====== Home Network (2020) ======

===== My Home Office Network =====

{{ diagram1.png?600 |}}

==== In real it looks like this: ====

{{ my_home_network_d_l.jpg?600 |}}

===== Hardware =====

  * [[https://en.avm.de/products/fritzbox/fritzbox-6490-cable/|Fritz!Box 6490 Cable Modem and Router]] (for the primary access gateway)
  * [[https://en.avm.de/products/fritzbox/fritzbox-7490/|Fritz!Box 7490 DSL Modem and Router]] (for the secondary access gateway)
  * [[https://www.ui.com/edgemax/edgerouter-x/|Ubiquiti Edge X Router]] (for failover from cable to DSL)
  * [[https://www.cisco.com/c/en/us/support/switches/sg300-28-28-port-gigabit-managed-switch/model.html|Cisco SG300-28 Managed Switch]] (I needed a switch, this is fan-less; Cisco sucks!)
  * [[https://www.netgear.com/home/products/networking/switches/soho-ethernet-switches/GS305.aspx|NETGEAR GS305 5-Port Unmanaged Gigabit Switch]] (for an unused DMZ... :D)
  * [[https://www.gl-inet.com/products/gl-ar150/|GL AR150-Ext (Runs OpenWrt by default)]] (for a private Wifi without Internet access)
  * [[https://www.raspberrypi.org/|Raspberry Pi]] (for the TOR entry node)
  * [[https://www.amazon.de/gp/product/B015TCA2EM/|Ralink WiFi Dongle with RT5370 Chipset (Works in AP mode using hostapd)]] or
  * [[https://www.amazon.de/gp/product/B073J3HXZH/|USB Wireless Adapter MediaTek Ralink RT5370N (Works in AP mode using hostapd)]]

===== Software =====

TODO

===== Tips and Tricks =====

==== Ubiquiti Edge X ====

=== Enable NAT Hardware Offloading ===

Without this feature I got only about 300 Mbits data rates to my ISP. Since I have an 1.000 Mbits [[https://hanez.org/uplink.html | uplink]] I needed to enable this feature. With NAT Hardware Offloading I get the full data rate but Deep Packet Inspection (DPI) does not work anymore. Since I do not analyze traffic in any way on my router I don't care about this.

<code>configure
set system offload hwnat enable
commit
save
exit</code>

Manual: [[https://help.ui.com/hc/en-us/articles/115006567467-EdgeRouter-Hardware-Offloading]]

===== Links =====


  * [[https://wiki.debianforum.de/WLAN-Access-Point_mit_hostapd_und_USB-Stick|WLAN-Access-Point mit hostapd und USB-Stick (german)]]
  * [[https://www.elektronik-kompendium.de/sites/raspberry-pi/2002161.htm|Raspberry Pi als WLAN-Bridge einrichten (WLAN-Access-Point) (german)]]
  * [[https://www.elektronik-kompendium.de/sites/raspberry-pi/2002151.htm|Raspberry Pi als WLAN-Access-Point einrichten (german)]]
  * [[https://learn.adafruit.com/setting-up-a-raspberry-pi-as-a-wifi-access-point/overview|Setting up a Raspberry Pi as a WiFi access point - Make the most adorable little WiFi router]]
  * [[http://wiki.stocksy.co.uk/wiki/Multiple_SSIDs_with_hostapd|Multiple SSIDs with hostapd]]
  * [[https://learn.adafruit.com/onion-pi/overview|Onion Pi - Make a Raspberry Pi into a Anonymizing Tor Proxy!]]
  * [[https://www.pivpn.io/|PiVPN - The simplest way to setup and manage a VPN, designed for Raspberry Pi.]]
  * [[https://retropie.org.uk/|RetroPie - Retro-gaming on the Raspberry Pi]]
  * [[https://openwrt.org/toh/gl.inet/gl-ar150|OpenWrt GL.iNet GL-AR150]]
  * [[https://openwrt.org/toh/ubiquiti/ubiquiti_edgerouter_x_er-x_ka|OpenWrt Ubiquiti EdgeRouter X (ER-X), EdgeRouter X-SFP (ER-X-SFP) and EdgePoint R6 (EP-R6)]]
  * [[https://www.digitalocean.com/community/tutorials/how-to-forward-ports-through-a-linux-gateway-with-iptables|How To Forward Ports through a Linux Gateway with Iptables]]
  * [[https://www.ducea.com/2006/08/01/how-to-enable-ip-forwarding-in-linux/|How to enable IP Forwarding in Linux]]