 managed by my EdgeRouter. My main question is whether it’s best to keep it together or split it up. Should DHCP be handled by the EdgeRouter or the managed switch? Are there recommended practices? I’m planning to isolate devices for better security and also want to add security cameras, keeping them separate. I’ve seen diagrams suggesting some changes, but I’m not sure what steps to take on the switch side. Upgrading to pfSense or UDM-Pro might affect things—do you have any thoughts? Feel free to share more details if needed.
Reply
Reply
K
Katamin
02-06-2016, 12:55 AM #1

Hi everyone, I’m new to this setup and have a simple configuration in mind. I understand DHCP and internal IP ranges but am unsure about proper setup and VLAN separation. Currently, everything is on the same VLAN—192.168.0.0/24 managed by my EdgeRouter. My main question is whether it’s best to keep it together or split it up. Should DHCP be handled by the EdgeRouter or the managed switch? Are there recommended practices? I’m planning to isolate devices for better security and also want to add security cameras, keeping them separate. I’ve seen diagrams suggesting some changes, but I’m not sure what steps to take on the switch side. Upgrading to pfSense or UDM-Pro might affect things—do you have any thoughts? Feel free to share more details if needed.

Reply
Reply
M
mode122
Junior Member
Find
25
02-06-2016, 05:44 AM
#2
Set up pfSense using many Ethernet cards. This allows you to divide your LAN without relying on managed switches.
Reply
Reply
M
mode122
02-06-2016, 05:44 AM #2

Set up pfSense using many Ethernet cards. This allows you to divide your LAN without relying on managed switches.

Reply
Reply
K
Kev67824
Member
Find
209
02-06-2016, 08:44 AM
#3
Sure, I understand. You're considering setting up a PFSense device and already have an EX3200 managed switch on hand.
Reply
Reply
K
Kev67824
02-06-2016, 08:44 AM #3

Sure, I understand. You're considering setting up a PFSense device and already have an EX3200 managed switch on hand.

Reply
Reply
K
kinmun
Member
Find
77
02-06-2016, 02:16 PM
#4
Here’s a revised version of your sentence:

You don’t really require it, though you can use it if needed.
Reply
Reply
K
kinmun
02-06-2016, 02:16 PM #4

Here’s a revised version of your sentence:

You don’t really require it, though you can use it if needed.

Reply
Reply
Z
Zheton
Junior Member
Find
39
02-19-2016, 04:22 PM
#5
Ensure the router hosts the DHCP server. Set up the managed switch with VLANs and a trunk port connecting back to the router. Configure the router with sub-interfaces and VLAN tagging so it can identify traffic per VLAN, preventing unwanted data from other networks from being intercepted by tools like WireShark. This also reduces broadcast domains, keeping bandwidth free for client communication and limiting interference from devices such as security cameras.
Reply
Reply
Z
Zheton
02-19-2016, 04:22 PM #5

Ensure the router hosts the DHCP server. Set up the managed switch with VLANs and a trunk port connecting back to the router. Configure the router with sub-interfaces and VLAN tagging so it can identify traffic per VLAN, preventing unwanted data from other networks from being intercepted by tools like WireShark. This also reduces broadcast domains, keeping bandwidth free for client communication and limiting interference from devices such as security cameras.

Reply
Reply