should i use a managed switch with opnsense to separate a security system and the public network?
Yes, using a managed switch with OPNsense to separate a security system and the public network is a good security practice.
A managed switch allows for the creation of virtual local area networks (VLANs), which enables the separation of network traffic into different logical segments. By creating a separate VLAN for the security system, you can isolate it from the public network and reduce the risk of unauthorized access or attacks.
OPNsense is a powerful open-source firewall and router platform that can be used to configure and manage VLANs. By combining OPNsense with a managed switch, you can create a more secure network infrastructure that can protect your security system and sensitive data from potential threats.
Overall, using a managed switch with OPNsense to separate a security system and the public network is a smart security decision that can help protect your network and sensitive data.
why not just use an unmanaged switch with the opnsense vlans?
While it is technically possible to use an unmanaged switch with OPNsense VLANs, it is not recommended for several reasons.
Firstly, unmanaged switches do not support VLAN tagging, which means that they cannot distinguish between different VLANs. This makes it difficult to separate network traffic and ensure that sensitive data is not accessible to unauthorized users.
Secondly, unmanaged switches do not have any management interface, which means that they cannot be configured or monitored. This makes it challenging to troubleshoot network issues and make changes to the network configuration.
Lastly, unmanaged switches do not offer any security features, such as access control lists (ACLs) or port security, which can help protect the network from unauthorized access or attacks.
Using an unmanaged switch with OPNsense VLANs may save you money in the short term, but it can compromise the security and performance of your network in the long term. It is recommended to use a managed switch with VLAN support to ensure a secure and well-managed network.