F5F Stay Refreshed Power Users Networks Need assistance with setting up your lab network? Let me know what you're working on and I can guide you through it.

Need assistance with setting up your lab network? Let me know what you're working on and I can guide you through it.

Need assistance with setting up your lab network? Let me know what you're working on and I can guide you through it.

H
Hacksar
Junior Member
Find
23
10-04-2023, 11:19 PM
#1
Hi, I see you're looking to simplify your Unraid setup. You mentioned wanting to avoid using domain names and services like Traefik or Authentik. Your current approach uses VLANs on a switch for better isolation. With WireGuard, you could connect the server directly from home-lan, making it easier to access via a static IP and hostname. This would eliminate the need for domain management. Your diagram looks solid—just ensure your firewall rules allow traffic between the VLANs. If you're open to exploring alternatives, consider setting up a dedicated server with WireGuard for smoother access. Let me know if you'd like help planning the next steps!
Reply
Reply
H
Hacksar
10-04-2023, 11:19 PM #1

Hi, I see you're looking to simplify your Unraid setup. You mentioned wanting to avoid using domain names and services like Traefik or Authentik. Your current approach uses VLANs on a switch for better isolation. With WireGuard, you could connect the server directly from home-lan, making it easier to access via a static IP and hostname. This would eliminate the need for domain management. Your diagram looks solid—just ensure your firewall rules allow traffic between the VLANs. If you're open to exploring alternatives, consider setting up a dedicated server with WireGuard for smoother access. Let me know if you'd like help planning the next steps!

Reply
Reply
A
AprilFK
Junior Member
Find
8
10-04-2023, 11:25 PM
#2
It seems you're questioning whether VLAN is necessary with a four-port setup on your pfSense. You mentioned using specific ports for WAN, LAN, IoT, and server purposes.
Reply
Reply
A
AprilFK
10-04-2023, 11:25 PM #2

It seems you're questioning whether VLAN is necessary with a four-port setup on your pfSense. You mentioned using specific ports for WAN, LAN, IoT, and server purposes.

Reply
Reply
Q
Qaede
Member
Find
61
10-09-2023, 04:59 AM
#3
Yes, you can manage that. VLANs are typically employed to streamline wiring, so when subnets don’t require shared cabling or switches, you can skip them. Wireguard is usually straightforward to set up and should function well in this scenario. Just be cautious if you frequently transfer large files between subnets, as some routers may struggle with line speed under heavy configuration.
Reply
Reply
Q
Qaede
10-09-2023, 04:59 AM #3

Yes, you can manage that. VLANs are typically employed to streamline wiring, so when subnets don’t require shared cabling or switches, you can skip them. Wireguard is usually straightforward to set up and should function well in this scenario. Just be cautious if you frequently transfer large files between subnets, as some routers may struggle with line speed under heavy configuration.

Reply
Reply
S
strongboyman
Junior Member
Find
12
10-28-2023, 02:13 AM
#4
Confirm. Ensure proper fw settings enable LAN-to-SERVER communication, likely using tools like Tailscale, Tailscale with Headscale, or PivPNP. You mentioned uncertainty about your VPN server configuration.
Reply
Reply
S
strongboyman
10-28-2023, 02:13 AM #4

Confirm. Ensure proper fw settings enable LAN-to-SERVER communication, likely using tools like Tailscale, Tailscale with Headscale, or PivPNP. You mentioned uncertainty about your VPN server configuration.

Reply
Reply
F
florian12pro
Member
Find
144
10-28-2023, 05:02 AM
#5
Thanks for the suggestion regarding the headscale. I won't permit communication between LAN and SERVER without a VPN. I aim to simplify everything; there are apps available for tailscale/wireguard on Linux, Android, and Windows. I maintain an active VPN connection 24/7 so I can reach the SERVER anytime, whether I'm on mobile, Wi-Fi, or LAN.
Reply
Reply
F
florian12pro
10-28-2023, 05:02 AM #5

Thanks for the suggestion regarding the headscale. I won't permit communication between LAN and SERVER without a VPN. I aim to simplify everything; there are apps available for tailscale/wireguard on Linux, Android, and Windows. I maintain an active VPN connection 24/7 so I can reach the SERVER anytime, whether I'm on mobile, Wi-Fi, or LAN.

Reply
Reply