Hi,
I'm configuring my home network together with a PVE host. I'd like to organize it as a local class B subnet organized as XXX.XXX.category.clientId.
- 10.1.0.X = ISP stuff (modem/router with web interface)
- 10.1.1.X = router DHCP client range (computers, phones, visitors, smarthome devices, ..)
- 10.1.2.X = real infrastructure (PVE hosts) - 1x permanent server, 1x desktop pc dualboot, 1x raspberry pi
- 10.1.3.X = public virtual infra (proxies to private infra, file shares, vpn, ..) - port forwarded in the router
- 10.1.4.X = local virtual infra (development servers, smarthome servers, ..) - accessible from LAN only
- 10.1.5.X = private virtual infra (family website, ..) - accessible from LXC/VMs through whitelisting only
My expertise is development and not so much networking, but I won't shy away from trying to set this up as a semi-professional network without redundancy. Working out a custom setup will help me understand networking better for my job too. Is this a logical setup? My router does not support VLANs, but they're probably required for 10.1.5.X, what do you suggest instead? Links to guides or named concepts are very appreciated.
My current work-in-progress setup is added in screenshots. The 100Mbps in the screenshot is only for power saving until I start setting up file shares.
Thanks for any suggestions!
I'm configuring my home network together with a PVE host. I'd like to organize it as a local class B subnet organized as XXX.XXX.category.clientId.
- 10.1.0.X = ISP stuff (modem/router with web interface)
- 10.1.1.X = router DHCP client range (computers, phones, visitors, smarthome devices, ..)
- 10.1.2.X = real infrastructure (PVE hosts) - 1x permanent server, 1x desktop pc dualboot, 1x raspberry pi
- 10.1.3.X = public virtual infra (proxies to private infra, file shares, vpn, ..) - port forwarded in the router
- 10.1.4.X = local virtual infra (development servers, smarthome servers, ..) - accessible from LAN only
- 10.1.5.X = private virtual infra (family website, ..) - accessible from LXC/VMs through whitelisting only
My expertise is development and not so much networking, but I won't shy away from trying to set this up as a semi-professional network without redundancy. Working out a custom setup will help me understand networking better for my job too. Is this a logical setup? My router does not support VLANs, but they're probably required for 10.1.5.X, what do you suggest instead? Links to guides or named concepts are very appreciated.
My current work-in-progress setup is added in screenshots. The 100Mbps in the screenshot is only for power saving until I start setting up file shares.
Code:
auto lo
iface lo inet loopback
iface eno1 inet manual
iface enp3s0 inet manual
auto vmbr0
iface vmbr0 inet static
address 10.1.2.1/16
gateway 10.1.0.1
bridge-ports eno1
bridge-stp off
bridge-fd 0Thanks for any suggestions!
