Network Switches Explained: Managed vs Unmanaged

Network switches are the unsung workhorses of every business network. They sit quietly in server rooms and comms cupboards, directing traffic between devices, and most people never think about them — until something goes wrong. Yet the type of switch you choose has a profound impact on your network's performance, security, and manageability.

The fundamental choice when purchasing network switches is between managed and unmanaged models. At first glance, the decision seems straightforward: unmanaged switches are cheaper and simpler, while managed switches offer more features and control. But the reality is more nuanced than that, and choosing the wrong type can leave your business either overpaying for features you do not need or — more dangerously — running a network that lacks the controls necessary to keep it secure and performing well.

This guide explains how network switches work, the differences between managed and unmanaged models, and how to determine which type is right for your business.

What Does a Network Switch Actually Do?

A network switch is a device that connects multiple devices on a local area network (LAN) and directs data between them. When your computer sends data to the office printer, it does not broadcast that data to every device on the network — the switch reads the destination address in the data packet and forwards it only to the correct port where the printer is connected. This is what makes switches more efficient than older networking technologies like hubs, which simply broadcast everything everywhere.

Every modern business network relies on switches. They connect computers, printers, phones, wireless access points, servers, and other devices. Even if your business is primarily cloud-based, your local network still depends on switches to connect devices to the internet and to each other.

Switches operate primarily at Layer 2 (the data link layer) of the OSI model, using MAC addresses to forward frames to the correct destination. Some advanced managed switches also operate at Layer 3 (the network layer), adding routing capabilities that allow them to direct traffic between different network segments — known as VLANs — without needing a separate router.

Unmanaged Switches: Simplicity at a Cost

An unmanaged switch is a plug-and-play device. You take it out of the box, connect the power cable, plug in your network cables, and it works. There is no configuration interface, no management software, no settings to adjust. It simply forwards traffic between connected devices automatically.

This simplicity is the primary advantage of unmanaged switches. They require no technical knowledge to deploy, no ongoing management, and no specialist skills. For very small networks — a handful of devices in a home office or a small retail shop — this simplicity is genuinely appealing.

However, simplicity comes at the cost of control. An unmanaged switch treats all traffic equally. It cannot prioritise voice traffic over file downloads, cannot segment the network into separate zones for security, cannot monitor traffic patterns for anomalies, and cannot be remotely managed or updated. If something goes wrong — a broadcast storm, a rogue device, a network loop — you have no visibility into the problem and no tools to diagnose or fix it beyond physically unplugging cables until you find the culprit.

Managed Switches: Control and Visibility

A managed switch provides a web interface, command line, or cloud management portal that allows you to configure, monitor, and control every aspect of the switch's behaviour. This includes VLAN configuration, quality of service (QoS) settings, port mirroring, access control lists, SNMP monitoring, firmware updates, and much more.

Key Features of Managed Switches

VLANs (Virtual Local Area Networks): VLANs allow you to segment your physical network into multiple logical networks. For example, you might place your office computers on one VLAN, your guest Wi-Fi on another, your VoIP phones on a third, and your CCTV cameras on a fourth. Each VLAN is isolated from the others, improving both security and performance. This is particularly important for Cyber Essentials certification, which requires network segmentation as a core control.

Quality of Service (QoS): QoS allows you to prioritise certain types of traffic over others. The most common use case is prioritising voice and video traffic to ensure clear, uninterrupted calls even when the network is busy with file transfers or software updates. Without QoS, a large file download can cause voice calls to break up and video meetings to freeze.

Port Security: Managed switches allow you to control which devices can connect to each port. You can lock a port to a specific MAC address, limit the number of devices per port, or disable unused ports entirely. This prevents unauthorised devices — such as a rogue wireless access point or an attacker's device — from connecting to your network.

SNMP Monitoring: Simple Network Management Protocol (SNMP) allows your managed switches to be monitored by network management tools. This gives you real-time visibility into traffic volumes, error rates, port utilisation, and device health — enabling you to identify and resolve problems before they impact users.

Link Aggregation: Managed switches support link aggregation (also known as port bonding or EtherChannel), which combines multiple physical connections into a single logical connection with higher bandwidth and redundancy. This is commonly used for connections between switches or between a switch and a server.

