NetworkHound
Occasional Visitor
I talk about network security a lot to friends, family, and pretty much anyone who will listen. Yet I’m really bad about actually making my own network secure. So I decided to finally “practice what I preach” and get serious about my home network security.
I’m starting by segregating my network so my IoT devices, our computers/tablets/phones, and guests are on separate VLANs with firewall rules restricting internal and external traffic. I’ll likely be using Ubiquiti equipment for that, I haven’t gotten it yet.
My next question is: should I also be using some kind of Intrusion Detection/Prevention system? I know companies have started doing this at the consumer level (CUJO, Dojo, Ratrap) and then you can also build your own using pfsense or Security Onion. Is that overkill for a home network or should I be looking into it? Is it more important than basic network segregation or should I go ahead with my VLAN plan first?
I’m starting by segregating my network so my IoT devices, our computers/tablets/phones, and guests are on separate VLANs with firewall rules restricting internal and external traffic. I’ll likely be using Ubiquiti equipment for that, I haven’t gotten it yet.
My next question is: should I also be using some kind of Intrusion Detection/Prevention system? I know companies have started doing this at the consumer level (CUJO, Dojo, Ratrap) and then you can also build your own using pfsense or Security Onion. Is that overkill for a home network or should I be looking into it? Is it more important than basic network segregation or should I go ahead with my VLAN plan first?