Darren

Budget (including currency): $4500 NZD Country: New Zealand Games, programs or workloads that it will be used for: AAA title gaming, occiasional virtualisation, would love to play the new MS Flight Simulator well Other details (existing parts lists, whether any peripherals are needed, what you're upgrading from, when you're going to buy, what resolution and refresh rate you want to play at, etc): I'm starting from scratch as I'm writing this from a PC built a decade ago and it seems to crash and reboot increasingly often. It's done this twice tonight and failed to boot one of these times. pbtech.co.nz / computerlounge.co.nz are my preferred retailers, particulrly the prior as its down the road from me. I cobbled together a rough list of items that I'd happily buy https://nz.pcpartpicker.com/list/dJm3TJ Component availability is really good in NZ for some reason, a couple local retailers seem to have 30+ of the EVGA GeForce RTX 3080 XC3 Ultra for example, so the world is my oyster, I'm sorry Basically my requirements are mainly 1. Have something that can pick up any title and max out the settings at 1440p ultrawide at 144hz, bonus points for 4k. 2. That case is preferred, but I'll take anything reasonably quiet, good airflow, USB-C on it 3. Quiet > RGB 4. Quite happy to spend on a 3080 The list https://nz.pcpartpicker.com/list/dJm3TJ I would love any recommendations, particularly for the cooler. I have an OG H100 from a long time ago that still works so I'm not put off by any concerns around AIOs but after watching a Linus video on AIO vs Air, I'd happy pick up a black Noctua kit, though PC Part Picker did hint at a compatibility issue. A side note is that I haven't purchased a new monitor yet either, so if anyone has recommendations for something that is 1440p ultra-wide that supports picture by picture (like the ROG STRIX XG43VQ, as I do play my console fairly often) that would be awesome. Thanks everyone!

In my experience, assuming Gig capable devices on each end it usually comes down to a cable. Rare, but it happens. Would be good to try with another device too, PC to second PC, second PC to modem etc.

Everything on your modem. Think of it as a pipe, ISP gets big pipe, you have a small pipe to your home. Someone floods that pipe, you get very wet and there's nothing you can do. This is generally why when you get DDoS'd restarting your modem is a legitimate tactic, your ISP will probably assign you a new IP as your old session is still active and the DDoS goes away. Unless you have a static in which case you need to wait it out, or get a new one.

What you're asking for is heading towards SME/Full Enterprise grade solutions. Next-Gen Firewalls such as FortiGate/Palo Altos can do this but it relies on a few things such as significant network segementation i.e. if one of your devices is compromised, there's no stopping it moving laterally if your whole network is in one trust zone or layer 2 domain.

You will want to use fiber here, you want to avoid ground loops caused by bridging two buildings eletrically with copper cabling. Conduit, run of fibre, cheap media converters or switches on each end with some SFPs from fs.com and you're done.

Yes, "up to" being the key word, your ISP is not faslely advertising here.

I wouldn't, their software is terrible for even advanced users. PfSense is not as bad, but it's also far from great IMO, I run this currently and I hate using it but I also can't be bothered replacing it unless it breaks. Would be interested to hear what OP's requirements are and if there's anything the UBNT suite is not meeting currently. Put the $1,000 into something else.

Aside from the other answers about VDSL inefficiencies, overhead and whatnot, you don't "pay for 75Mbps". You pay for a VDSL connection and it's best effort because there's simply no guarantees, particularly as it's over copper buried in the ground decadess ago.

In a lot of instances yeah you're running multiple fibers. In a larger setting where you're leasing fibres for $$$$/month, CWDM/DWDM and buying tuned transcievers is typically the way to go.

If it's raw internet and doing no inbound firewall policy, IPS etc then your requirements list is very small and a USG isn't a bad shout. The Sonicwall could be overkill. A FortiGate 50E could be a good alternative if you want the AV/IPS features.

Try set a limit it to say 1Mbps and see how it goes, otherwise maybe try a while without it entirely? Not sure what else you can do.

Not 100% of the time, individuals should test, this kind of advice can mislead people in entire countries into poor performance, e.g. every major free DNS provider is 30-35 ms away from me whereas my ISP is 3. That's not ohjectively true per my other reply. If you get better performance from another provider than your own ISP, sure, but for myself my ISP will serve me a response in 3ms whereas every major alternative is at least 35.

