Network¶
Subnets¶
| Name | Subnet |
|---|---|
| Private Network - VLAN 100 | 10.10.0.0/24 |
| IoT Network – VLAN 101 | 10.10.1.0/24 |
| Guest Network – VLAN 102 | 10.10.2.0/24 |
| Camera Network – VLAN 103 | 10.10.3.0/24 |
| Config Network (eth1 on router) | 10.10.99.0/24 |
Wireless¶
| Description | SSID | VLAN |
|---|---|---|
| Private Network - VLAN 100 | The Kremlin |
None* |
| IoT Network | The Kremlin [IoT] |
101 |
| Guest Network | The Kremlin [Guest] |
102 |
Note
*Do not set a VLAN for the private WiFi network. The AP is connected to an untagged port on the switch with PVID of 100, so all untagged packets coming from the AP into the switch are put on VLAN 100.
All wireless networks:
- WPA Mode: WPA-Personal – WPA2 Only
- Encryption: AES/CCMP Only
IP Address Assignments¶
Private Network [VLAN 100]¶
| IPv4 | Device Details and Description | Physical Location |
|---|---|---|
|
Network Address
10.10.0.0
|
||
|
Infrastructure
10.10.0.1 - 10.10.0.29
|
||
10.10.0.1 |
Router (Default Gateway) | Main Rack |
10.10.0.2 |
kremlin-switch-5a – TP-Link 5-Port EasySmart Switch | Office Rack |
10.10.0.3 |
UniFi AP AC Lite | Main Rack |
10.10.0.4 |
kremlin-switch-8a – TP-Link 8-Port EasySmart Switch | Main Rack |
10.10.0.5 |
kremlin-switch-8b - TP-Link 8-Port Unmanaged Pro Switch | Main Rack |
10.10.0.10 |
Custom Built Windows Server (server) | Office Rack |
10.10.0.13 |
server-02 (HP EliteDesk G2 Mini) | Office Rack |
|
Static Devices
10.10.0.30 - 10.10.0.99
|
||
10.10.0.30 |
Xbox One | Office |
10.10.0.50 |
Victor-PC | Victor Bedroom |
|
DHCP - Private
10.10.0.100 - 10.10.0.254
|
||
|
Broadcast Address
10.10.0.255
|
||
IoT Network [VLAN 101]¶
| IPv4 | Device Details and Description | Physical Location |
|---|---|---|
|
Network Address
10.10.1.0
|
||
|
Static Devices
10.10.1.1 - 10.10.1.99
|
||
10.10.1.1 |
Router (Default Gateway) | Main Rack |
|
DHCP - IoT
10.10.1.100 - 10.10.1.254
|
||
|
Broadcast Address
10.10.1.255
|
||
Guest Network [VLAN 102]¶
| IPv4 | Device Details and Description | Physical Location |
|---|---|---|
|
Network Address
10.10.2.0
|
||
|
Static Devices
10.10.2.1 - 10.10.2.99
|
||
10.10.2.1 |
Router (Default Gateway) | Main Rack |
|
DHCP - Guest
10.10.2.100 - 10.10.2.254
|
||
|
Broadcast Address
10.10.2.255
|
||
Camera Network [VLAN 103]¶
| IPv4 | Device Details and Description | Physical Location |
|---|---|---|
|
Network Address
10.10.3.0
|
||
|
Static Devices
10.10.3.1 - 10.10.3.99
|
||
10.10.3.1 |
Router (Default Gateway) | Main Rack |
10.10.3.2 |
kremlin-nvr (Unifi Protect NVR) | Office Rack |
|
DHCP
10.10.3.100 - 10.10.3.254
|
||
|
Broadcast Address
10.10.3.255
|
||
Topology¶
| Port | Label | Notes |
|---|---|---|
| 1 | B-FIBER | Basement, southwest bedroom, AT&T fiber termination box. |
| 2 | 2-SW-A | 2nd floor, southwest bedroom, port A. |
| 3 | 2-SW-B | 2nd floor, southwest bedroom, port B. |
| 4 | 2-SE-A | 2nd floor, southeast bedroom, port A. |
| 5 | 2-SE-B | 2nd floor, southeast bedroom, port B. |
| 6 | 2-MB-A | 2nd floor, master bedroom, port A. |
| 12 | AG-SW-A | Attic, garage, southwest corner. Camera: looking at house and front door. |
| 13 | A-NE-A | Attic, northeast corner. Camera: looking at backyard. |
| 14 | A-NE-B | Attic, northeast corner. Camera: looking at driveway. |
| 15 | AG-SE-A | Attic, garage, southeast corner. Camera: looking towards front yard. |
| 16 | AG-SE-B | Attic, garage, southeast corner. Currently unused. |