Question Help me plan my new network - Considering UniFi

[In2Photos]

I recently had fiber installed at the house and it got me thinking about my network. Mainly because the location of where my modem was before to where the ONT is installed now. But as I dove into some research it got me thinking that my network setup isn't ideal and could be better/more secure. Everything right now is on the same network, no VLANs. Originally my internet came into my bonus room. The main router went to a switch which fed several devices and other switches in other rooms. The fiber company came into the other side of the house so they installed the ONT where my second node of my mesh network was installed, the family room. I had Ethernet backhaul so swapping the 2 routers was not a big deal except I now have my office as the third switch from the internet. Here's what my network looks like now.



I have a combination of Cat5e and Cat6 in the house (most runs are less than 60' except the one from the bonus room to the family room which is roughly 100') so my thought is to use 2.5G where possible, upgrading my server and work laptop since all other PCs have 2.5G or 5G already. I'm thinking of using the new Cloud Gateway Fiber along with a few PoE 8 port 2.5G switches. I'm also thinking about swapping out my cameras and maybe adding a couple more (4-5 total). My initial thought is to use the cloud gateway's M.2 slot to handle the protect functionality for now and upgrade to an NVR later if I need to. I don't really have everything wired to a single home run location. And the three main rooms that will use wired have several devices that would need to be connected so my thought is to just leave the ONT in the family room and run a new line to my office from there. So one switch in the family room, office, and bonus room for all of the devices to connect to. Cameras would be run to the nearest switch OR I could find a central location and put a switch and run all the cameras to it, then run a single line to one of the switches or directly to the gateway. I'm probably way over thinking this, it's just a home network and I wouldn't notice any real difference depending on how it is hooked up. But maybe I should be doing this a different way so I wanted to get some thoughts from others here.

The Cloud gateway has a lot of connectivity so I could theoretically eliminate the switch in the family room and connect more stuff to the gateway, but that might not be the best method. Probably best to let the switch handle the traffic? Most of the traffic from the devices will be internet based, not local. The local traffic will mostly be in my office and when we watch something from the Server on the TVs in the house.

Here's the Unifi setup without all of the devices connected for clarity.

 

[DaaQ]

I recently had fiber installed at the house and it got me thinking about my network. Mainly because the location of where my modem was before to where the ONT is installed now. But as I dove into some research it got me thinking that my network setup isn't ideal and could be better/more secure. Everything right now is on the same network, no VLANs. Originally my internet came into my bonus room. The main router went to a switch which fed several devices and other switches in other rooms. The fiber company came into the other side of the house so they installed the ONT where my second node of my mesh network was installed, the family room. I had Ethernet backhaul so swapping the 2 routers was not a big deal except I now have my office as the third switch from the internet. Here's what my network looks like now.

View attachment 133239

I have a combination of Cat5e and Cat6 in the house (most runs are less than 60' except the one from the bonus room to the family room which is roughly 100') so my thought is to use 2.5G where possible, upgrading my server and work laptop since all other PCs have 2.5G or 5G already. I'm thinking of using the new Cloud Gateway Fiber along with a few PoE 8 port 2.5G switches. I'm also thinking about swapping out my cameras and maybe adding a couple more (4-5 total). My initial thought is to use the cloud gateway's M.2 slot to handle the protect functionality for now and upgrade to an NVR later if I need to. I don't really have everything wired to a single home run location. And the three main rooms that will use wired have several devices that would need to be connected so my thought is to just leave the ONT in the family room and run a new line to my office from there. So one switch in the family room, office, and bonus room for all of the devices to connect to. Cameras would be run to the nearest switch OR I could find a central location and put a switch and run all the cameras to it, then run a single line to one of the switches or directly to the gateway. I'm probably way over thinking this, it's just a home network and I wouldn't notice any real difference depending on how it is hooked up. But maybe I should be doing this a different way so I wanted to get some thoughts from others here.

The Cloud gateway has a lot of connectivity so I could theoretically eliminate the switch in the family room and connect more stuff to the gateway, but that might not be the best method. Probably best to let the switch handle the traffic? Most of the traffic from the devices will be internet based, not local. The local traffic will mostly be in my office and when we watch something from the Server on the TVs in the house.

Here's the Unifi setup without all of the devices connected for clarity.
View attachment 133240

What brand cameras? The Unifi Cams are pretty expensive. Unless you can grab the indoor only wifi connected one. G35 might be the sku. Was when I got mine. was like 40 bucks. The other cams are the bullets and at the time were 350, I have 2. I use a DMP but it was the 1st iteration. I have a 2 TB WD red drive in it and never have had to clear space.

There is a 3rd iteration of DMP IIRC I would go full integration personally.
My network is DMP with SPF to RJ45 transceivers to Wan IN and 2nd goes to my pc hardwired. I can pull over 1G down. Upload is limited by provisioning.
From there it goes to a 8 port POE switch with 4 POE ports other 4 are non POE. I power 2 AP in my home, power a PTP Airbridge to In law's with another PTP ( loess than 1000 ft) where it goes into their utility closet with some POE adapters to a 8 port 1G switch with runs their AP.
I am on a 1Gd 50Mu plan and never have issues. Although I would like to upgrade my side to 2.5 or 5G. I have a WiFi6e and WiFi 7 AP in my home and a WiFi 5 LR AP in the in law's home.

 

[In2Photos]

What brand cameras? The Unifi Cams are pretty expensive. Unless you can grab the indoor only wifi connected one. G35 might be the sku. Was when I got mine. was like 40 bucks. The other cams are the bullets and at the time were 350, I have 2. I use a DMP but it was the 1st iteration. I have a 2 TB WD red drive in it and never have had to clear space.

There is a 3rd iteration of DMP IIRC I would go full integration personally.
My network is DMP with SPF to RJ45 transceivers to Wan IN and 2nd goes to my pc hardwired. I can pull over 1G down. Upload is limited by provisioning.
From there it goes to a 8 port POE switch with 4 POE ports other 4 are non POE. I power 2 AP in my home, power a PTP Airbridge to In law's with another PTP ( loess than 1000 ft) where it goes into their utility closet with some POE adapters to a 8 port 1G switch with runs their AP.
I am on a 1Gd 50Mu plan and never have issues. Although I would like to upgrade my side to 2.5 or 5G. I have a WiFi6e and WiFi 7 AP in my home and a WiFi 5 LR AP in the in law's home.

I plan to use the UniFi cameras. I have Wyze ones now and while the cameras themselves work ok the notifications don't always work and you have to pay monthly for more than just the basics. The G5 bullet is like $129 and the G6 is $199 so they aren't that bad. More than my current cameras yes, but if they perform better it's likely worth it.

I don't have space for the rack mounted gear unless I use a closet in my office and reroute everything. The new Cloud Gateway Fiber has 3 10Gb ports (1 RJ45 and 2 SFP) and 4 2.5G ports. I don't believe any of the DMs have a similar setup. Sure they have more horsepower to run lots of stuff but I will be no where near the limit of the cloud gateway fiber. I can get 2.5G now and still have the ability to go to 10G later if I want, although max throughput is 9G on the gateway. As mentioned I don't saturate the 1G now unless I'm transferring some video files to the server or downloading something that actually lets me hit 1G.

So I would be using the following:

Cloud Gateway Fiber
3-8 port 2.5G PoE switches
2-U7 Pro Wall APs
Doorbell Cam (may have to go the WiFi version have to recheck wiring to see if I have Cat5e here)
4-5 Bullet/Turret cameras
Maybe the NVR Instant or another switch to connect the cameras

This would eliminate all my other switches, cameras, and mesh system.