Hello - I have 4 VLANs setup on my network (OpenWrt 24.10.0) as follows:
Lan VLAN (this contains my more privileged devices)
Guest VLAN (Guest WIFI network)
IoT VLAN (IoT devices)
Work VLAN (Work devices)
The main purpose of the multiple VLANs is to try to keep the different types of devices/users as isolated as possible for security reasons (I do allow traffic from the LAN firewall zone to forward to the IoT zone for practical reasons for managing IoT devices).
I´ve recently implemented NetAlertX on a Raspberry Pi docker container to allow me to keep track of devices on my network and this sits in the LAN VLAN.
In order to allow determination of devices which are online, I was thinking of setting up a firewall traffic rule to allow the forwarding of ICMP traffic from my LAN VLAN to my GUEST and WORK VLANs. However I´m wondering how much of a security concern allowing ICMP traffic (in one direction from LAN to Guest Vlans and LAN to WORK Vlans) is?
Thanks