Jump to content
Search In
  • More options...
Find results that contain...
Find results in...
Ssoele

Network layout showoff

Recommended Posts

On 3/12/2017 at 7:42 AM, droidrzrlover said:

 

 

Here is my new network topology for my home lab. I am diving into the realm of security now. It seems to be an all-out enterprise network but it is in a home. Just 4 Cisco Catalyst 3560Gs, 2 Cisco ASA 5510s, 2 Cisco 2911, and the Cisco Unified Communications Suite. This is one highly redundant home network.

 

Isn't it too much overkill? I like it though

Link to post
Share on other sites
On 03/12/2017 at 6:42 AM, droidrzrlover said:

 

 

Here is my new network topology for my home lab. I am diving into the realm of security now. It seems to be an all-out enterprise network but it is in a home. Just 4 Cisco Catalyst 3560Gs, 2 Cisco ASA 5510s, 2 Cisco 2911, and the Cisco Unified Communications Suite. This is one highly redundant home network.

 

Nice network! :D Too bad ASA firewalls are end of life. :( What configs are you running on switches and ASAs?


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites
6 hours ago, Abdul201588 said:

Nice network! :D Too bad ASA firewalls are end of life. :( What configs are you running on switches and ASAs?

The configs are basic for the switches, VLAN 99 on the switches before the ASAs and then I will have VLANs 10, 20, 30, 75, and 100 on the switches after the ASAs with no switchports going to the ASAs. The core is going to be 172.16.1.0/28 and then after that, it is going to be 172.16.2.0/28 for after the ASAs. I am going to have a default route going to 172.16.1.1 which is the HSRP address.

Link to post
Share on other sites

Network setup. I've moved my Email server from my house to an online VPS. Residential IPs are blocked with BT. So, I figured, why not an online one and use VPN to connect to the domain:

 

The on premise server is still up. It's only used internally and it forwards all requests to the VPS. ASA 5505 is used for IPSec VPN between my house and the VPS. 

 

f33da52cc6e275a1981a7b468fd61abe.png


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites

Always hard to draw a virtual environment, a physical diagram doesn't really represent the network layout well. I sort of grew into this, but I will move my WSUS server to the management vlan and VDP to the non-internet vlan. Currently it's the only server on that vlan allowed internet access on vlan 50. I'll also probably end up moving my RDSH application server over to the dmz since it's going to be more permanent now.

 

Drawing it all out definitely helps think of where things should be.

 

HomeNetwork.thumb.png.c13992ce0e68dabd7ea0c67dd89ce069.png

Link to post
Share on other sites
On 12/21/2017 at 3:03 AM, Mikensan said:

Always hard to draw a virtual environment, a physical diagram doesn't really represent the network layout well. I sort of grew into this, but I will move my WSUS server to the management vlan and VDP to the non-internet vlan. Currently it's the only server on that vlan allowed internet access on vlan 50. I'll also probably end up moving my RDSH application server over to the dmz since it's going to be more permanent now.

 

Drawing it all out definitely helps think of where things should be.

 

HomeNetwork.thumb.png.c13992ce0e68dabd7ea0c67dd89ce069.png

Maybe you can draw it using separate L3 and L1 maps? In L3 maps ignore the managed switches and VM hosts, while in L1 map ignore VMs?


Workstation 1: Xeon E3-1231v3 ~ 4x Kingston KVR 8GB DDR3-1600 ~ Gigabyte GA-Z97D-D3 ~ Sapphire RX 580 8GB ~ Samsung 960 Pro 512GB ~ WD Green 2TB ~ macOS Mojave amd64
Workstation 2: 2x Xeon E5-2680 ~ 8x Kingston KVR 16GB DDR3-1600 Registered ECC ~ Asus Z9PE-D16C/2L ~ XFX RX 480 8GB ~ WD Black NVMe 1TB ~ Windows 10 Pro Workstation amd64

