Please forgive my ignorance, but I don't even know if I'm using the right equipment to do what I want to do with my home network.
I have an Archer C5400X router and I'm trying to isolate/segment my network so that my wireless PCs and wired NAS are separated from all other wired and wireless devices.
I moved the wireless gear to my guest network and disabled their LAN and peer access, so that was easy.
Next I wanted to separate the wired devices, so after some research, I bought the T2500G-10TS with the idea of using VLANs and Port Isolation.
The Port Isolation works well, but those wired devices can still see the wireless PCs on my router. Following an old article from SmallNetBuilder, I created a VLAN (2) for all ports using "General" / Untagged and moved them their. Then I created a seperate General/Untagged VLAN (3) for the devices, but when I assign the VLAN PVID (3) to their ports (1-6), they are completely cut off from the Internet.
I've tried the DHCP relay, disabling the Port Isolation, using the IPTV VLAN routing in the Archer C5400X and many other things, but nothing works. I'm either missing something entirely, or this gear can't do what I want it to do.
Also, is there any reason why a brand-new switch purchased from Amazon in the US would be V1 with such old firmware?
Thank you in advance for your help,