Network pics thread

Whats the power consumption on that little box? I can think of a couple things I would like to use a few of these for.

I'm not sure. I'll have to put it on the kill-a-watt when I get a chance. With the Baytrail based J1900 Celeron, msata card and laptop RAM, it should be very little.
 
CabinetSmall2.jpg

Expanded and rewired my structured wiring panel over the holiday break. Lots (lots!) better than before.


  • Leviton 47605-M42 enclosure
  • Leviton 47612-42B extension ring
  • Leviton 48212-6S AC power module
  • 2x Leviton 476TM-624 24-port CAT 6 panel
  • Leviton 47693-16P amplified CATV module
  • Leviton 476TL-T12 phone input distribution panel
  • Leviton 47605-42S vented premium door
  • Channel Vision C-1312 universal product holder
  • 3x Channel Vision C-1320 grid lifting
  • Leviton 47616-DSF DSL filter
  • Cisco SG300-10 10-port Gigabit Switch
  • Cisco SG300-10MPP 10-port PoE+ Gigabit Switch
 
Hi people!

I started build new 10G home network core :D (cheap and powerful)
Mikrotik CRS226-24S-2S+ (connect to low speed networking, 1G devices)
Mikrotik CCR1009-1S-1S+ (2 internet channel balance+failover, IPv6 gateway, OVPN gateway, VLAN router and firewall)
D-Link DXS-1210-12SC (connect 10G links... in future planned also connect 10G fiber to my friends, between building)

Micro-ITX PC - torrent client, file share, XEN Server, DNS server, server of my blog.
ATX PC - Backup server

Now i preparing to buy more 10G NICs and HDDs.

20160104_171512-e1451918464460.jpg


20160104_171349-e1451918536754.jpg



Unfortunately internet in our coutry is too slow. Therefore i will be use 10G links for file sharing into local network.
4963443712.png
 
Last edited:
that's slow?
Yes, it's 2 channels aggregated together.
In our capital can connect 1G fiber, but in small city like my(99% of russia) we can connect only one channel 100 Mbps maximum.

For connect 2 channels i waited for a long time, when internet provider have free ports. I had to conclude 2 contracts, at 18 months each. It's too difficult, but fortunately very cheap :)
(50Mbps@day 100Mbps@night * 2 channel) + 1 static IP = 7.6$ per month

I am be very happy if i connect more additional channels, but unfortunately it is not possible, my ISP will kill me. I prayed long-long time for get 1+1 channel....
 
Last edited:
Mikrotik CCR1009-1S-1S+ (2 internet channel balance+failover, IPv6 gateway, OVPN gateway, VLAN router and firewall)

How are you doing load balancing on the 1009-8G-1S-1S+ (I have one too!) do you use a script or just ECMP via static routes?
 
How are you doing load balancing on
It is very complicated to my poor english, but i try to explain.
1 stage, i filtred some critical protocols like as SMTP DNS FTP SSH POP3 IMAP, and send it always via primary channels with static IP.
2 stage, i marks incoming connections and send answer only via incoming channels.
3 stage, specific protocols and services i always devide by two via NTH packet by packet (torrent, speedtest :D )

4.1 stage... it is magic!!!.... i set each new DST address of new connections to specific address list(via NTH / 2) and save it on 6 hours. I get 2 dynamic address list... 1 for first channel and 2 for second channel.
4.2 stage, set rouring mark on 1 and 2 address list to first and second channels.

Absolutely no script! All work only on firewall rules.
Registration on services, sites and forums keep very strong, because each dst IP hold via specific channels on 6 hours. if you use these services again until expire, time period(6h) renew.
All dst IP on stages 4 save to 2 channel randomly and saved to 6 hours. Traffic balancing avg. 50/50 (except 1-2 stage)
It is work very good! Mikrotik wiki examples is sucks!
 
Last edited:
It is very complicated to my poor english, but i try to explain.
1 stage, i filtred some critical protocols like as SMTP DNS FTP SSH POP3 IMAP, and send it always via primary channels with static IP.
2 stage, i marks incoming connections and send answer only via incoming channels.
3 stage, specific protocols and services i always devide by two via NTH packet by packet (torrent, speedtest :D )

4.1 stage... it is magic!!!.... i set each new DST address of new connections to specific address list(via NTH / 2) and save it on 6 hours. I get 2 address list... 1 for first channel and 2 for second channel.
4.2 stage, set rouring mark on 1 and 2 address list to first and second channels.

