Redoing Home Network
-
@scottalanmiller said in Redoing Home Network:
@jmoore said in Redoing Home Network:
@Pete-S I think my plan is similar, if not the same. 1 poe switch in each office and 1 in each bedroom. That makes 4 switches. I only need 1 ap for my size house. I plan on adding IP phones in each office and bedroom. I don't want them to have cell phones yet. The main difference in my plan is that I'm not doing vlans off my main switch, I plan on different subnets like Eddie mentioned. I want all the switches to have poe because I'm adding IP phones eventually. I have tried to plan for everything but I'm sure there's something I forgot.
Multiple subnets in your home?
I've got 5 different subnets at home right now. It'll be 4 when I get my home lab rebuilt.
-
Home lab (being removed once rebuild happens)
-
Work wired
-
Work wireless
-
IoT junk
-
Main/everything else
The work networks are also on their own VLAN. I could probably combine the two work networks at this point, but whatever.
Overkill for home, oh yeah. For working from home as an IT Pro, it's just baseline
-
-
Multiple subnets in your home?
I have 3 subnets at home. Main, IoT, and guest.
I need to upgrade to the ER4. My ERLite has been great so far though. My ISP connection is 120/5. -
@scottalanmiller said in Redoing Home Network:
@jmoore said in Redoing Home Network:
@Pete-S I think my plan is similar, if not the same. 1 poe switch in each office and 1 in each bedroom. That makes 4 switches. I only need 1 ap for my size house. I plan on adding IP phones in each office and bedroom. I don't want them to have cell phones yet. The main difference in my plan is that I'm not doing vlans off my main switch, I plan on different subnets like Eddie mentioned. I want all the switches to have poe because I'm adding IP phones eventually. I have tried to plan for everything but I'm sure there's something I forgot.
Multiple subnets in your home?
Yeah I'd like to segregate government traffic from wife, gaming traffic from kids, from my own stuff. Since the router has multiple ports I think it will be easier to just use different subnets( 1 on each router port). Vlans might be easier but I also want to do it like this for the challenge. Im sure I can figure it out if it isnt dead simple anyway. After looking at the router I will know more. Now if I'm doing something completely stupid just say so.
-
@jmoore said in Redoing Home Network:
@Dashrender said in Redoing Home Network:
@jmoore said in Redoing Home Network:
@Dashrender said in Redoing Home Network:
Unifi APs are the only Ubiquiti option, so not any choices to really make there.
Unifi has newer firewalls in that line that have a new OS, haven't seen it yet to know if it's better than what's on the USG (which mostly just sucks).
The USG should be able to handle 1 Gb as long as you aren't doing any filtering/QOSing, if yes, then you'll need more processing power.
Part of the issue is that I cant tell whats newer or older on their product page. I looked at specs and picked best cpu/memory option that has poe and thats what looks like the best. I could be way off. Never ordered from them before.
yeah, I heard ya, but in general that part doesn't really matter, as you've already done, it's more about getting the cpu needed for your end goal.
Well Im sure i dont need all that but I like toys to play with and I look at it as future proofing lol.
Planning on:
Edgerouter 6p
Edgeswitch 8
Unifi Ap ProDoes that seem like a solid combo? any reason I shouldn't?
Are you sure that the AP isn't EOL? https://community.ui.com/questions/Announcement-EOL-for-some-UniFi-AP-models/65487283-ce9d-49f4-85b9-b6aa54659ef7
You're going to want a ubuntu server to control and program the single AP (a single point of failure, btw) which is a waste. You're ordering one AP with the rest of the network unmatched. Like buying 1 monster wheel and three regular tires for your Honda Accord. Either get an AP that matches the rest of the system, or get the rest of the Ubiquiti equipment. It's designed to work together. You're literally building a broken network. You'll need this tool for that section of equipment and another tool for another section, and you'll have to use an inline PoE because you opted for complex networking and you'll be using more electricity per year.
The Ubiquiti USG can handle 1gig connections without a problem. I have mine going to a 100mbit connection, but it can scale up if I pay my ISP. The integration was not effortless due to some quirks from the ISP. Rock solid now, though, and I get the benefit on the dashboard and other software defined options. It is also worth noting that the older AP, an AP-LR, requires a 24v PoE, and this is defined in my switch by the dashboard software.
-
@Grey said in Redoing Home Network:
Are you sure that the AP isn't EOL? https://community.ui.com/questions/Announcement-EOL-for-some-UniFi-AP-models/65487283-ce9d-49f4-85b9-b6aa54659ef7
My model isn't on that list.
-
@brandon220 said in Redoing Home Network:
Multiple subnets in your home?
I have 3 subnets at home. Main, IoT, and guest.