Workstation 3: Core 2 Quad Q9300 ~ 4x mixed-brand 2GB DDR2-800 ~ Colorful C.P45K ~ Zotac GTX 650 Ti ~ Kingston V300 120GB ~ Samsung SpinPoint 1TB ~ Windows 10 Pro amd64
Home server: Core 2 Quad Q9550S ~ 4x Micron 2GB DDR2-800 Unbuffered ECC ~ Asus P5BV-C ~ Broadcom MegaRAID 9271-8iCC ~ Unbranded SATA SSD 120GB ~ 6x WD Green 2TB ~ 2x WD Red 2TB ~ Ubuntu Server 18.04 LTS amd64
Laptop 1: Apple MacBookPro9.2 ~ Core i5-3210M ~ 2x Samsung 8GB DDR3L-1600 SO-DIMM ~ Samsung SSD 850 Evo 1TB ~ macOS Catalina amd64

Laptop 2: Apple MacBookPro8,1 ~ Core i7-2620M ~ 2x Samsung 4GB DDR3-1600 SO-DIMM ~ Kingston SSDNow V300 240GB ~ macOS High Sierra amd64
Laptop 3: Dell Latitude D620 ~ Core 2 Duo T7600 ~ Kingston 2GB DDR2-800 SO-DIMM ~ Kingston 1GB DDR2-800 SO-DIMM ~ Intel 945PM ~ nVidia Quadro NVS 110M ~ Kingston SSDNow V300 60GB ~ Windows 10 Pro amd64

Link to post
Share on other sites
3 minutes ago, Mikensan said:

@Lurick - how much did the ASAv licenses end up costing if you don't mind me asking?

For me it was free since I got it as part of my job role pretty much :)


Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to post
Share on other sites

5lv1ph.png 

so then this is the network as it stands at this moment 

 

Device list 

  • Entertainment 
    • TV is a Sony 55 inch 4K android 
    • STB 1 and 2 are as advertised one for my ISP IPTV and the other is nationall IPTV provider for channel diversity 
    • and the sony Bluray 
  • Mobile computing 
    • Tile is a Lenovo Yoga 910 and is my mobile daily driver 
    • Tile-old is a Hp Probook that is too old too heavy and now too slow and now changes OS as a whim hits me 
    • work laptop well thats prtetty much as advertised 
  • the printer is a cheep brother wireless Laser printer 
  • Servers 
    • Nas is in build atm amd while technically attached to the network its defs a WIP at the moment 
    • Slate is a scratchpad server that is my testing location for all the stupidity before i roll an idea live 
    • Firebrick serves as web / mail / database and will soon take over DNS / DHCP from my modem  
  • Workstations 
    • Cornerstone is the PC i have been using as my non mobile daily driver for the past 4 years its currently being replaced by Cornerstone V2 
    • Cornerstone V2 is the new kid on the block  and as soon as i get all my data moved over or off to the NAS (when complete) there will be a name refactor 
  • Switches 
    • switch 1 is a D-link DGS-1016a 16 port Gigabit non managed consumer switch 
    • switch 2 is a TP-Link TL-SG108 8 port Gigabit consumer switch 
    • the access point is a Ubiquity unify UAP-AC-PRO
  • Modem 
    • this is fairly unremarkable POS ISP supplied ADSL modem.  i have 3 diferent iterations of them and they change out regularly as i end up testing them for work and one of these days im going to get my Cisco 867 sorted out (we no longer offer that as an option to business customers so its not in the testing rotation )

General Thoughts an musings about my network 

 

The only real reason for switch two is so that i only have one Ethernet cable running to my office. and i think that the 16 port one will soon be replaced wiht a second hand HP procurve 3400CL switch ... they can generally be found online for a good price and are fully non blocking with something like an 86Gig back-plane and space for 2 10Gig fiber up-links (that i would have almost no use for atm ) the 48port ones would have fun trying to saturate that back-plane. The main reason for the upgrade is not that im saturating either of the Gigabit switches i currently have but more that the HP is managed.

