Home Network

I have configured a custom network setup using a R.O.A.S configuration to overcome limited hardware features, an eight port Cisco PoE switch, and a Cisco wireless Access Point.

The gateway is a thin client running pfSense, and its single GigabitEthernet interface is further sub-interfaced using pfSense's 802.1q features. The device features a fully configured stateful firewall suite, DNS filtering, traffic shaping capabilities, and way more. The gateway further separates all networks and prevents devices from reaching the firewall's web interface, especially those from wireless addresses. I have configured a policy allowing a single statically assigned address from my personal PC to reach all areas of my network without worrying about visitors or unauthorized users gaining access to my devices.

The Cisco CBS350 is an 8 port PoE switch, configured to place the WAN, LAN, and Wi-Fi networks on separate VLANs. Traffic prioritization is done with DSCP assignment using access-lists, which is then assigned to a policy map configured on only the LAN interfaces. This was done primarily to prioritize my wife's work PC. The device is very simple to configure using the CLI over SSH and provides power to the wireless AP.

The Cisco AP is manually configured and is used to provide wireless connectivity throughout my home. The device is running in Autonomous mode (Obviously no need for a WLC yet), and I plan add more APs in the future for both the study of wireless networking and to increase coverage.

Network Topology