Seeking Advice from Experienced Network Engineers/Managers and the likes
Hey All, So Happy to be a part of this community.
I was wondering if there are any people who would be willing to lend some advice. Anyone is welcome to comment, But perhaps those who really understand Networking like a network engineer could be super helpful.
I have been doing tons and tons and tons of research on different Mesh Systems and AP points and Routers that can be expanded, but my real question is what are the big guys using ? The guys who really understand networking and security ? Like network Engineers, people who work for big tech etc etc ?
My goal is simple, I want a MESH system (Router in AP mode + Multiple Satellite Nodes) I want excellent coverage ( The satellites help with this part) But also Two features Im extremely interested in are Nat Loopback, AKA NAT Hairpinning, and also VLAN Support.
I have already come up with some of my own options, but Im unaware of speed, quality, security, reliability, etc. I have looked at the Orbi Pro Wi-Fi 6 which seems to get a lot of praise from most, but on the other hand, some others think it is too buggy ?
I need something consistent in reliability, performance, security.. preferably something somewhat compact, although this is really not an issue. Multiple VLAN support, such as on the Orbi Pro.
Please I am all ears, and my apologies for the long post. Im just very conflicted, and I will be stuck on this forever haha.
There are so many options out there, and Im just trying to see what works most efficient. VLAN Support and NAT Loopback are definite requirements, although if I had to sacrifice one over the other it would be the VLAN support to boot, and NAT Loopback as a requirement.
Thanks in advance !
-
Why buy a Router wifi mesh system and turn the router into a access point if you use the gold as a router, DHCP, firewall etc. Instead buy dedicated AP's built for the task. I prefer Unifi AP's with a Unifi Switch for the same price or less than a full mesh system that you only partially use. The only way buying a full mesh system with router built in works is if you don't use Firewalla. Paying for a router and turning it off doesn't make sense.
I've just got rid of my Orbi system (not 6) for a Unifi solution. IMHO way better and way more powerful.
Build the controller in docker.
All this is just my opinion and other may think differently.
-
Brilliant response and honestly you are right. This is exactly what I needed. Is there a particular Unifi AP that works better than others ? I know they are all amazing, but I’m a simple person, with so many choices I’m like a kid in the candy store.
I personally have been straying away from a switch only because my OCD and I can imagine all the cables I would have to route haha. I’m slowly building my knowledge on docker containers. It’s not rocket science but to me it’s still quite foreign.
I think you saved my butt, because it makes sense, why purchase a router to not use the router function.
Surprisingly after tinkering with my firewalla gold, I was actually able to talk to my Nextcloud server while connected to my local network. Previously I was unable to do so as it requires NAT loopback. I’m not entirely sure but it seems firewalla has allowed this now? Tinkering with some settings it is working as intended when connected locally.
Thanks for taking the time to respond by the way. Always appreciated.
-
Not a problem. If you do go down the route of UniFi APs, just be careful what you pick. Most of them are POE driven, that’s why I have a switch, 4 ports have POE capability. However you can buy POE injectors, so the first AP can be run cabled with an injector if installed into a non POE port. The others could be used with a POE injector and use the Uplink function to connect to another AP
-
@andy makes a great point. Most mesh APs like eero will work just fine with firewalla but if you don’t already have an AP that is also a router there are lots of other great choices like Aruba or TP-link, in addition to Unifi. If you do choose Unifi, you can run the controller on a NAS, rpi, or even in docker on Firewalla Gold or Purple as Andy suggested.
Please sign in to leave a comment.
Comments
4 comments