Network layout showoff

[xPakrikx]

Not done yet wip.  v0.8

 

[Sir Asvald]

There have been some changes for my network.

• Setup PFESNSE to handle the OpenVPN Peer-to-Peer VPN - No longer using Hamachi VPN.
• Setup DFS-R between my on prem fileserver and my dedicate fileserver.
• Setup Internet Printing, allowing me to print from anywhere.
• Additional VLANs -  VLAN 24 (10.1.24.0/24) Remote management iLO and IDRAC, VLAN 25 (10.1.25.0/24 for ISCSI target).

 

Edited June 1, 2022 by Sir Asvald

[corhen]

Figured i would throw in my layout. Simple layout, all done in Cat 6A Ethernet. Its enough to keep everything running smoothly, and avoid bottlenecks.

I need to add a proper Pihole at some point!

[FlyScript]

Still struggling to find the right kit, but this is what I'm trying to grow my dumb all-in-one modem/router into over the next couple months (possibly with some PoE security cams and another AP one day).

 

2.5Gbps over Cat 8 everywhere (Gigabit line in, but I intend to upgrade that)

[draftingish]

On 6/29/2022 at 3:27 PM, FlyScript said:

Still struggling to find the right kit, but this is what I'm trying to grow my dumb all-in-one modem/router into over the next couple months (possibly with some PoE security cams and another AP one day).

 

2.5Gbps over Cat 8 everywhere (Gigabit line in, but I intend to upgrade that)

Well a wireless AP probably doesn't have router turned on. So the router controls routing for all the network.

[Nukes25]

here's my home network setup, currently.

everything works good, just wondering if there's any improvements I can look into ( I know upgrading to cat6 min for hardwire, but holding off on that until I move next year, as that'll be a more long term place, I will optimize it)

 

[Guest]

I don't have my own network yet, but I saw my cousins.

 

Router is installed in basement.
One really long ethernet cable goes up 2 flights of stairs to his xbox.

 

I'd like to maybe set something up like Luke's system or 8-bit guy's.

[Sir Asvald]

Here is my network diagram, significate changes:

 

[Shylidi]

 

Whew, here we go

I've got one pfSense router, running on a Dell R320 with 32GB of RAM and a 6 Core CPU, the most important part is it has a Chelsio S320 NIC in it. The nice thing about Chelsio is that it can handle the full stack. The CPU (almost) never needs to get involved. Which means I can pull full 10Gbps line rate to the internet, even with 400+ firewall rules and 6 VLANS, with a complete /26 network of addresses routed to my network (64 addresses) speaking of which:

Networks:

MAIN - home network for trusted devices, can talk to remote

REMOTE - offsite at a data center location, these servers provide HA and stuff. useful, and nice to have my dns and stuff in a separate location so even if most everything here crashes, the alt router can take over everything while I sort the mess.

GUEST - open portal to the internet, isolated from the network completely, I live next to a park and have an AP pointing that way so people can use it, plenty do.

IOT - locked down, when a new device joins it connects and gets the DMZ IP, which allows it to talk openly to the internet BUT it is completely recorded with a port replication and a wireshark, I look at the packets, figure out what it needs and give it access to only what I deem acceptable.

FRIENDS - separate networks for friends to host servers, I let my friends put servers and systems in, and I give them VLANs with a public IP and a /28 network for their hosts.

RETRO - extremely locked down VLAN with no access to the internet, only can talk to my workstations, in case i feel like playing winXP solitaire, or some DOS games.

 

Switches:

LIGHTNING: Extreme Networks Summit X670-48x (48 10Gbps SFP+ Ports)

PLASMA: Extreme Networks Summit X450e-48p (48 1Gbps RJ-45 PoE Ports)

TORNADO: Nokia 7210 SAS-S 48F4SFP+-1 (48 1Gbps SFP Ports + 4 10Gbps SFP+ Ports)

HAIL: Nokia 7210 SAS-T 12F10T 4XFP-1 (12 1Gbps SFP Ports + 10 1Gbps RJ-45 Ports + 4 10Gbps XFP Ports)

THUNDER: MikroTik CSS610-8G-2S+IN (8 1Gbps RJ-45 Ports + 2 10Gbps SFP+ Ports)

HURRICANE: Ubiquiti US-XG-6PoE (4 10Gbps RJ-45 PoE Ports + 2 10Gbps SFP+ Ports)

OMNI: Dell Powerconnect 6248 (44 1Gbps RJ-45 Ports + 4 1Gbps Hybrid Fiber/Copper Ports)

 

Network VLANS enter on either lightning, or plasma, and cascade where they need to go, servers all talk through the nokia switches, and edge devices go through the Extreme Networks Switches, it's not hard and fast, and I like to lab things up, which is why i have so many ports, I'll do work from home and bring dozens of APs to validate or whatever.