 

Slate and firebrick are currently running on Rasberri Pi's, Firbrick on a pi 3 and slate a pi2, i dont do a lot of work out to the world with my web/mail so atm the Pi is completely suitable for that job but im really wondering if i am going to take the Cornerstone hardware and throw ESXi on it then pull mail web and Database into different VM's 

 

as it stands i haven't had a need for web/mail or associated stuff for a while so the addition of Firebrick is only about 3 weeks old at the moment and was put in place to get some network management running in this case Cacti and smoke ping. 

 

initially cacti and smokeping were put in place to help me identify some network issues that i was seeing (massive prolonged ping spikes huge chunks of lost packets)  but as per bloody usual as soon as i added monitoring and got it going the issues are gone 

 

if yall are interested in my connection to the world i have pulled some of the relevant cacti graphs onto http://www.fish-tank.ninja/network.html this page where you can see my latency over time to 4 DNS servers and some strategically chosen points in my routing too a game server in London that i use a lot 

 

there is also the smoke ping page that shows similar data in a different way  http://www.fish-tank.ninja/cgi-bin/smokeping.cgi?target=MULTIHOSTS 

smoke ping shows the latency in a better way but Cacti's SNMP integration means i can do a whole lot more with it in the long run (this is where the 3400CL comes into the picture) 

 

there also needs to be a name reorganization as traditionally Cornerstone is the center of my network and all devices are named after brick/stone products in this case Firebrick probably needs to be renamed as it is in no way any sort of firewall. that said there definitally needs to be some kind of firewall device added into the network some time soon 

 

Link to post
Share on other sites
On 17/01/2018 at 10:23 PM, Lurick said:

Made some changes/updates :)

 

 

 

:o could you take a picture of the front? 


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites
11 hours ago, Abdul201588 said:

:o could you take a picture of the front? 

That's about as much of the front as I can get. It's maybe a few feet from the wall so a proper front picture is hard :(


Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to post
Share on other sites
46 minutes ago, Lurick said:

That's about as much of the front as I can get. It's maybe a few feet from the wall so a proper front picture is hard :(

Aw. :( How comes you have multiple switches? I've got 2 only. xD

 


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites
30 minutes ago, Abdul201588 said:

Aw. :( How comes you have multiple switches? I've got 2 only. xD

 

Just two switches :P

One is for UPOE and MGig and the other is for POE+ and just does gig (excluding the 10Gig module)

Then I've got a 3504 WLC


Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to post
Share on other sites
15 hours ago, sapage said:

Hopefully in the spirit of fun for this thread.

 

https://imgur.com/a/XTorV

 

I should really cable it up or something. 

LOL xD


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites

My network. :)

Network pic.jpg


CPU: i5 4690 |CPU Cooler: CM Hyper 212 Evo | Motherboard: Z97-A | RAM: 4x4GB Kingston Memory 1600mhz | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 120GB Kingston V300 SSD | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 20" Dell  | OS: Win 10 Pro

 

Audio: Behringer 302USB Xenyx 5 Input Mixer | Neewer® NW-700 Microphone | Behringer PS400 Micropower Phantom Power Supply

 

Networking gear:  Dell OptiPlex 390 Domain Controller | Dell PowerEdge R210 II Exchange 2016 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5505 VPN  | Cisco Catalyst 3750 Gigabit Switch

 

 

Link to post
Share on other sites
On 3/10/2018 at 2:32 PM, Denned said:

Not enough Cisco in here, so here's my little setup. :)

That stuffs old man!

You need to get the new 3504 and some Catalyst 9300s, gosh! :P

Upgrade that 5506 to a 5585 :D

 

 

Kidding of course, it looks nice :)


Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to post
Share on other sites

Still under construction....any suggestions for the Storage Closet to change the 3 computers into an Array or a server? Or should i look for a NAS?