I need to upgrade to the ER4. My ERLite has been great so far though. My ISP connection is 120/5.I am thinking of doing something similar to your setup. ER-X, UAP-AC-Lite, with cloud key and Netgear 8 port POE switch.
Was thinking about 3 VLANS, as I want to separate work laptops from the girls/Roku's, and camera's (coming soon). Plus I will be adding a 2nd AC Lite to the other side of the house. Not a big house but with an aluminum awning and other obstacles, connection speed drops in half in only 30'.
-
@pmoncho said in Redoing Home Network:
@brandon220 said in Redoing Home Network:
Multiple subnets in your home?
I have 3 subnets at home. Main, IoT, and guest.
I need to upgrade to the ER4. My ERLite has been great so far though. My ISP connection is 120/5.I am thinking of doing something similar to your setup. ER-X, UAP-AC-Lite, with cloud key and Netgear 8 port POE switch.
Was thinking about 3 VLANS, as I want to separate work laptops from the girls/Roku's, and camera's (coming soon). Plus I will be adding a 2nd AC Lite to the other side of the house. Not a big house but with an aluminum awning and other obstacles, connection speed drops in half in only 30'.
Yeah I'm thinking the same. The boys are constantly gaming since they are stuck from home so I want to separate that traffic. Wife's traffic is not required to be separate but I want to anyway. If they changed their mind in future it would be a lot more of a headache to redo everything.
-
@Grey said in Redoing Home Network:
You're literally building a broken network.
Sorry guess I don't understand how I'm building a broken network. Can you explain?
-
@jmoore said in Redoing Home Network:
@pmoncho said in Redoing Home Network:
@brandon220 said in Redoing Home Network:
Multiple subnets in your home?
I have 3 subnets at home. Main, IoT, and guest.
I need to upgrade to the ER4. My ERLite has been great so far though. My ISP connection is 120/5.I am thinking of doing something similar to your setup. ER-X, UAP-AC-Lite, with cloud key and Netgear 8 port POE switch.
Was thinking about 3 VLANS, as I want to separate work laptops from the girls/Roku's, and camera's (coming soon). Plus I will be adding a 2nd AC Lite to the other side of the house. Not a big house but with an aluminum awning and other obstacles, connection speed drops in half in only 30'.
Yeah I'm thinking the same. The boys are constantly gaming since they are stuck from home so I want to separate that traffic. Wife's traffic is not required to be separate but I want to anyway. If they changed their mind in future it would be a lot more of a headache to redo everything.
You can have different networks if you want to do that, but it's very inflexible to separate it by doing one LAN per room. If you use VLANs you can decide what device (or port) belongs to what network. That's why everyone does it like that.
If you have for instance a NAS or server with VMs it will belong to the LAN in whatever room you have it, and not where it belongs logically. And all traffic that comes into it will have to be routed over the firewall.
And that's why the firewall should be connected to a core switch in your kind of network - if you want to build a flexible network.
-
@jmoore said in Redoing Home Network:
@scottalanmiller said in Redoing Home Network:
@jmoore said in Redoing Home Network:
@Pete-S I think my plan is similar, if not the same. 1 poe switch in each office and 1 in each bedroom. That makes 4 switches. I only need 1 ap for my size house. I plan on adding IP phones in each office and bedroom. I don't want them to have cell phones yet. The main difference in my plan is that I'm not doing vlans off my main switch, I plan on different subnets like Eddie mentioned. I want all the switches to have poe because I'm adding IP phones eventually. I have tried to plan for everything but I'm sure there's something I forgot.
Multiple subnets in your home?
Yeah I'd like to segregate government traffic from wife, gaming traffic from kids, from my own stuff. Since the router has multiple ports I think it will be easier to just use different subnets( 1 on each router port). Vlans might be easier but I also want to do it like this for the challenge. Im sure I can figure it out if it isnt dead simple anyway. After looking at the router I will know more. Now if I'm doing something completely stupid just say so.
The "challenge" is VLANs. What you are doing is LANs. LANs are crazy simple. VLANs are LANs but with added management.
Example....
Deploy a Windows 2019 server on physical hardware.
Or... Deploy Hyper-V, then deploy a Windows 2019 VM on top of that.
If this was a systems lab, you'd say step 2 is better because it "does more" and makes you learn more things and is more how a business would do it. Same with your network. What you are doing is old fashioned physical LANs circa 1998. VLANs are literally the virtualization of that concept so that it is more flexible.
So your logic, that you want challenge and to learn, you'd specifically do the VLAN approach.
There are good reasons to still use the physical LAN approach, but that's all about performance and in your case, doesn't do that so doesn't apply.
However, your base logic of segregating traffic doesn't make sense, since it all mingles before leaving the house, anyway. What problem does it solve? Nothing. It just makes a simple network very complex.