 

Workstations:

YREL - My main gaming box: Ryzen 9 5900x | 64GB DDR4 3600MHz | RX 6900 XT

VALKYRIE - My Render Machine, and Beanbag gaming box: 2x Xeon E5-2667 v3 | 128GB DDR4 2133MHz | Quadro RTX 5000

PUSHEEN - Wife's Machine: i7-5820K | 32GB DDR4 2400MHz | GTX 970

 

Servers:

RARITY: 1x Xeon Silver 4100 | 128GB DDR4 2133Mhz

RESONANCE: 2x Xeon E5-2690 v3 | 128GB DDR4 2133Mhz

ZELDA: 2x Xeon E5-2690 v3 | 128GB DDR4 2133Mhz

2A: 2x Xeon E5-2650 v2 | 64GB DDR3 1333MHz

2B: 2x Xeon E5-2650 v2 | 64GB DDR3 1333MHz

RETRO: 2x Xeon E5405 | 64GB DDR2 667MHz

 

Power:

6x 2200VA Cyberpower UPS'
I can run all of this gear in two segments, in case of complete power failure the hypervisors will remain up for 1 hour, the network gear will stay up for 3 hours. All the APs in the house (except one) are powered from the PoE switch here, and the other is upstairs on the Ubiquiti PoE switch, which has it's own 5 hour UPS. All of this ties back to the UTOPIA Fiber network, which is my employer, and I know we have generators at all sites from my home to internet core. When the power goes out, in general, internet stays up.

 

some proof lol, the security camera anyways.

 

 

 

 

[NobleGamer]

  

On 8/17/2014 at 7:24 AM, Ssoele said:

• You must have a proper network diagram; Something made in Microsoft Visio, Gliffy (Free) or something similar.

Gliffy is no longer free, so I use Lucidchart.  Works well for network diagrams after adding some shape libraries, although I can't get the image export to include background color boxes ("hotspots").

 

Here's my network diagram:

 

About my network:

• I installed the ER-X to support failover between primary and 5G modem - Failover wizard was easy to use with moderate networking knowledge
  • After my other configuration adventures, I got it to not bottleneck modem traffic as long as I don't set smart queue QoS on download activities.
• Both switches are managed, and provide auto QoS using 802.1p/DSCP. Because of their placement, it makes QoS at the router level seen much less relevant
  • TP Link switch provide more physical ports than the Gryphon Router, and mitigates bottlenecking other connections during backups to NAS
  • Netgear switch exists because I could only run one networking cable to that location
• There may be a double NAT given "Primary Modem (not a router bundle) -> ER-X -> Gryphon Router" and a triple NAT given the path of "5G Modem (+integrated routing) -> ER-X -> Gryphon Router", but throughput and connectivity haven't been an issue for my primary use cases (4K streaming, downloads, some uploads, light online PC gaming) since they don't seem to require specific port forwarding.  "If it ain't broke, don't fix it."

Edited October 28, 2022 by NobleGamer
Updated network details

[LapsedMemory]

 

This is the final plan for my work in progress.  Everything on the chart is done except for the SW3_1 and WAP2 as I'm not entirely convinced I need them yet.  Spent the last week reworking my incoming 'hub' using a WallControl board and customizing 3D printable accessories you can find on this project:

GitHub - aderusha/DDD-Printable-Wall-Control-System: DDD Printable Wall Control System, 3d printable organization solutions for Wall Control pegboards

 

It was as simple as downloading the base model, measuring up the hole distances for the wall mount hooks, and adding attachment nubs to each of the surfaces.  Add in some Magnetic cable tie mounts and you have a simple, completely customizable pegboard layout.  The hardest part was waiting for the Ender3 to print all this up.  

 

From Top Left:  Fiber ONT  (Active), Surfboard Cablemodem (Available as backup if needed), iBase Edgedevice using pfSense,

Bottom Left: ScreenBeam Bonded 2.5 MOCA adapter for reaching the rest of the house, TL-SG108PE connecting everything together and powering WAP1.  

