I recently bumped into the excellent DSA tutorial in Openwrt's documentation here: https://openwrt.org/docs/guide-user/network/dsa/dsa-mini-tutorial
I have been using DSA for a while now with no issues whatsoever, and I am using two different subnets:
- One trusted zone for my known secure devices
- One untrusted zone for IOT devices, TVs, and a server. Devices within that network cannot communicate with each other, and cannot connect to devices in the trusted zone either. They can ONLY connect to the internet.
I have it setup as per the "Multiple bridged networks" configuration (one bridge for each zone), but from what I understand I can set it up via the "Multiple networks using VLANs" configuration as well. Now my question is: What are the differences? In terms of functionality, performance or anything I might be forgetting?
I know it's a bit of a strange question, since everything works just fine in its current configuration. But I am always interested in learning more. So if multiple solutions can be used, I am very much interested to see exactly what the differences are. Thank you very much in advance