Where do you get the 100Mbps from? Seems to be its VDSL capability which is quite high end actually, that's the maximum throughput of a VDSL connection - do you even have VDSL or do you have FTTH/Fiber??

Yeah it sounds like you're double NAT'ing, which is complicating things. What are the modes listed that you can run the wifi router as? It needs to act as a bridge of some sort. It sounds like the wireless access point mode isn't quite doing everything you need it to. You basically need to remove one of these as it's currently configured from the network.

It's because 3Gbps is total of both TX/RX capability, so 1500Mbps in each direction. They could be helpful and say 3Gbps half-duplex but that wouldn't look nice on marketing material.

I prefer Tailscale (which seems to be Wireguard wrapped up in a nice UI), much simply to operate, they've really nailed the usability of it. Would be interesting if your IPTV actually needs to be somehow magically connected to the ISP provided router, probably just a dumb DHCP client that could go on the rest of your network.

You've ruled out the wireless so probably an issue either a) someone in your household uploading a lot, in which case hopefully the router could show you some sort of live bandwith utilisation or b) a DSL issue. Remember, DSL you share with a whole bunch of other households in your street and is a shared medium. The router seems quite highly spec'd, so I doubt it's that tbh.

Ubiquiti stuff is good and will meet your requirements, can add a bunch of SSIDs and map them to individual VLANs at your desire. I don't know what the SSID limit is though, no less than five though. In terms of concurrent connections, rule of thumb is 30 clients is when it starts to get dodgy at which point you would need to add another AP.

+1 for OpenWRT if your router is supported by it.

Let me get this right, you have a fairly boring home network and you have been provided an office computer which dials into the actual office over a VPN and you do your work that way? This sounds fairly straight forward and there's not a lot they could potentially do to monitor the rest of your network, if anything, they should be the ones concerned about putting company equipment on an unmonitored staff members personal home network. If the VPN is disconnected on the work provided machine then they will have no access to anything on your network real-time. All that you could really do if you're actually paranoid and willing to spend the money is buy a decent router with some firewall customisation capabilities, put the work PC in a different security zone and make rules such that it can only talk out the WAN and not to other LAN on the router.

Since you're in NZ as well, I would consider a wireless solution with some Ubiquiti kit such as the NanoBeams running at 5.4Ghz with power right down, you'll easily get hundreds of megabits over it. If you're considering this, then get in touch with gowifi.co.nz and they'll come up with a solution for you and refer to you to a local contractor if you're not too keen on installing kit yourself. If you have concerns about vandalism of radios external to the building, consider installing nanostations behind glass walls/windows or something. I would really shy away from a 200M ethernet run, but something we've done before is run a switch at the 100M mark like a cheap Mikrotik. We've run these in places without power by sending POE up from one end with power.

Realistically you have no what the business will be like in 20 years, or if it will even exist, so I would stop forecasting that far away. The thing to get right in the office is structural cabling and aside from that, everything could be ripped out every three years and you'll still be happy. What I would be interested in is dealing with your server. If you have one server on premise that is the core to your business, why is it even there, move it to a daracentre, move to cloud etc. Your customer count may be going up by 5-10% per year, so invest in making sure that apps/infra holding all of your information are well protected. That server is probably the biggest IT risk you have. The only reason I would even think of moving to 10Gbps is if you have current connectivity requirements that are not being met by the current solution you have a clear roadmap to getting there. A good amount of the time customers actually have no idea how much traffic they currently do because they have no monitoring in place of their current network. For all you know, you could be pitching a 10Gbps for a network that rarely reaches 100Mbps. It looks like you have a budget of $1000, I would simply buy a new switch from a reputable shop to ensure you have something that isn't going to die within five years.

Yeah this was Equinix, very strict and great facility. Sorry I reread your comment and yeah sure, if you have several hops between hosts and are concern about nanoseconds of latency that DACs are adding over those hops, the application will have its connectivity requirements well stated and the workload probably doesn't involve these several hops to begin with.

Yeah agreed, a local (previously small) ISP here just gives up on v6 the second a customer has a issue and the worst part is is that it sometimes solves the issue.

Probably looking at some KVM over ethernet solution. The AIO kits are expensive but if you have the capacity to run more connections you can split them up. One of the top r/battlestations posts of all time was this house where it was exclusively peripherals over network CAT5E cabling.