Does it make sense to isolate IoT devices by creating a guest network(s)?
What is so special about them?
Thanks
I agree with isolating IOT devices and this is also what I do. While this protects your main network and some I'd bet some very valuable assets, my thermostat is an IOT device and my home is a valuable asset. Should my thermostat be taken over by a malicious actor they could freeze my pipes and cause a lot of damage. It's not as simple as one would like and my thermostat is just one example.
Yes, but that's NOT the intent of having an IOT network.
Any such blackbox device is subject to possible malicious takeover, regardless whether assigned to the private or IOT network. The point is to place those devices you trust *least* on their own separate network to protect your other assets. It's NOT because it's more likely to prevent the malicious takeover and the direct consequences to the thing(s) which it controls. It's a valid concern, but again, it has nothing to do w/ the efficacy of placing it on the IOT network.
What you're describing is whether you have good reason to trust it in the first place, irrespective of where you end up placing it on the network. Because we insist on dealing w/ "less trustworthy" devices due to their considerable convenience, we mitigate that risk (but not eliminate it) w/ the IOT network. But at the end of the day, you may regret having bought and installed it anyway.
So what do you do? Where/how do you connect them?The best security for IoT devices; don't power them up within your home, and most certainly don't connect them to your router (main, guest, YazFi, wired, or otherwise).
As @Morris rightly pointed out, even using a different ISP with a separate router for those intrusive IoTs won't keep you safe from the script kiddies looking to make a name for themselves.
Well... I don't go crazy on those but I do like my doorbell. Light bulbs were used in vacation mode while we were out of town. For air purifiers, I agree, those are just nice to have toys. lolI don't use them. No need, really.
Yes.Do I need to enable JFFS to install it?
The best security for IoT devices; don't power them up within your home, and most certainly don't connect them to your router
How is a phone an IoT device? I think that's stretching it.
Particularly for me with no apps installed except for MS products.
So those are the IoT devices I have.
2 C545 air purifiers
1 Google Nest doorbell
3 light bulbs.
Not much.
This is what I did
I created one 2.4 band IoT guest network for light bulbs and air purifiers and one 5 band IoT guest network for doorbell. For all of them, I still allow intranet access. I want to be able to see the doorbell video on my Sony Google TV. I'm not sure about light bulbs and purifiers. I guess I will have to play around to see if I can disable the intranet on the 2.4 guest network. I do know that both guest networks are on the same subnet and this is why was wondering if in my case I really need to do it.
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!