Technically Acceptable
ENTRY 01.01 / BASE EQUIPMENT
READ 10 MIN
STATUS IN PROGRESS
UTC--:--:--Z
Home Lab: Lesson 01

Base Equipment

Before any VLAN or firewall rule, you need hardware that won't get in the way. Four pieces, a mini-PC router, a managed switch, an access point, and a NAS, chosen so the lab can grow without a forklift upgrade.

Start here: what a home lab actually is

A home lab is a small set of computers and network gear that you own and control, sitting in your house, that you use to learn and to run your own services. If the only computer you have ever used is a laptop, think of it this way. Your laptop is one machine that does one person’s work. A home lab is an always-on machine, plus the network gear around it, that runs many small services at once and keeps running when you close the lid and walk away.

You do not need a server rack or a closet full of blinking lights. You need four pieces. Here is what each one is, in plain terms, why it is on the list, and what to look for when you buy.

The four pieces

1. The mini-PC (your router and your host)

A mini-PC is a small desktop computer, about the size of a paperback book, with no screen. It is the brain of the lab, and it does two jobs at once.

First, it acts as your router. A router is the traffic cop for your network. It decides what is allowed to talk to what, and it sits between your devices and the open internet. The box your internet company gave you is also a router, but you do not control it the way you need to here, so you will put your own in front of it.

Second, it acts as your host. A host is a computer that runs other computers inside itself. That sounds strange the first time you hear it. The software that makes it possible is called a hypervisor, and we install it in the next lesson. For now, all you need to know is that one good mini-PC can behave like a dozen smaller machines, and that is what lets a single box run your firewall, your services, and your experiments side by side.

What to look for: a recent processor with at least four cores, 16GB of memory at a minimum and 32GB if you can stretch, and two network ports if possible. Two ports make the router job cleaner. A single port works, and the next lessons account for it, but two is nicer. Budget is roughly 300 to 600 dollars depending on memory.

2. The managed switch

A switch is the box that everything plugs into with a network cable. Think of it as a power strip for network connections. Your devices plug in, and it passes their traffic around.

The word that matters here is managed. A cheap switch from a big-box store is unmanaged. It passes traffic and that is all it can do. A managed switch lets you carve one physical box into separate, walled-off networks called VLANs, which is the whole point of a segmented lab and the subject of a later lesson. If you buy an unmanaged switch by accident, none of the segmentation lessons will work, so this is the one piece where the label really matters.

What to look for: the words managed or smart managed in the product name, support for something called 802.1Q VLANs, and enough ports for your gear plus room to grow. Eight ports is a comfortable starting size. Budget is roughly 60 to 150 dollars.

3. The access point

An access point is the piece that broadcasts your Wi-Fi. Your phones, tablets, and laptops connect to it through the air instead of a cable.

You almost certainly already have Wi-Fi from your internet company’s box. The reason to add your own access point is that a proper one can broadcast several separate Wi-Fi networks at once and tie each one to a different VLAN. That means your work laptop, the family tablets, and your smart-home gadgets can all be on Wi-Fi while still living in separate, walled-off lanes. The box from your internet company usually cannot do that in a way you control.

What to look for: support for multiple SSIDs, which just means multiple Wi-Fi network names, and VLAN tagging. Budget is roughly 80 to 150 dollars. This is the one piece you can add a little later if money is tight, since you can start with one network and split Wi-Fi out once you are comfortable.

4. The NAS

A NAS is network attached storage. In plain terms, it is a small always-on box with hard drives inside it that everything on your network can reach. It is your own private cloud and your backup target, and for a lot of people, including me, it is the single biggest reason to build a lab in the first place.

Here is why it earns its place. Photos, documents, and backups do not belong only on a laptop that can be lost, stolen, or dropped. A NAS gives you one safe place that lives in your house, that your phone and laptop back up to automatically, and that you are not renting from a company by the month. Put two drives in it and set them up so the data is written to both at once. That setup is called RAID, and the simple version means that if one drive dies, you lose nothing. You swap the dead drive and carry on.

What to look for: a two-bay or four-bay model from a known brand, bought without drives so you can add your own, plus two matching drives rated for always-on use, which are sold as NAS drives. A two-bay box plus a pair of 8TB drives is a sensible, roomy start. Budget is roughly 300 to 500 dollars for the box and the two drives together.

How they connect

The order is simple. The internet comes into your home through your internet company’s box. A cable runs from that box into your mini-PC, which is now your router. A cable runs from the mini-PC into the managed switch. Everything else, the access point and the NAS, plugs into the switch. Your wired devices plug into the switch too, and your wireless devices reach the access point through the air. That is the whole shape of it. The diagram at the top of this section shows it laid out.

Buy once, grow later

You do not have to buy all four pieces on day one. If you want the cheapest honest starting point, get the mini-PC and the managed switch first, because the early lessons depend on them. Add the NAS when you are ready to move your files off the cloud, and add the access point when you want to split your Wi-Fi. None of the four locks you into a brand for the others, which is the point of choosing them this way.

Verify it

You are done with this step when:

  • You own the mini-PC and the managed switch, at a minimum, and they both power on.
  • The switch’s product page or box clearly says managed and mentions VLANs or 802.1Q. If it does not, return it.
  • If you bought the NAS, the two drives inside are the matching NAS-rated drives, not whatever was cheapest.
  • You have a short cable for each connection you plan to make, so you are not stuck waiting on a delivery mid-build.

What broke for me

I bought an unmanaged switch the first time because the listing buried the word. It looked identical to the managed one and cost less, and I could not work out why none of the VLAN guides worked until I read the model number closely. Buy the managed one, confirm the model number, and save yourself the evening.

I also underbought on memory. 16GB felt like plenty until I had a few services running, and then everything got slow at once. If the budget allows it, start at 32GB. Memory is the thing you run out of first.

On the NAS, I almost used two mismatched drives I had lying around. Matching drives rated for always-on use are worth the small extra cost, because the whole promise of the NAS is keeping your data safe, and mismatched or desktop-grade drives quietly undercut that.

Where it fits

Step one of the Home Lab build path. Everything in the later lessons runs on this hardware.