-
My network consists of a Ubiquiti EdgeRouter X & a Cisco switch.
-
Wireguard is the VPN tunneling protocol used to connect external devices to the network.
-
WAN network architecture & implementation By Usman
Additional Info
My Home LAN
-
Ubiquiti EdgeRouter X -
erx.zahid.lan -
Cisco 3560G -
core.zahid.lan -
Raspberry Pi 4B 8GB -
pi.zahid.lan- Running as a host for Docker containers
- 120GB M.2 SATA SSD (boot drive) + 8TB HDD
- Docker Containers:
UsmanNet - Owned & Written By Usman (see blog.usman.network)
-
Ubiquiti Edgerouter X -
erx.usman.lan- WireGuard VPNs to
erx.zahid.lananddn42-vps.lan. - OSPF area 1 neighbors with
erx.zahid.lananddn42-vps.lan. - Source NAT on VPN interfaces, such that any outbound traffic destined for DN42, is NATed to a DN42 IP.
- Router-On-A-Stick- VLANs - with a VLAN trunk down to the Cisco 2960G.
- WireGuard VPNs to
-
Cisco 2960G -
usman-cisco.lan- Basic Layer 2 switching to normal end user hosts.
-
Raspberry Pi 4 8GB -
pi.usman.lan- Some of the Docker Applications I host:
- Unbound DNS Server DNS A and PTR records, for the
.landomain. - Plex Media Server
- Radarr, Sonarr, Jackett, qBittorrent.
- Syncthing.
- NGINX Proxy Manager - routes a few of the mentioned services through Cloudfare’s WAF, for DDOS mitigation and public IP obfuscation.
- Unbound DNS Server DNS A and PTR records, for the
- Some of the Docker Applications I host:
-
WD 8TB NAS -
nas.usman.lan- SMB Shares.
- Plex Media Server
-
Partly deployed using Drone CI/CD and my own Python Configuration Management Framework. See github.com/usman-u/network-automation and github.com/usman-u/usmannet for more info.