Securifi Community Forum
Securifi Products => Almond+ => Topic started by: clinton on May 08, 2016, 05:22:16 pm
-
I thought I'd seen information about this in the past, but I've been unable to dig it up in the last hour.
I'm looking at different options for segmenting a small office network to support payment card compliance concerns. Nothing fancy, but I need to be able to isolate one of the ethernet LAN ports on it's own segment. I was under the impression based on something I've read in the past that the LAN ports are all switched to a single internal interface and not separately routable. Since I can't find the reference, I'll assume I might be thinking about another device.
However, within OpenWRT settings all LAN interfaces seem to be aliased under eth1 and are bridged with wireless under the LAN network. Will creating a new network with eth2 (shows disconnected even though all ports are physically occupied) or custom port (eth3/4) move the corresponding physical port out of the LAN network? I was also considering whether the interfaces could be addressed as eth1.0, eth1.1, ..., though I haven't had an opportunity to take the network down long enough to test.
-
@ clinton,
As of now it won't be possible to separate the LAN segment.
-
Thanks for confirming my suspicion. I'm still interested in the VLAN beta software since I'm not really using any other capabilities except PPPoE connection management, basic WAN firewall, and switch. I'm hoping this will be sufficient to solve my need.