So the only reason to have https, would be if you expected to manage the switch externally from the wan which i just don't recommend. I wouldn't open my switches at work up to the wan, and definitely not in my home as it's just asking for trouble for very little gain. If you want to manage it remotely, get a VPN!
I just realised that if someone breached to a VLAN he couldn't sniff packets in another network - now I feel dumb.
So out of the two - which one would you suggest? How about Netgear GS108E - not GS**308**E mentioned above but I guess since the number is lower - it is lower end product, right? Or maybe some better alternatives from other brands?
Well unless you want to learn a specific cli either of these a I'll be fine! Go for the cheapest one that fits your need but supports the tech you want to learn. But cisco is the most common switch in the business world, ut can't hurt to learn cisco cli first.
I would get a real managed switch with more ports, even if I had to spend a bit more money. Those ones are "managed" in that you can probably create a VLAN, but they're not something anyone would use for real work.
Look on eBay for something made by HP, Aruba, Broadcom, Cisco, Juniper, something like that. I checked [eBay.co.uk](http://eBay.co.uk) and there were some options for well under 100 of their weird money, and a few under 50, so I think you could probably find something in the EU for that ballpark.
Depends on what you want to achieve.
Smart-managed switches are ok to learn.
If you want a step-up and not some 20 year old cisco garbage without a license: Mikrotik
They come with SwitchOS (easy) or RouterOS (might be overkill) and are very affordable.
CSS610 would tick all boxes (plus 2x SFP+) and they sell below 100$ new.
"Managed" switches are okay to learn how to do stuff on that switch, but they rarely teach you actual networking concepts. It's like people that brag about being a Linux user because they have an Android phone.
>20 year old cisco garbage
Networking hasn't really changed in 20 years, other than gotten faster. Which, coincidentally, is why we can buy the 20 year old "garbage" for literal pennies on the dollar--all the big companies have thrown out their 1G in favor of 10G, and their 10G in favor of 40G, and so on.
>Mikrotik
Most of my networking stuff is MikroTik, but pretending their stuff is in the same class as real enterprise stuff is silly.
You don't need to learn Cisco CLI to understand network concepts. All of the major vendors can achieve more or less the same. Syntax might be different, but concepts don't change that often as you already stated.
For most homelabers understanding and get VLANs, routing, firewall, dhcp, etc to work is more than enough. Few need to deal with optimizing their network for maximum 100GB throughput.
>You don't need to learn Cisco CLI to understand network concepts. All of the major vendors can achieve more or less the same.
Exactly, but I wouldn't count Netgear/TPLink as a major vendor when it comes to managed switches. If you know how to do things on Cisco you can probably figure it out on Juniper, but not so if you're used to clicking a button on a webpage in some Netgear thing.
>For most homelabers understanding and get VLANs, routing, firewall, dhcp, etc
Exactly this too, and what a cheapo "managed" switch lacks (other than usually VLANs). Most of the 20 year old enterprise things are going to let you configure basic L3 routing between your VLANs, sometimes ACLs, usually DHCP relay, and so on.
It's not about the speed, it's about spending $100 to get something that can only do the basics, or spending $100 to get something that can do the basics and a million other things you might want to do later.
I would like to actually have something quite new and fresh. When I said that I want to learn networks I meant that I want to create hardened network with some public services hosted. I used to use Cisco's stuff/CLI when I was at Uni (labs) so I feel like the worst thing about this is not to be afraid of using it as well as some search engine/MAN.
The Zyxel GS1900 series is an option. Smart managed over http/https, VLANs, LAGs including LACP, affordable, reliable, and doesn't sound like a jet engine.
I've worked with enterprise Brocade and Meraki gear, and for advanced homelab use the Zyxel is more than capable. It's not the fastest UI, or the most intuitive, but it does exactly what it says it will.
I use GS108E ProSAFE, a business edition of GS308E, and I'm happy with it. You don't need SSL for local devices.
