Jay SchwitzgebelJan 14, 2024
Can someone check me? I have a #TP-Link #wifi router I use as a 2nd network to keep my #IoT separate from my primary network and devices. New firmware includes an IoT network but the docs say it’s NOT isolated from its main network. Isn’t this a terrible idea? WTH! #security #infosecurity #infosec
Show threadJay Schwitzgebel
I think the intent sounds like it allows you to specify different configs and protocols for dumber IoT devices than for smarter devices in the primary network. But the fact that they can all talk to each other seems to irresponsibly ignore the security risks and encourage the average consumer to think they’ve increased security when they have not. What am I missing?
Jan 14, 2024 at 4:37amWeb
Show threadjust_one_bearJan 14, 2024
@jayschwitz Convenience. Having a AP for IoT devices that is apart from the "main' AP lets a user be able to mess with the main (fiddle with QOS, turn it off for as a parental control, change the passphrase, whatever) and *not* have to mess with the IoT devices connected to an AP with a non-wobbled SSID and passphrase (because the UI for so much IoT is awful). AP Isolation will also break apps that want to do local control. Not excuses, just reasons.