this post was submitted on 31 Jul 2023
20 points (83.3% liked)

Selfhosted

40201 readers
914 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Hi Guys,

Need your help. I have a router to which all th devices are connected. Mostly wireless but the TV is connected via LAN cable. I have installed few apps on the TV from not trusted sources and I dont want the TV on the same network. How do I isolate the TV from the network so that it can still access the internet but cannot see anything on the network. Hope it makes sense.

you are viewing a single comment's thread
view the rest of the comments
[–] Yoz@lemmy.world 0 points 1 year ago (1 children)

Thank you so much. I think i'll have to buy a switch. I have a shitty iinet tgvac789 V2 router which I think is useless.

[–] grahamsz@kbin.social 3 points 1 year ago (1 children)

The switch on its own will do nothing for you. It's only useful with a router that supports VLANs

Unfortunately in your situation you'll need to replace your current router-modem combo with a dedicated modem, a commercial router (if you don't want to build your own linux one then EdgeRouters seems pretty good value for money) and a managed switch.

[–] Yoz@lemmy.world 1 points 1 year ago (2 children)
[–] grahamsz@kbin.social 1 points 1 year ago (1 children)

Can you enable multiple vlans?

[–] Yoz@lemmy.world 1 points 1 year ago

I only see one VLAN option but then I also found this

[–] SteveTech@programming.dev 1 points 1 year ago (2 children)

I believe that's the VLAN for the WAN, basically you only need to enable that if your ISP is using VLANs, but you want to enable VLANs on your LAN. I have the Telstra version of that modem (I recognise the Technicolor UI) and it doesn't allow you to use VLANs like you want to.

You could probably set up some routing stuff on a raspberry pi though, and use a switch.

Or if needed put your modem into bridge mode, and acquire a router that supports VLANs, I don't know of any cheap consumer ones, but I'm in the process of switching to OPNsense with an old computer. Unrelated, but in my experience technicolor has severe bufferbloat anyway.

[–] SteveTech@programming.dev 1 points 1 year ago

I just read some more of your comments and thought I might properly explain VLANs:

VLANs let you create a whole virtual network within your physical network, there can be upto 4096 of them that can be tagged and 1 untagged per port, the VLAN ID defines which one to use.

A tagged VLAN is often used between routers and switches, so the connected device can pick which VLAN to use, but an untagged VLAN dedicates that port to that VLAN making it appear to the connected device as if it's the physical network.

Since it's a whole new network you need some sort of router to route between them.

As a rough example you could have something like: Router --2T--> Switch --2U--> TV, where the T is for tagged and U for untagged. Or replace Router with Pi if you use that, the Pi will access the internet with the (technically untagged) physical network, and route between tagged VLAN 2, meaning you can do everything on the Pi with 1 ethernet port.

Disclaimer: Most of this was learnt from experience so it might not be completely correct.

[–] grahamsz@kbin.social 1 points 1 year ago

Yeah that makes sense. I can't see why there would be a vlan enabled on your local network right now as it would make lots of things not work