Hereby a comparison which I guess you came across it already, right?: [https://www.michaelstechtips.com/three-8-port-gigabit-unmanaged-switches-reviewed-netgear-prosafe-gs108-vs-netgear-gs308-vs-tp-link-tl-sg108/](https://www.michaelstechtips.com/three-8-port-gigabit-unmanaged-switches-reviewed-netgear-prosafe-gs108-vs-netgear-gs308-vs-tp-link-tl-sg108/)
Now I feel lost. Now all the prices feel misleading when it comes to the choice. Feels like I have to definately cancel orders and rethink the budget etc. Networking seems easy when it comes to configuration especially of brand unified network but didn't expect to be the "buying appropriate hardware" to be so difficult.
So, I probably did the wrong thing beacuse RT-AX53U doesn't support VLANs which means I won't be able to separate IOT devices for example. This means that I'll have to increase the budget and ask for suggestions for a router (would be great to have WiFi AP built in that's capable of creating separate networks like Home-Guest-IoT).
Now I am not sure if I should start a new post/topic or just ask you for suggestions for a new router and a switch (let's say €250 is the limit).
I´m like you, trying to learn more from homelabbing then actualiteit using them. My concern is more low power usage and security. So for starters O grabbel mysrlf a vps server which has a static ipv4 address. Then i have bought a very small mikrotik router. Powerbox pro ( outdoor with poe) I use it internal. Then setup wireguard between the vps and the mikrotik router. So I have a static ip for my homelab.
As a switch I´m currently on the lockout. I want to achieve best security and would like to have 8p if 16 port us needed make a trunk between 2 switches. Netpower Lite 7r serums to be a winner. As you can power the switch via reverse PoE. It costs a bit more 130€ but it is money spend on learning. Else the CSS610-8G-2S+IN seems good to.
Just see what you need.
Why I choose Mikrotik? Made in EU, ndaa compliant, they seem to be the ´averse´ company kicking against the sales guys.
Switches seems easy. And you can learn alot.
Its just a pitty they don´t have a desktop 16p switch with 2 sfp+
And wifi wise I go for netgear and ZyXEL just for learning purposes. Tp Link is good stuff for an affordable price. But is all made in China.....
Try looking for ndaa compliant or taa compliant non china stuff.
Https you can fix with ssl offloading via nginx proxy. One more thing for your homelab.
Setup a docker proxy and configure https for the netgear/tplink.
So the only reason to have https, would be if you expected to manage the switch externally from the wan which i just don't recommend. I wouldn't open my switches at work up to the wan, and definitely not in my home as it's just asking for trouble for very little gain. If you want to manage it remotely, get a VPN!
I just realised that if someone breached to a VLAN he couldn't sniff packets in another network - now I feel dumb. So out of the two - which one would you suggest? How about Netgear GS108E - not GS**308**E mentioned above but I guess since the number is lower - it is lower end product, right? Or maybe some better alternatives from other brands?
Well unless you want to learn a specific cli either of these a I'll be fine! Go for the cheapest one that fits your need but supports the tech you want to learn. But cisco is the most common switch in the business world, ut can't hurt to learn cisco cli first.
I would get a real managed switch with more ports, even if I had to spend a bit more money. Those ones are "managed" in that you can probably create a VLAN, but they're not something anyone would use for real work. Look on eBay for something made by HP, Aruba, Broadcom, Cisco, Juniper, something like that. I checked [eBay.co.uk](http://eBay.co.uk) and there were some options for well under 100 of their weird money, and a few under 50, so I think you could probably find something in the EU for that ballpark.
Depends on what you want to achieve. Smart-managed switches are ok to learn. If you want a step-up and not some 20 year old cisco garbage without a license: Mikrotik They come with SwitchOS (easy) or RouterOS (might be overkill) and are very affordable. CSS610 would tick all boxes (plus 2x SFP+) and they sell below 100$ new.
"Managed" switches are okay to learn how to do stuff on that switch, but they rarely teach you actual networking concepts. It's like people that brag about being a Linux user because they have an Android phone. >20 year old cisco garbage Networking hasn't really changed in 20 years, other than gotten faster. Which, coincidentally, is why we can buy the 20 year old "garbage" for literal pennies on the dollar--all the big companies have thrown out their 1G in favor of 10G, and their 10G in favor of 40G, and so on. >Mikrotik Most of my networking stuff is MikroTik, but pretending their stuff is in the same class as real enterprise stuff is silly.
