Yes, you can set up VLANs on an Ubiquiti router that functions as a switch.
Yes, you can set up VLANs on an Ubiquiti router that functions as a switch.
I’m working from home while saving for an apartment. My family relies on Verizon Fios and uses the router provided to give internet access. I’m interested in Ubiquiti equipment since I run my own server and want to manage VLANs and other features. The current Fios router offers limited customization there. If I purchase a Ubiquiti device now, could I configure it purely as a switch before adding VLANs? I don’t want it acting as a router behind the family’s setup, as that might cause double NAT problems with my server. Would running it only as a switch still allow me to set up VLANs?
Setting up a Unifi gateway as merely a switch isn’t feasible. You’d likely need a Layer 3 switch with routing capabilities, which could handle traffic management. A router might still be necessary for VLAN control and overall network management.
I believe double nat isn't too bad; you just need to set up port forwarding twice. It's not the most efficient method, but running something on a home connection isn't ideal either. These vlans would typically help organize network segments, though many people mistakenly refer to them as subnets. Vlans simply simplify the setup process.
I haven’t considered that before. I’m running an offense VM that I’m using as a firewall for my server setup, but forwarding my Plex VM from behind the second firewall was proving difficult. I wasn’t expecting to need port forwarding twice. My goal with VLANs is to create additional security rules for certain VMs that connect to the internet. I don’t want anyone gaining unauthorized access and tampering with my systems, even though the risk seems low—I’d rather be cautious.
You likely need several subnets. Then you can establish different rules for communication between them. I don't know the hypervisor you're using, but many have firewall features that could handle this too.
For configuring VLANs on an Ubiquiti Edgerouter-X, there are procedures that might not require it to operate as a full router. I haven’t used VLANs personally, but you can find more details here: https://help.ui.com/hc/en-us/sections/36...figuration. Since I’m unfamiliar with Ubiquiti gateways, I don’t know their capabilities or limitations. My setup includes 5G home internet with double NAT and even a triple NAT configuration, so I haven’t faced any problems. I don’t host servers or play online games much, and manual port forwarding is rarely used.
What kind of firewall rules are you considering? Are they meant for incoming or outgoing traffic? If you're aiming for more than basic switching, you'll need a device with real firewall functionality—some switches offer limited capabilities. How do you intend to manage the different VLANs? Since you mentioned using it as a switch, you likely want routing support rather than a restricted network segment.