What's your home network look like?

SimonV · February 26, 2015, 10:49:52 AM

Quote from: Ironman on February 26, 2015, 10:47:31 AM
Also, I'd love to get some Juniper gear but it's super pricey. Id also love to get a small block of public IPs like Reggle, but again, it's too pricey for me.

Check eBay for SRX100s. You can find them pretty cheap and they support a whole lot of features

icecream-guy · February 26, 2015, 11:20:42 AM

Here, DSL Modem (basic firewall configured here) into L2 12 port switch, cable TV box and video game console go into this switch too, as well the hardware firewall. hardware firewall has more granular firewall configuration than modem, static routes send internal traffic to the network core switch, the hardware firewall connects via a fiber across the house into my 24 port routing capable switch, this is where all the intervlan routing occurs. I have several vlans defined, for dedicated purposes, one is for my PC, software firewall runs on PC (detailed firewall rules set here). another is wireless AP. ACL on the wireless vlan svi only permits traffic to the internet, no internal network access for wireless users. DHCP for wireless is on the core switch, pool size is exactly the same size as the number of wireless devices the family has.

fairly secure, still need to finish that project to remove vlan 1 from the network.

Ironman · February 26, 2015, 11:25:28 AM

Quote from: SimonV on February 26, 2015, 10:49:52 AM
Quote from: Ironman on February 26, 2015, 10:47:31 AM
Also, I'd love to get some Juniper gear but it's super pricey. Id also love to get a small block of public IPs like Reggle, but again, it's too pricey for me.

Check eBay for SRX100s. You can find them pretty cheap and they support a whole lot of features

Thanks, its on my wish list now!

routerdork · February 26, 2015, 03:02:04 PM

Motorola SurfBoard on the line
Cisco 3825 connecting to the modem doing NAT with ZBF, AnyConnect, and a NM-NAM
Whole house is wired up to a patch panel in the basement
Catalyst 2970 in the basement connects to Synology NAS, Dell T110, WLC 4402, a handful of 1252 AP's, and an 1142 AP
Catalyst 2940 connects all of my home theater equipment to the 2970
Netgear GS108T connects my PC and a few other devices back to the 2970
T110 uses the NAS for iSCSI and runs VMware with Cacti, Console Server, 2x BIND, 3x ASR9K, 3x N7K, Dynamips, IOU, 2x CUCM, and CUC (I'm looking into a new server as 16GB of RAM isn't enough)
NAS also acts as an NVR for a home security camera

Once I've got room for more VMs I'd like to add some CSR100v routers and at least one F5

I also have an SRX100B still sitting in the box, think I got it on eBay for $100 but I could be wrong. As well as a 5505, some 3560's, 3550's, couple 2621's, another 3825, 2801 w/CME, 2511, 3 older Juniper routers, and a couple other random switches or routers.

Nerm · February 27, 2015, 08:10:48 AM

What is sad is some of you have home labs that put my work lab to shame. Of course you also probably "play" with more complex stuff than I "work" with lol.

wintermute000 · March 06, 2015, 06:41:25 PM

Guys for SRX, if you are content to leave a server running 24x7 you can simply use a vSRX. A colleague of mine battle-tested it for months and had no issues. Of course a 'real' SRX100/110 can be had for under 300 USD so not exactly unaffordable.

SimonV · March 07, 2015, 10:18:21 AM

I've got a couple of SRX100's for sale if any Europeans are interested

wintermute000 · March 10, 2015, 07:53:59 AM

Why are you not in Australia

SimonV · March 19, 2015, 10:17:14 AM

My current gig has a couple of surplus Nexus 5k's and they want to sell them. Tempted, or would that be madness for a home lab?

deanwebb · March 19, 2015, 10:30:27 AM

Madness? Only if you don't get an HA pair!

icecream-guy · March 19, 2015, 11:07:15 AM

NX 5010's are selling us $1200-1500 on ebay

SimonV · March 19, 2015, 11:12:48 AM

Pretty affordable, not sure if my gf would agree though. And the noise of course, shutting them down every day is probably not too good either.

deanwebb · March 19, 2015, 12:36:14 PM

Get them now and then sell them off when you're done labbing for your CCIE.

that1guy15 · March 19, 2015, 07:15:43 PM

5Ks would be pretty bad ass to have in the lab. INE is still using them for the CCIE DC so they still have a lot of life.

You're right the noise on those guys is a big issue. The 5K is the largest and heaviest 1U/2U switch I have ever seen. And the length of them, damn!

Might be able to buy some low noise fans for them and improve the noise though.

Reggle · March 20, 2015, 07:19:23 AM

Power consumption... No thank you. And the noise is horrible, I'm pretty sure you can hear them through a thin concrete wall. Also, why bother with Nexus for a lab? CCNP? CCIE Data Center okay, but not for the other tracks.