-
@jmoore said in Redoing Home Network:
Yeah I'm thinking the same. The boys are constantly gaming since they are stuck from home so I want to separate that traffic.
But why? What do you perceive as value in separating the traffic? "Separating traffic" on its own is a negative. Unless there is a specific need, it's something that by saying it, should make you want to avoid it.
-
@Pete-S said in Redoing Home Network:
@jmoore said in Redoing Home Network:
@pmoncho said in Redoing Home Network:
@brandon220 said in Redoing Home Network:
Multiple subnets in your home?
I have 3 subnets at home. Main, IoT, and guest.
I need to upgrade to the ER4. My ERLite has been great so far though. My ISP connection is 120/5.I am thinking of doing something similar to your setup. ER-X, UAP-AC-Lite, with cloud key and Netgear 8 port POE switch.
Was thinking about 3 VLANS, as I want to separate work laptops from the girls/Roku's, and camera's (coming soon). Plus I will be adding a 2nd AC Lite to the other side of the house. Not a big house but with an aluminum awning and other obstacles, connection speed drops in half in only 30'.
Yeah I'm thinking the same. The boys are constantly gaming since they are stuck from home so I want to separate that traffic. Wife's traffic is not required to be separate but I want to anyway. If they changed their mind in future it would be a lot more of a headache to redo everything.
You can have different networks if you want to do that, but it's very inflexible to separate it by doing one LAN per room. If you use VLANs you can decide what device (or port) belongs to what network. That's why everyone does it like that.
If you have for instance a NAS or server with VMs it will belong to the LAN in whatever room you have it, and not where it belongs logically. And all traffic that comes into it will have to be routed over the firewall.
And that's why the firewall should be connected to a core switch in your kind of network - if you want to build a flexible network.
I get what your saying and thanks for the comment. I understand vlans and have done them. I have not set up a network using subnetting like this before and wanted to try for a learning experience. I do agree it is less flexible but its my home and very little will ever change. Also, my firewall will be connected to my main switch.
-
@jmoore said in Redoing Home Network:
@Grey said in Redoing Home Network:
You're literally building a broken network.
Sorry guess I don't understand how I'm building a broken network. Can you explain?
I did.
-
@scottalanmiller said in Redoing Home Network:
If this was a systems lab, you'd say step 2 is better because it "does more" and makes you learn more things and is more how a business would do it. Same with your network. What you are doing is old fashioned physical LANs circa 1998. VLANs are literally the virtualization of that concept so that it is more flexible.
I have setup a vlan before, just not at home. I have never used subnetting like this to create different networks, so thought it would be worthwhile to do.
-
@scottalanmiller said in Redoing Home Network:
However, your base logic of segregating traffic doesn't make sense, since it all mingles before leaving the house, anyway. What problem does it solve? Nothing. It just makes a simple network very complex.
If I have wife's switch connected to a different port on the router than my switch is connected to, and these are different lans at this point, wouldn't that segregate her traffic from mine?
-
@scottalanmiller said in Redoing Home Network:
But why? What do you perceive as value in separating the traffic? "Separating traffic" on its own is a negative. Unless there is a specific need, it's something that by saying it, should make you want to avoid it.
The boys are always doing heavy gaming. I don't want that to impact anything that I am working on. It possible wouldn't anyway but I wanted to eliminate the chance of it happening. Plus, again, learning experience, as businesses would likely do this either by subnetting or using vlans. Is this a worthless exercise?
-
@jmoore said in Redoing Home Network:
The boys are always doing heavy gaming. I don't want that to impact anything that I am working on.
That's totally unrelated to what we are discussing, though. 1) Gaming has no network impact, it doesn't use much bandwidth and 2) any impact it has, it has regardless of this bizarre segmentation as that doesn't change anything and 3) where you actually lose performance is all the routing overhead, but even that is tiny.
-
@jmoore said in Redoing Home Network:
I have not set up a network using subnetting like this before and wanted to try for a learning experience.
Doing a VLAN does all this, and more. There can't be anything new here compared to a VLAN. This is the "simplest possible scenario", all VLANs are built on this as the lowest common denominator of "LANing".
-
@jmoore said in Redoing Home Network:
I have not set up a network using subnetting
This isn't subneting, either. This is routing. This is "Making multiple LANs without virtualization." The same thing as VLANing, without the V.
Subnetting is something different, that doesn't involve routing at all. So very different than what you are trying to do.
But to be clear, none of these techniques in any way meet your performance goals.
-
@jmoore said in Redoing Home Network:
Also, my firewall will be connected to my main switch.
If you do that, and don't VLAN, this all falls apart and it won't work.
