+BudMan MVC Posted February 19, 2014 MVC Share Posted February 19, 2014 That it won't work, and is pointless -- your router is listed as an AP. So how does it magically become a gateway on pfsense loss of wan? What is going to tell all your dhcp clients to start using your new magic gateway as their gateway? Sure if the gen8 box blows up, you could take any of your other routers your now using as AP to be used as your gateway. You enabled their dhcp, you connect your modem wire into their wan port, renew all your dhcp clients to get the new info now from your routers dhcp and your up and running. That would take you all of maybe 5 minutes to do. There is no reason to try and setup a backup solution that auto kicks in a home setup where your hardware blows up. Your drawing shows pfsense with only 1 interface? So you going to run wan and lan over the same physical interface, vlans? Yeah your not going to get that to work - what was your switch? Does it support vlans? Link to comment Share on other sites More sharing options...
riahc3 Posted February 19, 2014 Author Share Posted February 19, 2014 Hello, That it won't work, and is pointless -- your router is listed as an AP. So how does it magically become a gateway on pfsense loss of wan?I thought there would be a way to run a script after x time to switch over to a gateway. What is going to tell all your dhcp clients to start using your new magic gateway as their gateway?Well the pfSense would have to pass two gateways to each DHCP client: First itself, then the "magic gateway" (since you called it) so it uses the backup. Sure if the gen8 box blows up, you could take any of your other routers your now using as AP to be used as your gateway. You enabled their dhcp, you connect your modem wire into their wan port, renew all your dhcp clients to get the new info now from your routers dhcp and your up and running. That would take you all of maybe 5 minutes to do. There is no reason to try and setup a backup solution that auto kicks in a home setup where your hardware blows up. Your drawing shows pfsense with only 1 interface? So you going to run wan and lan over the same physical interface, vlans? Yeah your not going to get that to work - what was your switch? Does it support vlans? I have the "BudMan recommended" Netgear GS105E https://www.neowin.net/forum/topic/1184369-cheapest-1000-mbps-4-port-network-switch/ http://www.netgear.com/business/products/switches/unmanaged-plus/gigabit-plus-switch.aspx#tab-techspecs According to tech specs it should indeed support VLANs. But if we go back to the original diagram: I should not need another switch then :) There is something else related to this I want to comment: As you see, there are three network ports but one of them is made for iLO access. So, I have two for sure, but that third one? Is it usuable or only for iLO access? Link to comment Share on other sites More sharing options...
+LogicalApex MVC Posted February 19, 2014 MVC Share Posted February 19, 2014 Ok for starters -- you have have copy of 2k12 server that you can use to run your domain in production. But you don't have visio ;) Here use this then for your next and future drawings. http://www.gliffy.com/ FREE!! Back to a domain? Why, what use do you have in a home setting? Your complicating it way too much! If you want to run 2k12 as domain sure, use another vm as its member to play. There is no reason to run it as your production network and have your machines login into the domain for day to day access. There just isn't. I have worked with windows domains, since before they were -- windows for workgroups 3.11, NT 3.51, NT 4, 2k, 2k3, 2k8, etc.. You think I have my pc or my wifes laptop, or any actual use box login to a domain? Why?? Now I do have a VM domain I can fire up if I need to validate or test something... But it really has little use in a home setup and is only going to bring you added headaches, especially if you have never actually used it. It depends on your needs. I have a Server 2012 box powering an AD domain for my home network. Using a computer in my home requires a domain login... There are a lot of benefits to this, at least for me. I'll also mention I'm very privacy conscientious so I don't utilize cloud based data storage services. The two major ones I like are: 1. Data syncing between computers in home. No matter what machine someone logs onto they get all of their data. This is nice when you have a laptop and a desktop. 2. Backups. I am able to backup my server VMs and included in that I am doing full data backups for everyone in the house without needing to teach them backup habits. It also makes restores very smooth. You can get a lot of this with cloud storage services like DropBox, but if you're not interested in cloud services this is a great way to setup a "private cloud". There are some valid uses for AD in the home, but it is definitely more complicated than a regular home setup. To me the trade off is worth it now that I can be sure all data on all computers is properly backed up in my nightly backup jobs. Link to comment Share on other sites More sharing options...
