Care to back that with something that doesn't smell like your down syndrome ass? Most consumer switching hardware can barely handle a gigabit of throughput, and now you're saying that a router-on-a-stick arrangement + passing half the frames to the processor for tagging is going to have no performance impact? Try the fuck again.
Yeah you fucking do, unless you plan on either trusting the untrusted devices to do their own vlans (or even support vlans for that matter), so you're stuck tagging everything to in one of the 2 nets to the appropriate VLAN. This is supposed to be a secure network setup, not a kafkaesque autism simulator. What I said was not that it's impossible to do this with VLANs, but that it's needlessly complicated to do so, and here you are proving me right.
I almost had to take your post seriously, but then I saw that you recycled a reaction image. Better luck next time kiddo.
>
Jaxon Bailey
What century are you from? You can max out gigE on 4 year old netgear or dlink unmanaged switches. 5 year old asus and linksys routers can do the tagging just fine with plenty of room to do actual routing. You shit talking software tagging reeks of "industry" retards attempting to shut down software raid.
Correct. Just a few lines later: >Yeah you fucking do tag all frames on wire to use vlans More self contradiction.
No you don't. Search: VLAN access port Search: VLAN trunk port You only tag trunks. You put a switch on your access port, or add in more access ports. Furthermore, if you do what suggested, you don't have to tag anything on wire.
Ok, since you clearly don't understand how VLANs/switching/routing/english works, here's a breakdown of what you're proposing: (assumption is that this is all consumer hardware)
A frame comes in on the access port from one of the isolated segments, and is destined for the router (this is probably 90% of traffic) It needs a VLAN tag added so it can go out the trunk to the router, so it makes one trip through the switch to go to the management plane, gets a tag added It then goes through the switch again to go from the management plane to the trunk port and is sent to the router So it has to make twice as many trips through the switching hardware. Additionally, if the internet connection comes into the switch in question, it has to make 2 more trips through the switch to get the VLAN tag removed
Yes, that's what a gigabit of throughput means. The problems start when you have 2 or more streams trying to use that gigabit of throughput, you're not going to get a gigabit on each port. Hell, mid-range commercial switches will only have ~5Gb/s of throughput for a 12 port gigabit switch. Or less if you're enough of a sucker to buy HP So once you get the amplification effect of having to pass frames to the management plane and/or making a round trip out to the router, you start to eat up the throughput rather quickly.
