I set up the Mikrotik hEX (RB750Gr3) from my lab as a "switch" in the living room, to get stuff connected over Ethernet.

it kinda sucks because RouterOS seemingly doesn't let me hardware offload VLANs on it, so performance is only a few hundred Mbit. But it's fine enough, about 10% CPU load on it when playing a typical anime episode from my NAS on the Vero 4K

@thor@pl.thj.no I mean I'm just using it as a switch. So Ether1 is an uplink with all VLANs trunked and Ether2-5 are access ports with a single VLAN untagged I kinda doubt the CPU will be a bottleneck particularly often anyways

@thor@pl.thj.no It can. Mikrotik just haven't implemented it in software. In fact the EdgeRouter-X has the exact same switch chip and CAN do it.

@thor@pl.thj.no Basically the hardware should be capable of it, RouterOS is not.

@thor@pl.thj.no @quad@weeaboo.space me with the unmanaged switch connected to an asusWRT router: :blobcatgooglyshrug:

@thor@pl.thj.no @Jessica@fedi.absturztau.be Personally I have a management VLAN where all network devices have their IPs, a client network where the clients are of course, a server network for the physical servers and their management IPs, and a vm vlan for all virtual machines. Plus a guest network of course. So if you manage to breach into Pleroma's server for instance, you shouldn't be able to reach anything except other VMs, none of my raspberry pis, clients, or network equipment, at least not directly

@thor@pl.thj.no @Jessica@fedi.absturztau.be That's what I do. You can SSH to the router only on the client or management network. From there you can SSH to other devices. or in the case of Mikrotik, connect to the router with RoMON, then manage all the Mikrotik devices on the management VLAN

@thor@pl.thj.no @Jessica@fedi.absturztau.be Unfortunately most things are going this route, with brands like Cisco Meraki. I have a feeling that part of the reason was UniFi being disruptive since the controller was free and could be hosted on anything, while not charging licensing costs. Other brands like Cisco still don't want to give away their controller for free, so instead they started started doing cloud management, to get rid of the up-front cost and make it easier, but still charge people to run their devices.

@thor@pl.thj.no @Jessica@fedi.absturztau.be 2000s techie: My goal is to connect everything to the internet 2020s techie: My goal is to disconnect everything from the internet

@quad@weeaboo.space @thor@pl.thj.no @Jessica@fedi.absturztau.be LOL, so true. I've been slowly moving more stuff in house.

@thor@pl.thj.no @Jessica@fedi.absturztau.be @quad@weeaboo.space My goal of ditching Google is so close yet so far.

@quad@weeaboo.space @Jessica@fedi.absturztau.be @thor@pl.thj.no I just need to find time and energy to make that jump. I have already moved away from Gmail, which is a start.