riahc3 Posted February 19, 2014 Author Share Posted February 19, 2014 Hello, It depends on your needs. I have a Server 2012 box powering an AD domain for my home network. Using a computer in my home requires a domain login... There are a lot of benefits to this, at least for me. I'll also mention I'm very privacy conscientious so I don't utilize cloud based data storage services. The two major ones I like are: 1. Data syncing between computers in home. No matter what machine someone logs onto they get all of their data. This is nice when you have a laptop and a desktop. 2. Backups. I am able to backup my server VMs and included in that I am doing full data backups for everyone in the house without needing to teach them backup habits. It also makes restores very smooth. You can get a lot of this with cloud storage services like DropBox, but if you're not interested in cloud services this is a great way to setup a "private cloud". There are some valid uses for AD in the home, but it is definitely more complicated than a regular home setup. To me the trade off is worth it now that I can be sure all data on all computers is properly backed up in my nightly backup jobs. You control it and problably I would too (after a while) but like BudMan said, what about family members? How do they cope with it? Also, non WS domain capable devices such as a TV or a cheap/old Linux hardware device? How do you stream media to that? Or do you have a sepearte box for that? Link to comment Share on other sites More sharing options...
+LogicalApex MVC Posted February 19, 2014 MVC Share Posted February 19, 2014 Hello, You control it and problably I would too (after a while) but like BudMan said, what about family members? How do they cope with it? Also, non WS domain capable devices such as a TV or a cheap/old Linux hardware device? How do you stream media to that? Or do you have a sepearte box for that? My family members don't complain about it, but I have run this setup for almost the last 10 years so they are just used to it to some degree. I have public shares I use for that sort of stuff. This isn't a major problem for me. Though I increasingly do have to make sure the stuff is in the public share if it needs access by those devices. My family members don't get that part as well. Link to comment Share on other sites More sharing options...
riahc3 Posted February 19, 2014 Author Share Posted February 19, 2014 Hello, My family members don't complain about it, but I have run this setup for almost the last 10 years so they are just used to it to some degree. I have public shares I use for that sort of stuff. This isn't a major problem for me. Though I increasingly do have to make sure the stuff is in the public share if it needs access by those devices. My family members don't get that part as well. I understand; I dont have that problem as public shares to TVs (for example) I am the only one that currently uses it. Link to comment Share on other sites More sharing options...
+BudMan MVC Posted February 19, 2014 MVC Share Posted February 19, 2014 Not sure I recommended the 105E, you have to use a gui client to configure it - I use the gs108T, which uses a web interface to configure it. But sure its supports vlans and should make a much better switch than just a dumb one. What script are you going to run to move the wire to the wan interface of your magic gateway, and then enable its dhcp server and then tell all your clients to renew their lease and get the new info? If you want to show your VM infrastructure connection to your physical network you should show your vswitches, etc. "I can be sure all data on all computers is properly backed up in my nightly backup jobs." This does not require a AD domain to accomplish - this just requires common storage, so you can back it up. Same goes for your syncing of data - this can be done very simply without the use of AD and nor cloud storage. Can features of AD be leveraged in the home setup - sure. But its not cost effective for starters, the typical home user has no access to Window server products, or they just have money to burn to purchase them - or they are getting them on the down low. I find it hard to believe that OP even has legal use of AD to use in his "production" network - ie his family users, etc. Now you could say he is "testing" But we all know this not really the case. If he want to test and learn, sure grab a trial copy fire up some VMs and go to town. But once he brings in his family members day to day use machines that is no longer the case. As to your 3rd nic in your pic - that is ilo, no you can not leverage that as a normal nic. If you want to add more nics then you need to buy some and put them in the slots you have their on the bottom right of your pic. Link to comment Share on other sites More sharing options...
