Hello everyone,
I am currently considering how to set up the network in our house.
In this context, I thought it would be great if some of you could share how you have implemented a high-end network on an individual basis.
I am an IT professional myself, but my focus lies elsewhere. Nevertheless, feel free to get technical—I assume I will understand you.
I am interested in:
- How have you segmented your networks?
- What devices do you use (manufacturer-independent)?
- Which devices (manufacturer-independent) do you group together in which network, and why?
- Which networks do you allow to communicate with each other?
- How have you implemented external access, if desired?
- Do you perhaps have a DMZ?
- In your opinion, what is a “must-have” and what is a “nice-to-have”?
I am currently considering how to set up the network in our house.
In this context, I thought it would be great if some of you could share how you have implemented a high-end network on an individual basis.
I am an IT professional myself, but my focus lies elsewhere. Nevertheless, feel free to get technical—I assume I will understand you.
I am interested in:
- How have you segmented your networks?
- What devices do you use (manufacturer-independent)?
- Which devices (manufacturer-independent) do you group together in which network, and why?
- Which networks do you allow to communicate with each other?
- How have you implemented external access, if desired?
- Do you perhaps have a DMZ?
- In your opinion, what is a “must-have” and what is a “nice-to-have”?
Teemoe86 schrieb:
...Bingo!One more useful point to add: The great thing about a network (cabinet) like this is that you can start simply, for example with the Fritzbox, and expand everything as needed. Guest LANs with separate VLANs, for instance... I’ve never needed that because in all these years I never had a guest who wanted Wi-Fi. And I’m only in my mid-30s. So it makes sense to start very minimally and then, once you’re living in the new house, consider what you actually need. Even tech-savvy people rarely have more than eight devices connected via Ethernet. So why buy a bulky 24-port switch without any real need?
Tassimat schrieb:
No guest over all these years has ever wanted Wi-FiHaha… Almost all of our guests want it. Especially when the reception isn’t great. But even a Fritzbox can handle that easily if you want.
Eight Ethernet ports get used up quickly. It’s best to keep Wi-Fi free for devices that can’t or shouldn’t use LAN (laptop, smartphone).
TV, “server” (currently a TV server, backups for laptops, local file storage, and similar stuff), media PC (Intel NUC) with Kodi (Libreelec), AV receiver for internet radio and Spotify, PC, access point, firewall, console—all directly connected via LAN.
That’s already 8 devices, and that’s just in an apartment. In a house with two access points, possibly building systems, KNX on the LAN, etc., you easily go well beyond 8.
“Normal” users put everything on Wi-Fi. But the more devices broadcasting, the poorer the connection for everyone. LAN has fewer interferences by default. You can be (almost) sure that if a device suddenly stops loading Netflix or whatever, it’s not because of Wi-Fi… That’s very valuable.
A 16-port switch would be handy… Even a 24-port one… buy it once, keep it forever. Especially good brands usually last longer than the usage period.
Whether you want 10GB right away… that gets expensive.
Teemoe86 schrieb:
Haha... For us, almost everything is wired, especially when the reception isn’t optimal.
But even the Fritzbox can do this easily if you want.
Eight Ethernet ports are quickly used up. Keep Wi-Fi as free as possible for devices that can’t or shouldn’t be connected via LAN (laptop, smartphone).
TV, “server” (currently a TV server, backup for laptops, local file storage, and similar stuff), media PC (Intel NUC) with Kodi (Libreelec), AVR for internet radio and Spotify, PC, access point, firewall, console — all directly wired.
That’s already 8 devices, and this is just one apartment. In a house with two access points and maybe building systems, KNX on LAN, etc., you easily exceed eight.
“Normal” people put everything on Wi-Fi. But the more devices broadcasting, the worse the connection for everyone. LAN simply has fewer interferences. You can be (almost) certain that if a device is having trouble loading Netflix or whatever, it’s not the Wi-Fi. That’s very valuable.
A 16-port switch would be practical... even a 24-port... buy it once and keep it forever. Especially the good brands usually last well beyond the expected lifespan.
Whether you want 10Gb Ethernet right away... that gets expensive. That’s exactly how it is. Here, an apartment with an 8-port switch fully occupied and the rest handled by Wi-Fi as a temporary solution, though wired would be better. And that doesn’t even include a future child’s room that will eventually need network access — the kid is only four now.
Future PoE devices haven’t even been considered yet.
For our project, it would be almost foolish not to use at least a 24-port switch.
And yes, I want more. I want a guest network, a management network, a home network, an IoT network.
I definitely see the meaning and added value. Others don’t.
So what?
I want to bring up this topic again because I’m stuck on one point and can’t move forward.
Is there a way to control which devices are assigned an IP address via DHCP?
Specifically, let’s take an outdoor access point that is obviously connected to the network (whichever one). There may be a DHCP server active on this network. How can I prevent an unauthorized device from connecting to this port at Layer 1 (physical layer), sending a DHCP request, and getting an IP address, even though I don’t want that device on the network?
Is there a way to control which devices are assigned an IP address via DHCP?
Specifically, let’s take an outdoor access point that is obviously connected to the network (whichever one). There may be a DHCP server active on this network. How can I prevent an unauthorized device from connecting to this port at Layer 1 (physical layer), sending a DHCP request, and getting an IP address, even though I don’t want that device on the network?
Similar topics