Absolutely no script! All work only on firewall rules.
Registration on services, sites and forums keep very strong, because each dst IP hold via specific channels on 6 hours. if you use these services again until expire, time period(6h) renew.
All dst IP on stages 4 save to 2 channel randomly and saved to 6 hours. Traffic balancing avg. 50/50 (except 1-2 stage)
It is work very good! Mikrotik wiki examples is sucks!

That makes sense, how do you do the NTH rules packet by packet?

Give us an example of the config maybe?

Thanks :D
 
I think this is little offtopic... i send it to PM

Update... oops! i can't send PM :(


HTML:
/ip firewall mangle
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-port=1024-65535 new-connection-mark=NTH1 nth=2,1 passthrough=no protocol=udp src-address=192.168.88.9
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-port=1024-65535 new-connection-mark=NTH1 nth=2,1 protocol=tcp src-address=192.168.88.9
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-port=1024-65535 new-connection-mark=NTH2 nth=2,2 protocol=tcp src-address=192.168.88.9
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-port=1024-65535 new-connection-mark=NTH2 nth=2,2 protocol=udp src-address=192.168.88.9
add action=mark-connection chain=prerouting  connection-state=established,related,new dst-address-list=Via_real_IP in-interface=SFP-10G-Switch new-connection-mark=NTH1 passthrough=no
add action=mark-connection chain=prerouting connection-state=established,related,new in-interface=SFP-10G-Switch new-connection-mark=NTH1 passthrough=no src-address-list=SRC_Via_real_IP
add action=mark-connection chain=prerouting connection-state=established,related,new in-interface=maxi new-connection-mark=NTH1 passthrough=no src-address-list=SRC_Via_real_IP
add action=mark-connection chain=prerouting connection-state=established,related,new in-interface=radiokrozhok new-connection-mark=NTH1 passthrough=no src-address-list=SRC_Via_real_IP
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=established,related,new in-interface=ether1-TTK-pppoe new-connection-mark=TTK1 passthrough=no
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=established,related,new in-interface=ether2-TTK-pppoe2 new-connection-mark=TTK2 passthrough=no
add action=mark-routing chain=output connection-mark=TTK1 disabled=yes new-routing-mark=TTK1 passthrough=no
add action=mark-routing chain=output connection-mark=TTK2 new-routing-mark=TTK2 passthrough=no
add action=mark-routing chain=prerouting connection-mark=TTK1 disabled=yes new-routing-mark=TTK1 passthrough=no
add action=mark-routing chain=prerouting connection-mark=TTK2 new-routing-mark=TTK2 passthrough=no
add action=add-dst-to-address-list address-list=NTH1 address-list-timeout=2d chain=prerouting connection-state=new dst-port=22,25,53,465,993,995 protocol=tcp src-address=192.168.0.0/16
add action=add-dst-to-address-list address-list=NTH1 address-list-timeout=2d chain=prerouting connection-state=new dst-port=22,25,53,465,993,995 protocol=udp src-address=192.168.0.0/16
add action=add-dst-to-address-list address-list=NTH1 address-list-timeout=6h chain=prerouting connection-mark=no-mark connection-state=new dst-address-list=!NTH2 nth=2,1 packet-mark=no-mark src-address=192.168.0.0/16
add action=add-dst-to-address-list address-list=NTH2 address-list-timeout=6h chain=prerouting connection-mark=no-mark connection-state=new dst-address-list=!NTH1 nth=2,2 packet-mark=no-mark src-address=192.168.0.0/16
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-address-list=NTH1 new-connection-mark=NTH1
add action=mark-connection chain=prerouting connection-mark=no-mark connection-state=new dst-address-list=NTH2 new-connection-mark=NTH2
add action=mark-connection chain=prerouting connection-state=new dst-port=8080 new-connection-mark=NTH1 nth=2,1 protocol=tcp
add action=mark-connection chain=prerouting connection-state=new dst-port=8080 new-connection-mark=NTH2 nth=2,2 protocol=tcp
add action=mark-routing chain=prerouting connection-mark=NTH1 disabled=yes new-routing-mark=TTK1 passthrough=no
add action=mark-routing chain=prerouting connection-mark=NTH2 new-routing-mark=TTK2 passthrough=no

Dynamic lists
2.png


Rules
1.png
 
Last edited:
I think this is little offtopic... i send it to PM

Update... oops! i can't send PM :(

:( oh well, happy new year anyway! :)

UPDATE:

ah! thanks for that :)

I get it now, your making an address list based on the dst-address you want to get to and route it 50/50 via NTH1 and NTH2, yes?
 