 

 

 

[andrewnyr]

This is a general overview of my current home network setup.

[beanhubbleday]

Networks

• VID10 - Production - 10.10.100.254/24 - DHCP
• VID20 - Homelab - 10.10.20.254/24 - DHCP - Not currently in use, yet...
• VID30 - Private WiFi - 10.10.30.254/24 - DHCP
• VID50 - [NEIGHBOURS NETWORK] - 10.10.50.254/24 - DHCP
• VID40 - IoT - 10.10.40.254/24 - DHCP
• VID70 - Public WiFi - 10.10.70.254/24 - DHCP

 

Switches

• Netgear JGS516PE

Gateways/Firewalls

• WatchGuard T35

DHCP

• Runs off of the WatchGuard

DNS

• Runs on 3TKDC01

Access points

• 2 * UniFi UAP-AC Lite's

Servers:

• 1 Physical Dell PowerEdge T610, running Windows Svr 22 with Hyper-V role for following VM's:
  • 3TKUNIFI01 - Ubuntu, UniFi software controller for my AP's at home, one at my workshop and one in my neighbours house.
  • 3TKFS02 - Windows Svr 22, Basic file server, 01 no longer exists as Windows died and it wasn't worth my time/effort to repair so I just rebuilt it.
  • 3TK3CX01 - Ubuntu, hosts 3CX for use within the family.
  • 3TKMEDIA01 - Windows Svr 22, Hosts Emby, Radarr, Sonarr and "some other stuff"
  • 3TKDC01 - Windows Svr 22, Domain Controller, DNS, AD, GPO, etc
  • 3TKGAME01 - Windows Svr 22, Hosts some minecraft servers

For any wondering, my neighbour is my best mate and instead of having two internet connections in two houses, we have 1 good one in mine and a Cat6 run between the houses which serves his side, all VLAN'ed off as above.

 

Any questions, shoot.

[applies-casual-jersey]

Nothing particularly special.  There are a few devices (i.e. alarm panel) that still need to be added to the diagram.

 

[Smith6612]

This is my current network setup network-wise, excluding all of my clients.

 

Router: Ubiquiti UXG-Pro

• WAN Handoff: 2.5GbE to ISP via Mikrotik S+RJ10
• LAN Handoff: 10Gb Ubiquiti UC-DAC-SFP+
• The LAN RJ-45 Port is assigned as a "Lab Network" uplink which occasionally has a Mikrotik CHR instance virtualized inside of Proxmox VE, which goes to my network lab (primarily used to QA and configure a local LAN party event's network).

Switches:

Ubiquiti USW-Enterprise-24 PoE

2x Ubiquiti USW-Flex-Mini

 

The USW-Enterprise-24 PoE is my core switch. ALL network devices including the APs and USW Flex Minis uplink over Ethernet to the core switch. There are no wireless uplinks. All network switches and APs are PoE powered by the USW Enterprise 24.

 

The USW-Flex-Minis provide additional Ethernet ports to devices in two different bedrooms. Primarily Gaming PCs, Smart Televisions, and PlayStations.

 

Access Points:

3x U6-Enterprise-IW

1x U6-Enterprise

 

The U6-Enterprise-IW APs are wall mounted in bedrooms, and provide 2.4Ghz/5Ghz/6Ghz Wireless access to the house. They also act as a four port switch for hard wired devices like Smart TVs, PCs, and Game consoles in the bedrooms.

 

The U6-Enterprise is ceiling mounted in the basement to provide service.

 

All access points are running two different SSIDs - a WPA2 SSID for devices older than 802.11ac Wave 2 which do not support WPA3, and this SSID only runs on 2.4Ghz and 5Ghz. A second SSID operates on 2.4Ghz, 5Ghz, and 6Ghz, and runs WPA3. Any device supporting WPA3 and/or 6Ghz will be joined to the second SSID. All APs are evenly spaced in an triangle arrangement between any three APs. The signal on 6Ghz is no weaker than -75dB at any point in the house.

 

Noteworthy Devices:

For my NAS I have a Synology DS1819+ which is provided 4x1GbE in an 802.3ad (Link-Aggregation/LACP) bundle. This device runs some various programs such as Plex and rrdtool, in addition to acting as a file server. This has ~80TB of Storage.