Smart Managed Switches: The Middle Ground

Between fully unmanaged and fully managed switches sits a category often called "smart managed" or "easy managed" switches. These devices offer a subset of managed switch features — typically VLANs, basic QoS, port mirroring, and a web management interface — at a price point closer to unmanaged switches.

Smart managed switches are a reasonable choice for small businesses that need basic network segmentation and traffic prioritisation but do not require the full feature set of an enterprise-grade managed switch. However, they typically lack advanced security features, comprehensive SNMP support, and the depth of configuration options available on fully managed models.

Feature	Unmanaged	Smart Managed	Fully Managed
Typical price (24-port GbE)	£60 - £120	£150 - £280	£300 - £800+
VLANs	No	Basic (up to 32-64)	Full (up to 4096)
QoS	No	Basic (4 queues)	Advanced (8 queues, DSCP)
Port security	No	Basic MAC filtering	802.1X, RADIUS, MAC auth
SNMP monitoring	No	SNMPv1/v2c	SNMPv3 with encryption
Stacking	No	No	Yes (vendor dependent)
Layer 3 routing	No	No	Available on L3 models
Configuration complexity	None	Low	Medium to high

Power over Ethernet (PoE): An Important Consideration

Regardless of whether you choose managed or unmanaged, you should consider whether you need Power over Ethernet (PoE) capability. PoE switches deliver electrical power over the same Ethernet cable that carries data, eliminating the need for separate power supplies for connected devices.

PoE is essential for powering wireless access points, VoIP phones, IP security cameras, and some IoT devices. Without PoE, each of these devices needs its own power socket and power adapter — adding cost, complexity, and cable clutter.

PoE switches are available in both managed and unmanaged variants. The key specification to check is the total PoE power budget — the total wattage the switch can deliver across all its ports simultaneously. A wireless access point typically draws 15 to 25 watts, a VoIP phone around 7 to 13 watts, and a PTZ security camera up to 30 watts. Ensure your switch's total PoE budget can accommodate all the devices you plan to connect.

Which Switch Type Does Your Business Need?

The right choice depends on the size and complexity of your network, your security and compliance requirements, and your budget. Here are some general guidelines.

Choose unmanaged switches if: You have a very small network (fewer than 10 devices), you have no compliance requirements, you do not use VoIP or video conferencing heavily, you have no need for network segmentation, and you have no in-house or outsourced IT support to manage the switches.

Choose smart managed switches if: You have a small to medium network (10 to 50 devices), you need basic VLANs to separate guest Wi-Fi or VoIP traffic, you want some visibility into network performance, you have limited IT expertise available, and your budget is constrained but you need more than plug-and-play.

Choose fully managed switches if: You have a medium to large network (50 or more devices), you need to comply with Cyber Essentials or other security frameworks, you use VoIP and need reliable call quality, you need detailed network monitoring and diagnostics, you have in-house IT staff or a managed service provider, and you require features like 802.1X authentication, advanced QoS, or Layer 3 routing.

Recommended Switch Brands for UK Businesses

Several manufacturers produce reliable, well-supported network switches suitable for UK businesses. The most commonly deployed include Cisco, HPE Aruba, Juniper Networks, Ubiquiti, and Netgear.

Cisco: The market leader in enterprise networking, offering the widest range of managed switches from small business models (Cisco Business series) to enterprise-grade campus switches (Catalyst series). Cisco switches are robust and feature-rich but tend to be the most expensive option and require the most expertise to configure.

HPE Aruba: A strong alternative to Cisco, offering excellent managed switches with a reputation for reliability and good UK support. The Aruba Instant On range is particularly well-suited to SMEs, offering cloud-managed switches with an intuitive interface.

Ubiquiti: Popular among smaller businesses and IT service providers for its combination of managed switch features and competitive pricing. The UniFi range integrates switches, wireless access points, and gateways into a single management platform. However, Ubiquiti's support and documentation are less comprehensive than the enterprise vendors.

Installation and Ongoing Management

Once you have selected the right switches, proper installation and ongoing management are essential to get the best from your investment. Managed switches should be configured before deployment, with VLANs, QoS policies, port security, and monitoring all set up according to your network design. Firmware should be updated to the latest stable version, default passwords must be changed, and unused ports should be disabled.

Ongoing management includes regular firmware updates (at least quarterly), monitoring for unusual traffic patterns or errors, reviewing port utilisation to plan capacity, and periodically auditing VLAN and security configurations. If you use a managed IT service provider, switch management should be included in your support agreement.