Site with 3 VLAN's and multiple switches
I have a site which already runs 5 Omada access points and a controller, but switching is done on Netgear and firewalling /routing with Sophs XG.
The goal is to consolidate on 1 platform, and I think Omada would be a great solution.Altough I still have some questions...
The site internet connection is 1GBps, so this should be supported with IDS enabled.
There is a main VLAN, a guest VLAN and an IoT VLAN :
- The guest VLAN is isolated and has internet access.
- From the main VLAN, there is internet access and some protocols should be opened towards the IoT VLAN.
- From the IoT VLAN some protocols need to be opened to the main VLAN and to the internet.
- mDNS should be possible between main and IoT VLAN
- DNS server is running on main VLAN (so should be accessible from IoT as well)
Logically there are switches on 3 locations, interconnected by 802.1Q trunks.
My question is: is this fine-grained statefull firewalling supported and if yes on which platforms taken the bandwidth in consideration ?
I've seen a lot of articles, but it stays very unclear on the classif statefull firewalling as there are different ACL types ?
Are all switches supported in this setup ?