It was recently announced that FTTH will soon (finally) be available in my market. The provider coming to town offers rates up to 8g.
I’m upgrading from DSL at <100mbps - really exciting! However I will then face a bit of an issue.
I self host many services over my DSL, and use custom firmware on my router. My DSL modem is in a transparent bridging mode. I like the flexibility and customizability this setup provides.
The new service includes a WiFi 7 router, but that means I’ll also potentially be subject to all the weird things providers like to do, like adding backdoors, opening shared WiFi networks, force deploying different firmware, etc. Plus I won’t be running any kind of service on the router itself, which I do have today (transparent proxy etc). The router I have today is not going to enable me to touch the peak bandwidth available.
What’re the best options to upgrade LAN components so that I can support multi gig internal networking speeds, ensure my self hosted services all function normally, and I take advantage of the bandwidth the ISP upgrade offers? In your personal opinion, is it worth it to invest in upgraded lan components?
Anyone have experience converting from 1G LAN to 2.5 or even 10?
Do I really need 8G FTTH, of course not, but if I ever wanted to get the max out of it, what does that take?
Get a nice hardware capable of running opnSense and use that immediately after your new ISP device. Just ignore their WiFi router, it will be crap whatever it is, unless you cat reflash with OpenWRT.
Be prepared that the new ISP will .most probably have CG-NAT.
Note: opnSense is based on *BSD so make sure the hardware you buy has supported 10gb network cards, at least two.
Interesting point about cg nat. With my current ISP setup I get an actual (dynamic) ip4 address and ip6 thru 6rd. Can I still point my domain to the nat’d address?
No, if you are batted, you will need a vps or some kind of real public address and tunnel to it for external to internal access. A VPN with port forwarding will also work.
This. It’s how I set up my local network, tho I went with pFsense and then hung Pi-Hole+unbound off the managed switch. I did have to set up a vlan just for my lady friend because, apparently, screens full of ads is exactly what she likes, and I don’t want to have to reinvent the wheel every time she comes over. So, I guess you could say it’s pain avoidance. LOL