1/17/2024 0 Comments Neorouter windows firewall portsYou can even put a given port into “all” of the VLANs, this is sometimes referred to as a “trunk.” Trunks are used to connect multiple switches together, passing all tags between them.ĭumb switches can’t tag traffic. The network traffic gets put into the appropriate virtual network by using tags. You can also put a single switch port onto more than one VLAN. A 24 port switch could be broken down into 4 networks, with a a varying number of ports in each network. VLANs are a great way to divide up a big physical switch into smaller virtual networks. With the new router working, it’s time to configure the networks’ core: the smart switch. VLANs: everything you hate about dozens of dumb switches, plus virtualization This is also where upgrading my knowledge of routing, switching, and firewalls comes in to play with Proxmox: putting the cluster onto all 4 of my network segments using just one network port from each node. Because the cluster nodes only have 4 network ports, I need to put multiple network connections on to 1 of those network ports. I have the WAP’s dumb switch plugged in to the smart switch because I have a media server VM on the Proxmox cluster that I want to put onto the wireless network to stream video to tablets, mobile phones and smart TVs. If I never plug in the smart switch then only I would notice. Wireless access to both the Internet and to the data and media stored on the NAS. This is progress?Īs far as the family is concerned, eth1 on the router is the network. I have managed to convert a big, clunky, error-prone network into four smaller error-prone networks. So, I had my router set up, and plugging a laptop in to each dumb switch let me pull an IP from the DHCP server for the respective network segment. WAP port 3 -> port 1 on the smart switch.WAP port 2 -> eth0 on the NAS appliance.WAP port 1 -> eth1 on the router, uplink to the Internet.The family wireless network consists of 2 wireless access points, both with 4 dumb gigabit Ethernet ports: It is here that I have used my first batch of dumb old mini switches: In this scenario, a dumb switch plugged into each port of the router will provide a physically separated network at layer 2 (Ethernet) and a logically separated network at layer 3 (IP). The critical distinction is that all of these network segments connect to a different port on the router, and have firewall rules to keep them from connecting to each other. In this scenario, “real” and “physical” networks and devices are the ones that I and the family use, compared to the networks that are dedicated to the Proxmox cluster. At least half of these “real” ports are VLANs, and at least half of these “physical” devices are VMs. When I say “physical” I also mean “operated by humans” or perhaps “not a Proxmox host”. When I say “real” I really mean “operated by humans” or perhaps “not a Proxmox host”. A server and network lab for me to wreck things.A VOIP network for POE phones, ATAs, and my PBX.My wired network for my personal workstations and servers.The family’s wireless network – for phones, tablets, game consoles, and tv sticks.My plan is to have 4 “real” networks for my “physical” equipment: Mostly because I needed this to work for the family as well as for the lab, and I didn’t want to spend weeks relearning Cisco. Like my budget for server hardware, my budget for network gear is practically nonexistent, so I have been doing a lot of reusing things that should have been replaced years ago.Īfter a bit of consternation, I settled on a prosumer router and a smart switch, rather than a PC-based router and a managed switch. I have also been working on a parallel project: upgrading my home network to be segregated using VLANs. I have since spent the last several months learning about Proxmox networking using virtual box. If you aren’t interested in the story of my journey of network sexual awakening, click here. When I first started messing with Proxmox, I crashed my home network.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |