Recent content by NetworkHound

If I didn't want to setup a full IDS solution, what kind of monitoring as a service is out there? I've seen CUJO, which seems okay, but doesn't seem to play well with VLANs (it always gets stuck on VLAN1). I can't find any reviews on DOJO or Rattrap. I was hoping to see some reviews on this site...

Yeah... it is very unlikely I'll be checking daily logs. So perhaps a true intrusion detection system is not what I want. Is there an in-between solution, something that will let me know if my IoT devices are suddenly contacting malicious servers or being used in a botnet? Maybe I should just...

I talk about network security a lot to friends, family, and pretty much anyone who will listen. Yet I’m really bad about actually making my own network secure. So I decided to finally “practice what I preach” and get serious about my home network security. I’m starting by segregating my network...

Thanks! I have been looking at pfsense as a gateway, but for now I think I might go with a Ubiquiti router to see if it can do what I need. A lot of people seem to really like Ubiquiti for more advanced setups and it looks like it can do all the VLANs setups I need via the GUI.

I appreciate the discussion here, it has been very helpful. I actually appreciate both bringing the Asus router to my attention and the general warning, it is helpful for me to both be aware of the products but also of possible shortcomings. I think I've decided to go for a more classic VLAN...

That's an excellent point. The Norton Core looks like a consumer version of an enterprise gateway, where it monitors traffic and may have algorithms to auto detect and isolate suspect devices. I'm just a little lost on what I'm looking for. Is it a Ubiquiti EdgeRouter, an out of the box...

Here is a potential layout I'm considering. Would this work? I could also reduce the need for switches by getting a router with more LAN ports

I looked at the Norton Core, it seems like a good concept and likely the way home routers will need to go to keep up with IoT security. However it is untested and I think it requires a $10/month subscription. The CUJO is an interesting concept, I'll look into it. If I'm going to get a new...

I have a higher-end consumer router that I got this spring connected to my ONT. It has been working great, but I've been getting concerned over the lack of security on my network. I have over a dozen IoT devices co-mingled with my primary computers, smart phones, and tablets. All the advice I've...

I was looking at the EdgeRouter Light as an option, I can't tell if you can do all the VLAN tagging via the GUI or not. I'd rather not be reliant on a command line to do settings. I'm fine with learning it in the future but I'd like to be able to get through the VLAN setup via a GUI. Any other...

I've seen a similar approach written before where you have a primary router with two secondary routers behind it double NATed. I do game online though and I've heard double NAT can cause some issues with online gaming. That is another approach I could consider. Getting another router and...

A few followup questions: So I could use my current router for one network, then an AP that supports multiple VLANs for an IoT and Guest network? Is there a simple way to handle IoT security? I have over a dozen IoT devices, mostly smart lighting. I keep seeing network segregation is the best...

This spring I finally upgraded my home network router from the ISP router to a higher end consumer router. I have fiber and I was able to get the router to connect directly to the ONT. I was happy because I finally had a network with a separate guest SSID! Fancy! Now I'm realizing I should also...