I am in the process of replacing my router as the old one is now eol.
At the moment everything is on the same LAN and it all works fine.
I have a small b&w laser printer on my desktop which is plugged in via USB. I also have a Brother multifunction printer (MFP) which is set up in another room due to its size and is connected by ethernet through a homeplug. There are also two old smart TV's and various other devices connected to my network via homeplugs in various rooms.
I was planning to do some network segregation with the new router to improve security, using trusted and untrusted networks.
I first thought of creating a VLAN and sticking everything outside of my study (where my main computer and router are) on it. This would be easy to implement. The problem would then be that the MFP would be on the separate untrusted network and I wouldn't be able to print to it from the study.
So, I could include the MFP on my trusted network but then I would need to send tagged VLANs through the homeplugs which would require installation of managed switches after the homeplugs which I don't really want to do.
I could connect to the MFP via Wi-Fi instead of ethernet. Would this be secure enough? Some people say that MFPs should be regarded as computers and if compromised could lead to unwanted network access. Or am I overthinking this last point?
As previously stated I would like all the random untrusted devices on a separate network and apart from the printer this would be easy to achieve.
Unless there is something I have overlooked. (My knowledge of networking only runs as far as tagged VLANS and firewall rules are a bit beyond me.)
At the moment everything is on the same LAN and it all works fine.
I have a small b&w laser printer on my desktop which is plugged in via USB. I also have a Brother multifunction printer (MFP) which is set up in another room due to its size and is connected by ethernet through a homeplug. There are also two old smart TV's and various other devices connected to my network via homeplugs in various rooms.
I was planning to do some network segregation with the new router to improve security, using trusted and untrusted networks.
I first thought of creating a VLAN and sticking everything outside of my study (where my main computer and router are) on it. This would be easy to implement. The problem would then be that the MFP would be on the separate untrusted network and I wouldn't be able to print to it from the study.
So, I could include the MFP on my trusted network but then I would need to send tagged VLANs through the homeplugs which would require installation of managed switches after the homeplugs which I don't really want to do.
I could connect to the MFP via Wi-Fi instead of ethernet. Would this be secure enough? Some people say that MFPs should be regarded as computers and if compromised could lead to unwanted network access. Or am I overthinking this last point?
As previously stated I would like all the random untrusted devices on a separate network and apart from the printer this would be easy to achieve.
Unless there is something I have overlooked. (My knowledge of networking only runs as far as tagged VLANS and firewall rules are a bit beyond me.)