Last edited:
I not understand you clearly.
I have two different routing table TTK1(default gw on it primary channel) and TTK2(default gw secondary channel). NTH1 sets routing mark TTK1, NTH2 => TTK2.

But i recommend to make rules by yourself. I think i can't explain clearly how it works. And this topic not for that. Just for pics.

HNY2016!
 
Drop running to every room plus ip cameras, Most the Coax isn't being used but put it in anyways just in case later down the line I want to ditch the TiVo and TiVo Minis.

3x T20 Servers running ESXi each with 32gb RAM, 4x2tb drives, and 1x200gb ssd used for vSAN.

The 7 bay Synology has 2x3b drives for surveillance station and 6x500gb ssd drives for iSCSI

The 2 bay Synology has 2x6tb drives for media server (plex)

Sophos firewall is off now but it's an SG330, running the XG Virtual Edition right now.

Switch is a 48 port 3750x

Access point is a UniFi AC
 
Drop running to every room plus ip cameras, Most the Coax isn't being used but put it in anyways just in case later down the line I want to ditch the TiVo and TiVo Minis.

3x T20 Servers running ESXi each with 32gb RAM, 4x2tb drives, and 1x200gb ssd used for vSAN.

The 7 bay Synology has 2x3b drives for surveillance station and 6x500gb ssd drives for iSCSI

The 2 bay Synology has 2x6tb drives for media server (plex)

Sophos firewall is off now but it's an SG330, running the XG Virtual Edition right now.

Switch is a 48 port 3750x

Access point is a UniFi AC

how many watts average total in your calculation?
 
Been awhile since I've been on here. Misplaced my account.

I used to post pics of my home Cisco study racks, but thought I might post my work lab and show that all that work pays off... My new name could be misconstrued. Working on CCIE now and picked up my CCNP in R&S a year or so ago.

I'm currently doing work on a campus building that will be running cisco 6880X VSS cores, and 6800ia instant access, and through a simulated network here on an ADVA FSP 3000 ROADM layer one solution to OSPF rings run off a Cisco ASR9001 ABR's with 9000v Satellites. There are a couple ASA 5585's burning in behind the racks, and the Nexus 5ks's and 2ks will be part of the lab for the Virtual desktop solution once the stuff from Dell and Citrix comes in. I just put in a couple ASA 5545's that we'll be working on some guest internet tunneling.

lab50.jpg
 
nice battery plant

whats with the mixer and the roland speaker?
 
The ADVA is on DC.

Speaker and mixer is for on-hold music for the Voip network.

Dear lord please fix that sloppy fiber ball... not cool.

Because that would be an efficient use of my time in a lab setup :p ?

sh controllers TenGigE0/0/2/0 phy

Good to go...
 
Last edited:
Cross posting this here, might be of more interest on this forum

Put together a new pfSense box this week. Basically a DIY SYS-5018A-FTN4, but saved about $120 putting it together myself.

Wiring was a real pain with the PSU location, but it ended up OK. Added a couple 40mm fans as the stock configuration has none besides the PSU.

Couple of tips for anyone building a similar system:
Follow the instructions in the manual for DIMM slot usage priority. My board wouldn't boot with a single stick of RAM in the secondary slot.
The connector for the front on/off switch and activity lights must be oriented as seen in my photos. It looks backwards, but it's not.

Specs:
Supermicro CSE-505-203B Chassis/PSU
Supermicro MBD-A1SRi-2758F-O MotherBoard/CPU
Supermicro MCP-220-00044-0N HDD/SSD bracket
Kingston KVR16LSE11/8KF RAM
Intel 530 Series 120GB SSD
Scythe Mini KAZE 40mm SY124010L (2)

AXnMI3a.jpg
 
Cross posting this here, might be of more interest on this forum

Put together a new pfSense box this week. Basically a DIY SYS-5018A-FTN4, but saved about $120 putting it together myself.
snip..

Nice little system, have you tested routing performance?
How much was total cost for it?
 
Really like the small 1U none full depth boxes, they really makes sense for small systems.
im doing a small VPN box for a project and thinking about using this type of box.
 
Here is a layout of my small-time home network... My work doesn't involve computers or servers or any of that stuff. I don't have any recent pictures of my "rack" which is an old stereo stand with my stuff sitting in it.

network.png
 
IMG_2221.jpg


There are defiantly nicer racks on this forum. Here is mine. The rack is currently temporary setup for Cisco training. The Crestron stuff is currently programmed as a serial switch so I can select which device I want to control via the one serial port on my pc. Buffalo router is the main internet router while the Linksys router is for the virtual machine internet and experimental testing.

