Home/Small Business Network Setup

Started by JSESSION34, September 07, 2025, 09:04:36 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 07, 2025, 09:04:36 PM
I'm currently staying in my parents' home to care for them (temporarily for the next few months). They have ATT fiber internet with a BGW 320 router.

I want to make sure that I have a secure internet connection that is free from viruses, malware, or anything malicious. I work their from home several days per week using a laptop issued by my job with a VPN pre-installed by my workplace.

Separate from my day job/work laptop, I'm also working on starting a graphic design business (just a little one-man operation with me creating artwork in Adobe Creative Cloud). It's important to me to protect those files and keep them safe. All of my devices are connected to their wi-fi through the BGW 320. My own personal devices do not have a VPN.

Background: My parents tend to click on a lot of questionable links, even though I've advised against it. It's their house, so there's not much I can do to prevent it. I installed Malwarebytes and made their accounts non-administrator on their windows computers. I'm basically worried I might pick up something malicious in our network from them.

For now, I set up a guest network for myself (on the BGW 320) to separate my work computer. This router only allows for the main network and one guest network. My parents also have all their IoT devices on their main network.

My needs: I'd like a separate internet connection for myself entirely, but I'm not able to get a second ATT fiber connection at this address. I'd also like to have some type of separation for my work laptop and also for my own personal graphic design devices. I travel for work sometimes and need to work on-the-go.

(1) What can I do to make my parents' setup more secure? Should I put the BGW 320 in IP passthrough and connect a router to add more separate VLANs for my parents/work/IoT?

(2) For myself, should I set up something separate? What are my most secure options if a second wired connection at this address is not viable?

(3) Would a mobile hotspot of some sort be an option for me, since I do need to work on-the go sometimes? Is there a mobile option that is just as secure as wired/home internet?

Note: I don't have a strong amount of technical knowledge, so I appreciate any advice.
September 08, 2025, 06:17:55 PM #1
I'm assuming that these are really not an OPNSense questions. Have you looked into T Mobile internet for either yourself or parents.  This would definitely separate the activity.  Short of that, buy a better router and put the ATT equipment in bridge mode to allow your router to control the network. One of the primary reasons I installed software like OPNSense was the ability to create separate networks (subnets). I started with Untangle.

Since this is temporary, my first option would be T Mobile.  Good luck.
Print
Go Up Pages1
User actions