search

Burningstone91 / smart-home-setup

Installation and Configuration of my Smart Home Setup
MIT License
545 stars 34 forks source link

Network diagram tool #11

Open mcrodrig opened 2 years ago

mcrodrig commented 2 years ago

Hi,

Thanks for the detail explanation. I'm trying to replicate a similar configuration at my home and it is my reference guide. I have two questions about all your documentation (consider I'm just starting).

1.- What have you used to create the network diagram? 2.- What is the meaning of VLAN 70 NoT? 3.- Why did you separate multimedia (chromecast, alexa, ...) from the IOT network? 4.- Why did you separate the wired and wifi networks for HOME and others?

Thanks

Burningstone91 commented 2 years ago

Hi

Please see my answers below:

  1. Microsoft Visio.
  2. NoT = NoInternet of Things, it's for IoT devices which should not have access to the Internet, like my Roomba Vacuum cleaner that tried to phone home to China.
  3. I don't use Alexa, Chromecast and the like. I don't like that they know even more about me than they already do and voice control is not for me as my native language (Swiss German) is not supported by any system and speaking German is unnatural and just doesn't feel nice. I separated my multimedia devices such as AV receivers etc. from IoT to make it easier to allow/restrict access to certain online services.
  4. There was a reason back when I set it up, but I can't remember it to be honest.
mcrodrig commented 2 years ago

Thanks a lot for your responses.

A final question after I read carefully all your wiki which provides great ideas to start.

You have created a few VLAN (which they perfectly make sense), and then add some devices NUC, both NAS to multiple VLANS (https://github.com/Burningstone91/smart-home-setup/blob/master/git-pictures/lovelace_views/network_diagram.png). Why don't you create unique network and only put in a separate VLAN NoT devices?

Burningstone91 commented 2 years ago

The NUC is in multiple VLANs because the different VMs I'm running on it belong to different VLANs, e.g. the Network VM (Unifi Controller, pihole, etc) belongs to the Management VLAN, the Home Assistant VM to the IoT VLAN, etc. The NAS is in multiple VLANs due to performance reasons, I could create a separate VLAN for the NAS and then configure firewall rules accordingly, however then all traffic would need to be routed through the USG router, which would be a bit heavy and could lead to performance issues when streaming movies etc.