I'm new to edgemax and while I expected a learning curve I'm disappointed how little I've been able to do with this gear.
What I want to acheive is two partitioned networks using dual-stack IPV4 & IPV6.
1) trusted machines that can see each other (mix of wired and wifi). One of the trusted machines is a linux box that serves some web and ssh traffic (mostly for myself while I'm out of the house). I'm pretty sure I can sort out the port forwarding if the rest is working.
2) Internet of Things (IoT), untrusted machines, and guest wifi (mix of wired and wifi) that get internet access but can't see the trusted network. Note: I don't really care if they can see each other or not but there should still be a firewall between them and the big bad net.
Question 1: I think the answer is to have tagged VLAN for both wired and wifi to separate the two domains but perhaps I just need separate subnets? I think the wifi requirement means that subnets would be insufficient but I'm not sure.
Since I've had to reset and start over again so many times I like the idea of using eth0 on the edgerouter X as part of the trusted network (instead of the WAN) but I'm not married to the idea since theoretically once I get it working I won't have to f#$% with it.
What I've managed so far is to setup two wired networks that can ping each other but otherwise are blocked.
Question 2: do I need to assign IP addresses to each eth* interface on the switch?
Question 3: are the interfaces in the config below setup in a way that will allow me to reach my goals?
Question 4: what is the relationship between PVID and VID? (see attached image)
Question 5: how do I get from the attached config to something that meets the goals above?
thanks so much for any help!