Content top down:
Crestron CNMSX-PRO
Crestron CNMSX-AV
Buffalo WHR-HP-G54 DD-WRT
Linksys WRT160N DD-WRT
Crestron QM-RMC
Cisco 3620 Router
Cisco 2500 Router
Cisco 2600 Router
Cisco 2924 Switch (x3)
Extreme Networks Summit 200-24
Dell PowerConnect 3048
Rack power

Please, how did you configured the crestron CNMSX to connect the serials to the Equipment's console?
 
New year, new switch, new pictures. I've now got a pair of HP 1810G-24 switches instead of just one. Just one MicroCloud node left to populate, so 3 more cables to run. If I get bored, I may end up re-wiring the whole thing. Right now, it's configured pretty poorly. No redundant paths. Daisy-chained switches. All the crap that would drive me bonkers at work. So why didn't I just do it right the first time? My cables are labeled, and I love having them accurately so. I need to buy some laserjet cable labels. Soon. Soon.

HEvouAfh.jpg
cr7MBP1h.jpg
 
Last edited:
Built a new PFsense Router:
vucGRigl.jpg


PLBqO10l.jpg


LlFqXgql.jpg


Hardware:
L3426 Xeon (Quad + HT)
Supermicro X8SIE ATX Motherboard
16GB DDR3 ECC (2*8GB)
1*IPMI port
6*Intel Gigabit NICs (4*Intel PCI-E card)
32GB MSATA SSD inside for the OS

It idles at about 38 Watts, bit more than I'd like, but still halfway sane.
 
That is a neat system, totally what I'd do as well if I was building a new Pfsense box. 38w is quite impressive for "real" computer hardware too, which is often at 100w+. Almost worth upgrading my old core2duo based box just for the power savings.
 
Thanks guys! The inside of the case:

GFOI4fJl.jpg


I need to redo the cabling inside, along with getting a proper 90 degree PCI-E adapter and a short SATA cable.
I love the MSATA -> SATA adapter cards, it's small and does the job remarkably well.

From the other side, you can see the 40mm fan that I've zip tied in place as air intake.
lE9Qse0l.jpg


I don't have room to mount two 40mm fans at the back of the case for exhaust, but so far the CPU fan is doing a great job at pushing air straight out the rear.
 
Here is my little humble setup. Not close to yours guys setup but it works.

mini-itx server on the left. Host Plex, sickbeard, and a few other apps
HP Micro server(one of the OG NL-34 ones) with 5 1TB drives running freenas
Netgear N router with wireless disabled
Surfboard 6120 with a 50/5 TWC connection
unifi ac lite POE access point

IMG_20160428_213736.jpg


IMG_20160428_204245.jpg
 
Slick setup! What are the hardware specs of the mini-ITX server? :D
It has the following

Antec mini itx case
Biostar h61 board
Pentium dual core no HT
8gb RAM
Old Intel og 80gb ssd(no trim) as a boot drive
500gb 5400 rpm laptop drive for downloads etc..
Win 7


It's really basic but gets the job done. Super stable and can handle 2 to 3 plex transcodes if I am not doing all 1080p

I will probably upgrade to a quad core soon and more memory so I can host a esxi whic will allow me to run some vms like a psense router and a few others. Should be fun
 
Here is my little humble setup. Not close to yours guys setup but it works.

mini-itx server on the left. Host Plex, sickbeard, and a few other apps
HP Micro server(one of the OG NL-34 ones) with 5 1TB drives running freenas
Netgear N router with wireless disabled
Surfboard 6120 with a 50/5 TWC connection
unifi ac lite POE access point
Looks similar to my humble closet setup. Love the Unifi APs. Why not combine the duties of the mini-ITX and the HP Micro? Doesn't freeNAS allow you to run docker apps? I'm guessing the HP may not have the grunt to run Plex?
 
Looks similar to my humble closet setup. Love the Unifi APs. Why not combine the duties of the mini-ITX and the HP Micro? Doesn't freeNAS allow you to run docker apps? I'm guessing the HP may not have the grunt to run Plex?
Correct. The micro sever has an old and moblie turion. Transcoding would murder that little system. In the future I want to build an all in one system
 
Finally got around to putting in my srx220 at home. Mainly so I can use it as the only switch and have site-site to my colo gear (fronted by a srx240). Not pictured is a UAP. Sadly I have to nat off the VZ router so my set-top boxes will play nice.

 
Last edited:
  • Like
Reactions: rma
like this
Back
Top