VLAN Schema

Network & VLAN Schema

This is the master plan for the network segments. It defines the IP addresses, VLAN IDs, and security policies for each virtual network.

VLAN 10
HOME_NET

192.168.10.0/24
Subnet

For trusted personal devices. Full internet access and limited, policy-based access to specific K3S services.

Trusted

VLAN 20
K3S_CLUSTER

192.168.20.0/24
Subnet

No direct internet access by default. Strictly isolated. Inbound access is only allowed from the HOME_NET or Internet via specific firewall rules.

Isolated

VLAN 88
MGMT_NET

192.168.88.0/24
Subnet

For network device management interfaces only. Highly restricted access, no general internet.

Management

VLAN 99
GUEST_WIFI

192.168.99.0/24
Subnet

For untrusted guest devices. Internet access only. Client isolation is enabled.

Guest