VLAN and Routing Design

abraham · March 28, 2020, 3:27pm

Please could someone give me some advice on how to configure my home / home office network?

What I’m trying to achieve is as follows, apologies for the formatting, I couldn’t see a way to paste or create tables:

VLANs VLAN ID Wireless Networks Access To VLANs Internet Gateway Subnet
Guest WiFi 10 Guest None Gateway 1 TBC
IP Cameras 20 Servers Gateway 1 TBC
General 30 Main Servers Gateway 1 TBC
Secure 40 Secure All Gateway 2 TBC
Management 50 Management All Gateway 1 TBC
Servers 60 Gateway 2 TBC

The equipment I have is:

Equipment List
Zyxel GS1900-48HP Firmware Version 2.50
Cisco SG300-10 Firmware Version 1.4.11.4
Cisco WAP121 Firmware Version 1.0.6.8
BT Home Hub Gateway 1
Huawei B535 Gateway 2

End points for each of the subnets are as follows:

End Points Wired Wireless
General 11 27
IP Cameras 5 0
Secure 2 2
Servers 3 0

This text will be hidden

lagapidis · March 29, 2020, 9:52am

Hello Abraham

Performing network design on such a network is not something that is trivial, nor can it be answered in a single post. I think the most important thing here is to keep the following principles in mind:

Separate your subnets/VLANs based on user requirements and security. Separate your server traffic from your Wi-Fi users and use appropriate access lists or other security features to keep those networks separate.
Make sure you have routing available between all subnets, most likely using inter VLAN routing on your Cisco SG300.
Make sure you have the required redundancy for connections to the internet, and for connections to your servers.

I suggest you take a look at these lessons which include more necessary principles for network design:

I hope this has been helpful! Stay safe and healthy!

Laz