|
|
|
|
|
|
by simoncion
530 days ago
|
|
|
I have multiple VLANs on my home LAN. It's just so much easier to provide no-Internet or isolated-from-all-other-non-guest-hosts service if you set that up via VLANs. I might be mistaken, but it's my pretty strong understanding that with everything on the same VLAN, you have to deal with hosts using MAC and/or IP address spoofing to evade your router firewall rules. [0] [0] Because what else would you use to decide how to block or permit traffic if you can't distinguish by the interface that the traffic came in on? |
|
|