Hardware Selection
Homelab Setup Guide: Modem, Router & Networking Equipment
1. Modem Selection
- Choose based on connection type: Fiber optic, coaxial cable, or telephone line.
- Buy your own modem: ISP-provided modems often lack features, security updates, and the rental overtime is going to cost more than buying them. Owning your modem improves reliability, security, and gives you control over firmware updates.
- Avoid modem-router combo devices if possible: While combos are simpler and cheaper upfront, they limit customization, troubleshooting, and performance. Separate devices allow better control and upgrades.
- Placement: Modems generate heat; place them with good ventilation to avoid overheating.
2. Router Selection
- Pre-built routers:
- Ubiquiti UniFi Dream Router (UDR) or Dream Machine (UDM) offer excellent out-of-the-box security, easy setup, and scalability for home labs. The UDM-SE supports 10G and PoE for advanced setups.
- Custom router solutions:
- Mini PCs with multiple LAN ports running pfSense or OPNsense provide maximum customization and learning opportunities but require manual configuration and maintenance.
- Key features to look for:
- Multiple LAN ports (minimum 4 gigabit, more if possible)
- VPN support (WireGuard preferred)
- VLAN support for network segmentation
- Low power consumption for 24/7 use
- Budget options: Mikrotik hAP ax3 or Banana Pi R3 with OpenWRT are good affordable routers for beginners.
3. Networking Equipment Beyond Router
- Switches:
- Managed switches with VLAN support are essential for network segmentation and security.
- PoE (Power over Ethernet) switches power devices like access points or cameras via Ethernet cable.
- Recommended switches:
- USW-Lite-8-POE (8-port, Layer 2, 4PoE - $110)
- Ubiquiti Flex Mini (5 port, Layer 2 - $30 )
- Start small (8-port gigabit) and scale up as needed.
- Access Points (APs):
- Separate APs provide better Wi-Fi coverage and flexibility than combo devices.
- Optimize Wi-Fi profiles by adjusting channels, power, and band steering to reduce interference and improve performance.
- Ubiquiti UniFi APs are popular for home labs due to ease of management and scalability.
4. Hardware and Software Recommendations for Beginners
- Start small and expand:
- You don’t need a full rack or complex setup initially. Begin with a modest router, switch, and a few servers or mini PCs.
- Virtualization:
- Use Proxmox, VMware, or VirtualBox to run multiple VMs on a single physical server.
- Containerization:
- Learn Docker and Kubernetes for lightweight, scalable application deployment.
- Open-source software:
- pfSense/OPNsense for firewall/router
- Proxmox for virtualization
- Docker and Portainer for container management
- Use free tools to save cost and gain experience
5. Security
- Securing your homelab
- Internal Reference
- Retire Devices That Are No Longer Supported
- Security best practices (2FA, firewalling, audit logs)
- Use multifactor authentication (MFA) / Passkeys
- Physical local and remote backups
- Dont open up ports (portforwarding), use VPN
- Segment Your Home Network
Summary
| Aspect | Recommendation |
|---|---|
| Modem | Own modem matching your ISP connection type; avoid combos for advanced labs |
| Router | Ubiquiti UniFi Dream Machine or pfSense on mini PC for customization |
| Switch | Managed PoE switch with VLAN support (e.g., TP-Link SG2210XMP-M2) |
| Access Points | Separate quality APs with Wi-Fi optimization |
| Network Design | Use VLANs to segment lab, personal, and IoT devices; apply least privilege principle |
| Security Practices | Regular updates, log monitoring, minimal permissions |
| Software | Use open-source tools: pfSense, Proxmox, Docker, Kubernetes |
| Documentation | Maintain detailed network and device documentation |
| Start Level | Intermediate (basic networking knowledge recommended) |