 

 

Network Set Up.PNG


Xilence Interceptor Pro / Asus Maximus IV Extreme-Z / Intel i7 2600K 4.8Ghz / 8GB DDR3 Corsair XMS3 2133mhz / Gigabyte RX-550 2GB / Corsair RM750

Link to post
Share on other sites

NetDiag.thumb.jpg.378fb1158fd9d4704aeb28c50e1dfaa8.jpg

 

My setup at home:

  • 1000/1000 Fiber Internet
  • Pfsense Router/Firewall (Fujitsu Esprimo, Pentium G645, 4GB RAM, 500GB HDD, Intel PRO/ 1000 PT Dual Port NIC)
  • Netgear GS105 Switch
  • Unifi AP Lite (For mobile, my laptop(s) and guests)
  • HP Microserver Gen8 (4x8TB Seagate IronWolf HDD's, 16GB RAM, FreeNAS)
  • Webserver (Intel Core i7 2600K, 16GB RAM, 120GB SSD, 5TB HDD, FreeBSD)
  • Workstation/Gaming PC (Check my signature for specs)
  • Fileserver (Xeon 1230v3, 8GB RAM, 15TB HDD, Debian, Not connected to this network though)

Temporary cable management, just moved all the stuff to the closet.

Going to drill some holes for cables in the back later.

 

Dautaskaup-1.thumb.jpg.f38d2a48fb4bab6b6e6338116dfa139b.jpg

Dautaskaup-2.thumb.jpg.b8f3ae1772c5f54a2d990827fc3c3c99.jpg


WS: 8700K@4.8ghz - 32GB -  1.5TB SSD  - 15TB HDD - RTX 2070 Super - 40" 3840x2160  - W10 Pro
LAPTOP: Lenovo ThinkPad X131e - 12GB - 120GB SSD - W10
NAS: HP MicroServer Gen8 - 32TB

Link to post
Share on other sites

I should set up a real server for NAS and VPN because my router cannot run OpenVPN properly (still talking on support for past 3 months, apparently their office in california does NOT have a R8000P so they cannot troubleshoot properly)

 

Everything on 192.168.0.xxx so streaming video from one room to another is really easy. Had thought of using Mesh wifi but I have doubts on the wi-fi capabilities since satellites can't connect to the main router through Ethernet (Asus added mesh to some normal routers right?).

 

Sony HDTVs connected by cable for DLNA and both cast dongles are by wi-fi.
image.png.26d1e2c70a56d9557df34aae5f0803a2.png


Specifications:

Motherboard: Asus X470-PLUS TUF gaming (Yes I know it's poor but I wasn't informed) RAM: Corsair VENGEANCE® LPX DDR4 3200Mhz CL16-18-18-36 2x8GB

CPU: Ryzen 7 2700X @ 4.2Ghz                                                                                     Cooler: Antec K240 with two Noctura Industrial PPC 3000 PWM

Boot drive: Samsung 970 EVO plus 250GB            Second drive: Micron 1100 2TB         GPU: EVGA RTX 2080 ti Black edition @ 2Ghz

Case: Antec P8                                                                                                                    PSU: Antec HGC850

Link to post
Share on other sites

My humble setup:

  • Modem -> Arris SB8200 with Xfinity gigabit service
  • Firewall/router -> pfSense 2.4.1 on a Supermicro A1Sri-2758f - handles gigabit with snort all day long.
  • Core switch -> HP 1810-24G v2
  • PoE switch -> JGS516PE PoE semi-managed switch
  • AP -> DLINK DAP-2660
  • Printer -> Brother 2700 series All-in-one
  • Cameras -> Mixture of wireless and wired Foscam (cheap and functioanl)
  • NAS -> HP Microserver running Freenas (a hell of an upgrade from a crappy ARM based QNAP appliance).
  • VM Server -> Supermicro mini server with a 6 core Xeon running Citrix XenServer and hosting my surveillance box, plex server, PBX, bunch of other stuff. 
  • Time Capsule -> self explanatory
  • Gaming and Non Gaming boxes -> self explanatory. 

Untitled Diagram.png

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Buy VPN

×