Two Routers and Iot
Two Routers and Iot
I’m organizing my IoT gadgets away from the main network at home. I want to keep costs down and avoid complicated setups. I found a video that suggested using a second router, but I’m unsure if it’s the best approach. Right now I’m stuck with a Linksys WRT3200ACM that doesn’t update much, and DD-WRT didn’t work for my garage door switch. Other devices connected fine with DD-WRT, but I can’t install new firmware. The video suggested adding a cheap router and giving each device its own SSID. I’m worried about security—will my printer work if it’s on the IoT network? Should I keep it separate from my main system? Can I be sure my personal data stays safe? I think this could be a reasonable way to isolate devices, but I need more confidence before moving forward.
This stops broadcasts from moving between LANs, but that's roughly all there is to it. The IoT gadgets can still reach your whole LAN since the second router simply applies NAT in the same way as the main router does for the internet. They both act as routers, handling traffic between different IP ranges. Without some sneaky tricks, you won't be able to get to the printer on the second LAN because that router blocks it, just like the main router blocks you from the outside world. It's not worth the trouble.
I believe using VLANs is the best approach. Those settings are usually unavailable in consumer devices. Vsfen also offers a similar feature.
VLANS are necessary for segmented networks. Two APs only provide two SSIDs. Assigning a port to its own VLAN lets IoT devices connect outside the main network. Don't place printers in this setup since they require access from your standard home VLAN. Broadcasting the SSID offers little security benefit, so choose the method that simplifies connecting your IoT gear. A helpful search was found here: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=317199