A secondary NAS, a Buffalo LS-CHL, is also connected with a 1Gb Ethernet link. This device simply backs up important directories on the primary NAS on a regular basis and goes offline when complete. This has 1TB of storage.

A Raspberry Pi 3B+ running Ubuntu Server 22.04 LTS (64-bit) is connected via 100Mbps Ethernet and uses a PoE power supply. This device runs as my UniFi Network Controller.

 

ISP:

1Gbps/35Mbps DOCSIS 3.1 service. Tests 1.2Gbps down, 42Mbps up, and soon will be 1.2Gbps down, 940+Mbps up once the provider finishes High Split upgrades.

IPv4 / IPv6 Dual Stack with public IPv4 addressing, and a /56 block of IPv6 addresses.

ISP provided CPE (only hardware available supporting high split DOCSIS)

 

Wiring:

1x CAT5e drop to every room. All APs run 2.5GbE over CAT5e. The USW-Flex-Minis are 1Gbps. 10Gbps between the core switch and the router via DAC. 2.5GbE between the ISP modem and the router via CAT5e. All NASs are 1Gbps Copper. All clients are 100Mbps or 1Gbps depending on capabilities.

 

 

[Real_PhillBert]

Here's my current home setup.

 

All the wiring is Cat 6. 

 

At some point I would like to upgrade to a switch with 10G capabilities, but this is where it stands now.

 

 

 

[Powin]

This is just my home network setup minus wired regular devices/WIFI devices as that would be super cluttered with everything i have wired. I try to wire everything that can be. I have my NAS's/Servers listed though. Not the best drawing lol, but threw this together quickly and using libre office; first time using that instead of Visio as I am not on my work PC currently lol. I am using a lot of Unifi's setup, talk/protect/network. Realized after posting this I left my network printer off the diagram but oh well  

 

[Dan Forever]

 

I'll soon be replacing the DES-1005P and TL-SG105-M2 with a Ubiquiti Enterprise-8-poe. I'm also thinking of replacing the QSW-1105-5T with another QSW-2104-2T, and then I'd be able to have [totally-unnecessary-but-awesome] 10G running throughout my apartment

[Lurick]

6 hours ago, Jack Harryy said:

This string is intended to show us your organization design. A few guidelines. You should have a legitimate organization graph; Something made in Microsoft Visio,

Page 1:

 

Quote

It must be your own network; Don't try to impress by showing off a corporate network, we are looking for consumer networks

 

[igormp]

Mine's pretty simple, but here it goes:

 

 

My router is a R5S with OpenWRT, load balancing 2x 500Mbps links with mwan3. I have it attached to a dumb 8 port switch that's also connected to two access points, one is a Tenda MW6 whitelabel (has gigabit ports), and the other is a MW3 whitelabel (100mbps ports only), the third AP is wireless only.

 

Rest is just a bunch of clients that are either on wifi or on the switch.

 

All of this is backed by a 2KVA UPS, I'm currently waiting on a add-on for it with 2x 12v 40Ah batteries (in series) for some extra run time whenever power fails.

[Obioban]

Layout yet to come, but I've been building a house, and put many, MANY hours into running wires.

 

Just recently got to a point where it's presentable.

 

[Sir Asvald]

Network has been updated, added a cisco 1841 to handle my BGP, the other "routers" are just my PFSENSE boxes which I also use BGP.

 

 

[NobleGamer]

I used LucidChart for free to make my attached diagram.

 

About my network:

