alt Hacker NewsI had the 24 port version of these. They're fine for 'cooperative vlans' where you trust everything (enough), but want a little separation. But they're not sufficient if you don't trust the devices. You can't restrict management to specific vlans and iirc, there was a least one auth bypass.
At least for the version I had. I replaced it with some used smb stuff with a few 10g ports, cause unnecessary 10g is more fun.
>You can't restrict management to specific vlans
This bit me as well, FYI Zyxel switches seem to be among the few that do this properly, even on cheapest models. On the other hand their web interface cannot be used over SSH or other tunnels... The software side of network equipment is in a sad state, no wonder the hyperscalers moved to whitebox switches