1
General Discussion / Re: how to segregate cameras from rest of network?
« on: September 24, 2022, 02:33:07 am »
One idea is to use a Unifi Access Point connected to your switch, if your current router cannot tag separate SSIDs. I have a couple of SSIDs setup at my house with a few different VLANs to separate out traffic (normal LAN WiFi, Guest WiFi, IOT WiFi, and another IOT WiFi because Nintendo Switches do not work nicely when trying to play multiple consoles in a multiplayer game at the same time (their support saying to open all ports to them is another security story). There are quite a few tutorials on how to create VLAN WiFi networks with Unifi and the other SENSE offering out there, and they work well for OPNsense, with just a few changes to the screens.
https://www.linuxserver.io/blog/2019-11-13-pfsense-unifi-wifi-vlan
If you can go that route, you do not need another NIC on your computer running OPNsense for that to work and you do not necessarily need a managed switch as long as your switch will pass the tags through (I started off with a switch that just did passthrough and now have a couple of managed switches in my home network.)
https://www.linuxserver.io/blog/2019-11-13-pfsense-unifi-wifi-vlan
If you can go that route, you do not need another NIC on your computer running OPNsense for that to work and you do not necessarily need a managed switch as long as your switch will pass the tags through (I started off with a switch that just did passthrough and now have a couple of managed switches in my home network.)