• The ER-X's main purpose is to support failover between 5G Gateway (primary) and DSL (failover because its slow and less reliable) - Failover wizard was easy to use with moderate networking knowledge.
• ER-X's SmartQueue QoS doesnt bottleneck my 5G home internet as long as download traffic doesn't hit 200+ mbps (which 5G can hit sometimes). Instead of SmartQueue I tried prioritizing specific traffic instead via DSCP tagging & Advanced Queue config, but it was tough to get it working well and do much for me.
• There's a double NAT with the 5G Gateway to the ER-X because ISP hardware can't be configured with a DMZ or passthrough. It's caused no issues so far, but I also don't play much online games and I don't access my NAS from the internet. I have my best practices with 5G home internet here in this guide.
• ASUS ZenWifi Mini AX1800 for me was a solid mesh upgrade from an AC1200 mesh that I couldn't disable the router of. Just the higher non-traditional QAM alone (like 1024 @ 5 GHz band) really helped with higher link speeds at moderate to far distances, enough for the 3 APs to cover most of my two story home in solid 5 GHz. I temporarily put one node in wireless mesh mode due to some home improvement, and it's worked fairly well for handling a handful of devices connecting to it that can demand a total of 100-200 mbps.
• There are up to 20 devices that can connect to wifi, but for the ~10 not pictured here I couldn't find good pictures for them and most of them are smaller devices anyways which don't communicate often or use much data.  The APs and router seem to handle them all well.
• NAS backups are hardly bottlenecked by 1gbps networking speeds because most files I backup are small, and random write speeds are trash for HDDs are weak. So the cost of 2.5 or 10gbps networking wouldn't really benefit me, especially when my internet isn't pushing more than 200 mbps.
• I went with MoCA 2.0 bonded (1gbps) and 2.5 (2.5gbps) instead of ethernet because there was already perfect locations for coax and coax splitter where I would've otherwise put ethernet. So I didn't want to go through all the extra effort to remove the coax runs on the home's exterior, pull ethernet through the coax holes, re-seal them, etc. I just wish it was easy to check the signal/quality of the coax connection, as the steps provided with the coax adapters to access their web interfaces don't seem to work. I tried to mitigate signal issues by placing a coax terminator on the unused port of the 4 port coax splitter.
• I bought my Edgerouter, ASUS mesh, and two 2-packs of MoCA adapters all from ebay for half off their usual new price. Otherwise, it could've cost me as much as $600 to buy them all new. I bought my switch new, since switches are the cheapest network hardware.

 

[BigFatTeddy]

Main goal of the network setup: Insane speed. Everything related to me and what I do needs to be connected via 10G, family gets 1G Ethernet. Whenever two switches get connected, dual LACP 10G trunk is used to avoid even the slightest chance of me having to wait an additional nanosecond. And being able to transfer 2-3 Gigs in just a two or three seconds. Because: lack of patience.

 

The ML rig is copying quite big chunks of data around, which is being changed a lot.

 

Also I'm running completely on Linux, so my home-drive is located on the server. Because backup. And replication. All systems and servers are AM4-based, using the Asrack B550D4ID-2L2T mainboard. With the Ryzen 7 5700X3D as CPU, because that thing is awesome when it comes to DB-operations. One chiplet and the huge cache is super cool.

 

 

[dmsosc82]

My "On A Budget" Telecom Industry Professional Home Network:

 

ISP:

• Bell Fibe 1.5Gbps (running 940/940mbps symmetrical)
• ONT removed from the Sagecom Router and Inserted into a 1Gbps Media Converter

Router:

• UISP EdgeMax 12 Router
• VLANs for Bell Fibe and PPPoE configured
• MTUs on VLANs configured so the WAN/LAN ports running at full 1500 MTU

Switch: 

• Cisco SG500X-48MPP
• 4x 10Gbit SFP+ Ports
• 48x 1Gbit PoE++ Ports

WLAN:

• 1x Omada OC200 WLAN Controller
• 1x Omada EAP650 WAP
• 3x Omada EAP655W WAPs

NAS:

• 1x Synology RS2418RP+ 91.3TB usable storage
• 1x Synology DS1513+ 43.3TB usable storage
• SMB disabled and using NFS based network shares to maximize file share performance

SERVERS:

• 1x Beelink Ser7 Pro w/ 32GB RAM Ryzen 7 7840HS running Windows 11 Pro
• Beelink connected w/ 2.5Gbps NIC via CAT6 to MultiGIG SFP+ module in SG500X 10Gbps SFP+ Port
• NFS Mounted Shared Drives from Synology NAS Appliances
• EMBY Premier and QBitorrent running with storage for media and emby cache stored on Synology NAS Appliances

SMART HOME:

• 40x WEMO Dimmers & Smart Switches
• WEMO was one of the worst investments I could have made. It was 2018 so my bad.
• 2x KASA Switches for HRV & Backyard LED lights
• 10x Google Home Hubs and Speakers
• Google Home Smart Tech was the second worst investment next to WEMO

FAVOURITE CLIENTS:

• Beelink GTR7 Pro Ryzen 9 7940HS w/ 64GB Kingston Fury Impact DDR5 & 2TB WD Black SN850X 2TB PCIe Gen4 NVMe
• Lenovo P14S Gen 4 Ryzen 7 Pro 7840U w/ 64GB DDR5 & 1TB NVMe PCIE 4.0 SSD