+LogicalApex MVC Posted February 19, 2014 MVC Share Posted February 19, 2014 Not sure I recommended the 105E, you have to use a gui client to configure it - I use the gs108T, which uses a web interface to configure it. But sure its supports vlans and should make a much better switch than just a dumb one. What script are you going to run to move the wire to the wan interface of your magic gateway, and then enable its dhcp server and then tell all your clients to renew their lease and get the new info? If you want to show your VM infrastructure connection to your physical network you should show your vswitches, etc. "I can be sure all data on all computers is properly backed up in my nightly backup jobs." This does not require a AD domain to accomplish - this just requires common storage, so you can back it up. Same goes for your syncing of data - this can be done very simply without the use of AD and nor cloud storage. Can features of AD be leveraged in the home setup - sure. But its not cost effective for starters, the typical home user has no access to Window server products, or they just have money to burn to purchase them - or they are getting them on the down low. I find it hard to believe that OP even has legal use of AD to use in his "production" network - ie his family users, etc. Now you could say he is "testing" But we all know this not really the case. If he want to test and learn, sure grab a trial copy fire up some VMs and go to town. But once he brings in his family members day to day use machines that is no longer the case. As to your 3rd nic in your pic - that is ilo, no you can not leverage that as a normal nic. If you want to add more nics then you need to buy some and put them in the slots you have their on the bottom right of your pic. Yeah licensing can be an issue. For me, I am licensed to use it in my scenario. It does require common storage, but it would be trickier outside of an AD setup. I would need to modify each machine to push the common folders off to the common storage. My current setup does this automatically via GPO as soon as the user logs in. Link to comment Share on other sites More sharing options...
riahc3 Posted February 19, 2014 Author Share Posted February 19, 2014 Hello, Not sure I recommended the 105E My understanding is the E is a somewhat smart switch with no interface to manage it built in, need to use their tool to setup stuff. You missed one feature it has that can come in real handy Port mirroring This allows you to sniff traffic if need be - for example you can mirror the port connected to your router - and via something connected to that mirror you can view all the traffic in and out of your network with a protocol analyzer - say wireshark, or use something like ntop to monitor and report on types of traffic flowing in and out of your network. For the small difference in price - yes I would go with that E model, even if you don't have any current plans of using those features. What about next week ;) About time I catch you on something :p And next week, turned into the next four months :laugh: Not sure I recommended the 105E, you have to use a gui client to configure it - I use the gs108T, which uses a web interface to configure it. But sure its supports vlans and should make a much better switch than just a dumb one. What script are you going to run to move the wire to the wan interface of your magic gateway, and then enable its dhcp server and then tell all your clients to renew their lease and get the new info? If you want to show your VM infrastructure connection to your physical network you should show your vswitches, etc. "I can be sure all data on all computers is properly backed up in my nightly backup jobs." This does not require a AD domain to accomplish - this just requires common storage, so you can back it up. Same goes for your syncing of data - this can be done very simply without the use of AD and nor cloud storage. Can features of AD be leveraged in the home setup - sure. But its not cost effective for starters, the typical home user has no access to Window server products, or they just have money to burn to purchase them - or they are getting them on the down low. I find it hard to believe that OP even has legal use of AD to use in his "production" network - ie his family users, etc. Now you could say he is "testing" But we all know this not really the case. If he want to test and learn, sure grab a trial copy fire up some VMs and go to town. But once he brings in his family members day to day use machines that is no longer the case. As to your 3rd nic in your pic - that is ilo, no you can not leverage that as a normal nic. If you want to add more nics then you need to buy some and put them in the slots you have their on the bottom right of your pic. Yeah, its a simple little GUI client. Really the only downside to it is having to install it. But besides that, its OK :) Some off the top of my head pseudocode: (This would run on the DD-WRT box) Ping pfSense's WAN interface If it replies check if there is some kind of internet connectivity if there is revert any changes made if there wasnt (remove PPPoE, kill dhcp server, etc) end script if there isnt internet connectivy and/or no wan interface reply start up a PPPoE connection once it is established, start up dhcp server This would be a very sloppy script :p Vswitches look intresting but I havent looked into them too much. I thought about AD a long time ago so I got all of the PCs in my home with Professional instead of Home Premium in my house; I think the amount to pay was min. It does require common storage, but it would be trickier outside of an AD setup. I would need to modify each machine to push the common folders off to the common storage. My current setup does this automatically via GPO as soon as the user logs in.I plan to do the same thing put PULL everything instead of push; My desktop, documents, downloads, etc. would all be written on the server and when I log on, it would all be PULLED off and onto whatever device I logon to. Link to comment Share on other sites More sharing options...
Recommended Posts