Segment based on usage, a decent switch kan handle around 4k VLAN.
users (Ethernet)
users (wlan)
iot
cameras
servers
storage
media devices
phones
printers
guests
If you can enable client isolation on WiFi, port protection/isolation on Ethernet and start using 802.1x for network auth… then you are off to a pretty decent start in case of a vendor bug, misconfiguration or some curious individual
Segment based on usage, a decent switch kan handle around 4k VLAN.
If you can enable client isolation on WiFi, port protection/isolation on Ethernet and start using 802.1x for network auth… then you are off to a pretty decent start in case of a vendor bug, misconfiguration or some curious individual