Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 ... 8 9 [10] 11

Author Topic: 10 Gb, Dual-WAN, segmented home / home office Setup  (Read 18066 times)

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #135 on: April 29, 2020, 01:12:22 PM »

Right then.

With the core in place for normal, regular home service it has been time for fun with the build of the lab network.

Due to what needs to be built and a desire to minimise the network junk outside of my cabinet alongside using the physical appliances there is some great fun here involving the UDM Pro, one of the 10G switches, another physical GigE switch, 2 more physical routers, 2 SD-WAN appliances.

The logical construct involves an L2TP tunnel to simulate more direct Internet access to the SD-WAN , 4 BGP sessions to simulate an MPLS network and route import/export, a basic 3 node OSPF area to exchange LAN routes and obviously some logical and physical segmentation in terms of VLANs and vNICs.

Then the easiest part: the SD-WAN IKE-less IPSEC/UDP tunnels.

So that's how I spent a part of my working day.
Logged

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #136 on: April 29, 2020, 08:34:24 PM »

Incidentally the dual-WAN will be active-passive so don't expect any super-high speed tests.
Logged

Ronski

  • Helpful
  • Kitizen
  • *
  • Posts: 4300
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #137 on: May 05, 2020, 06:52:36 AM »

Carl, just been reading about you and your house in PCPro, it's ludicrous that they installed 7 phone points and no network sockets, absolutely clueless and incompetent idiots.
Logged
Formerly restrained by ECI and ali,  now surfing along at 390/36  ;D

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #138 on: May 05, 2020, 08:40:13 AM »

Hah forgot about that.  ;D
Logged

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #139 on: April 03, 2021, 04:31:24 PM »

As time has gone I've been busy. There remains zero copper between rooms, Invisilight fibre connects them.

Everything I'm using is in my signature. I'm not going to shove an enormous speed test link in there, however depending on the time of day, how much other people on my split are using their connections, etc, I see between 2000 and 2130-ish Mb/s with odd drops to the 1600s.

GPON is good for about 2,250 Mb/s of IP.
« Last Edit: April 03, 2021, 11:38:57 PM by CarlT »
Logged

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #140 on: April 03, 2021, 06:52:13 PM »

Everything I'm using is in my signature.

Upon review of your signature block, I see --

Quote
ISP: BT Full Fibre 900. Zen Full Fibre 900. Faelix FTTP 300

So you now have three separate services delivered over the one fibre to a 4+2 ONT? Or have I misinterpreted it?  :-\
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #141 on: April 03, 2021, 07:45:09 PM »

That's exactly what I'm using.

2 are over BTW, the other not BTW.
Logged

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #142 on: April 03, 2021, 09:29:32 PM »

Thanks for the confirmation.  :)
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #143 on: April 03, 2021, 10:57:50 PM »

 :o :o :o :'(
Logged

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #144 on: April 03, 2021, 11:09:06 PM »

Basic physical diagram attached.
Logged

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #145 on: April 03, 2021, 11:30:39 PM »

As you can tell from the physical structure there's a secondary switched path via WiFi so if I lose a big link I still have connectivity, albeit over WiFi at a gigabit give or take.

Connectivity is attached in PDF.

I've segmentation to do, but have been busy with a lot of other things related to work, study and home.

Mangle file is a section of the firewall rules. Inbound connections are tagged with the link they came in on so that they go out of the same one, outbound connections have source/destination IP and port hashed. 3 of the 7 rules take BT, 3 Zen and 1 Faelix providing 3/7, 3/7, 1/7 flow split.

https://wiki.mikrotik.com/wiki/Manual:PCC

A few other bits I'll keep to myself as they include some tweaks and specifics that I'm not going to advertise as they include public IP addressing I'd prefer not to advertise but the interested get the idea.

With the complex policy-based routing I am using the CRS2004 can handle at least 4 Gb/s I guesstimate. As I am able to drop connections I will be able to reduce the rule set and retrieve some capacity.

Have had to spend a few quid but have kept the home network discrete as required by SWMBO.

EDIT: Neighbours have now largely gone to bed so I can nom the PON again.

https://www.speedtest.net/result/c/c8ab1b3e-e4bf-4ea0-91e7-eaeebd61c63b
« Last Edit: April 03, 2021, 11:37:56 PM by CarlT »
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #146 on: April 04, 2021, 03:33:48 AM »

So is this NOT over an SD-WAN right now?
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #147 on: April 04, 2021, 10:42:07 AM »

No. Load balancing as above. There's an SD-WAN running in the lab with an interface for each WAN link.

It runs beside the normal network.

Unlikely as it is maxing the whole lot via AWS would quickly get expensive. Would need to spend a fortune just on the fixed costs to avoid potential bottlenecks.

I don't run the lab device or the remote network it connects to now.
Logged

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #148 on: April 04, 2021, 11:30:35 PM »

:o :o :o :'(

You and Carl opposite ends of the tech spectrum for connectivity. O_o
Logged

niemand

  • Kitizen
  • ****
  • Posts: 1836
Re: 10 Gb, Dual-WAN, segmented home / home office Setup
« Reply #149 on: April 04, 2021, 11:37:50 PM »

Why I have the 3 is a bit of a story but mostly focused around that I wasn't paying for one of them and required another for resiliency.

I'm happy to drop one of the 900s as soon as the contract allows. The Faelix is run over Zen's on-net network, the Zen 900 is run over BT Wholesale.
Logged
Pages: 1 ... 8 9 [10] 11
 

anything