| - Ethernet from local ISP that is fed into Ubiquity EdgeRouter Lite running OpenBSD (octeon platform) with extensive PF setup - 8 port managed switch connected to the router with a number of VLANs (IoT network, general/guest Wifi, trusted local network + Wifi, NAS Service Processor, DMZ network, externally accessible services network etc.) - 3 Apple AirPort Extreme WiFi access points (for various VLANs) + 1 in another room for extension via Ethernet. These run in bridge mode. - 2 more unmanaged Netgear 4/5 port switches (16 port managed switch is hard to get these days due to chip shortages and also significantly more expensive than the current solution) connected to the managed switch - another Netgear switch in the closet to connect the in wall Ethernet sockets from several rooms together - handful of Raspberry Pi boxes running Raspbian (Pihole/NTP server, another for Weather/environment monitoring, another for Docker to host some Wordpress - via Cloudflare tunnel, another for displaying weather information on eInk display, another for monitoring my working habits) - NAS running TrueNAS in Fractal design Node 304 case with 6 drives, PCIe SAS card (for redundancy/more robust checksumming), beeper for alerting. Backups done to Backblaze and also to internally strapped USB drive. Some of the stuff has alerting setup via PagerDuty (esp. the NAS and environment monitoring). General monitoring done by Grafana. Most of the stuff is located on the top of a large bookshelf. Except the NAS everything is fanless and the NAS was modded to be as quiet as possible (large silicone feet, large+slow fans) The network is double NAT and there is no IPv6 which sucks. Would like to buy Intel NUC for learning K8s however these are hard to get these days, at least in the spec I want. |