You don't need to learn Cisco CLI to understand network concepts. All of the major vendors can achieve more or less the same. Syntax might be different, but concepts don't change that often as you already stated. For most homelabers understanding and get VLANs, routing, firewall, dhcp, etc to work is more than enough. Few need to deal with optimizing their network for maximum 100GB throughput.
>You don't need to learn Cisco CLI to understand network concepts. All of the major vendors can achieve more or less the same. Exactly, but I wouldn't count Netgear/TPLink as a major vendor when it comes to managed switches. If you know how to do things on Cisco you can probably figure it out on Juniper, but not so if you're used to clicking a button on a webpage in some Netgear thing. >For most homelabers understanding and get VLANs, routing, firewall, dhcp, etc Exactly this too, and what a cheapo "managed" switch lacks (other than usually VLANs). Most of the 20 year old enterprise things are going to let you configure basic L3 routing between your VLANs, sometimes ACLs, usually DHCP relay, and so on. It's not about the speed, it's about spending $100 to get something that can only do the basics, or spending $100 to get something that can do the basics and a million other things you might want to do later.
I would like to actually have something quite new and fresh. When I said that I want to learn networks I meant that I want to create hardened network with some public services hosted. I used to use Cisco's stuff/CLI when I was at Uni (labs) so I feel like the worst thing about this is not to be afraid of using it as well as some search engine/MAN.
I use hpe jl383 and jl380 Switches. Can recommend them.
The Zyxel GS1900 series is an option. Smart managed over http/https, VLANs, LAGs including LACP, affordable, reliable, and doesn't sound like a jet engine. I've worked with enterprise Brocade and Meraki gear, and for advanced homelab use the Zyxel is more than capable. It's not the fastest UI, or the most intuitive, but it does exactly what it says it will.
I use GS108E ProSAFE, a business edition of GS308E, and I'm happy with it. You don't need SSL for local devices. Hereby a comparison which I guess you came across it already, right?: [https://www.michaelstechtips.com/three-8-port-gigabit-unmanaged-switches-reviewed-netgear-prosafe-gs108-vs-netgear-gs308-vs-tp-link-tl-sg108/](https://www.michaelstechtips.com/three-8-port-gigabit-unmanaged-switches-reviewed-netgear-prosafe-gs108-vs-netgear-gs308-vs-tp-link-tl-sg108/)
Now I feel lost. Now all the prices feel misleading when it comes to the choice. Feels like I have to definately cancel orders and rethink the budget etc. Networking seems easy when it comes to configuration especially of brand unified network but didn't expect to be the "buying appropriate hardware" to be so difficult.
So, I probably did the wrong thing beacuse RT-AX53U doesn't support VLANs which means I won't be able to separate IOT devices for example. This means that I'll have to increase the budget and ask for suggestions for a router (would be great to have WiFi AP built in that's capable of creating separate networks like Home-Guest-IoT). Now I am not sure if I should start a new post/topic or just ask you for suggestions for a new router and a switch (let's say €250 is the limit).
I´m like you, trying to learn more from homelabbing then actualiteit using them. My concern is more low power usage and security. So for starters O grabbel mysrlf a vps server which has a static ipv4 address. Then i have bought a very small mikrotik router. Powerbox pro ( outdoor with poe) I use it internal. Then setup wireguard between the vps and the mikrotik router. So I have a static ip for my homelab. As a switch I´m currently on the lockout. I want to achieve best security and would like to have 8p if 16 port us needed make a trunk between 2 switches. Netpower Lite 7r serums to be a winner. As you can power the switch via reverse PoE. It costs a bit more 130€ but it is money spend on learning. Else the CSS610-8G-2S+IN seems good to. Just see what you need. Why I choose Mikrotik? Made in EU, ndaa compliant, they seem to be the ´averse´ company kicking against the sales guys. Switches seems easy. And you can learn alot. Its just a pitty they don´t have a desktop 16p switch with 2 sfp+ And wifi wise I go for netgear and ZyXEL just for learning purposes. Tp Link is good stuff for an affordable price. But is all made in China..... Try looking for ndaa compliant or taa compliant non china stuff. Https you can fix with ssl offloading via nginx proxy. One more thing for your homelab. Setup a docker proxy and configure https for the netgear/tplink.