How do I choose a PoE switch for residential video security?

Discussion in 'Accessories' started by J39028, May 9, 2019.

Share This Page

  1. J39028

    J39028 n3wb

    Joined:
    May 9, 2019
    Messages:
    5
    Likes Received:
    0
    Location:
    US
    This is for residential home
    6 cameras
    8MP/4K resolution
    I don't have a rack

    I looked at the Google sheet, and considering Amcrest, D-Link, HP, Mikrotik, Netgear, TP-Link, Ubiquiti.
    Ubiquiti seems to be the narrowed down choice because I don't have a rack.
    Not sure edgeswitch (es-8-150w) versus unifi switch (us-8-150w)?
    I don't have Ubiquiti cameras, but might in the far future. Don't want to be stuck in an ecosystem, unless its awesome.
    Strongly considering BlueIris softare.
    This is leading me to the Ubiquiti EdgeSwitch.
    But I also don't want to overspend on stuff I don't need. $200 seems like a lot of money for an 8 port switch.

    Thanks in advance.
     
  2. gabe323

    gabe323 n3wb

    Joined:
    Jan 15, 2017
    Messages:
    22
    Likes Received:
    15
  3. Dramus

    Dramus n3wb

    Joined:
    May 7, 2019
    Messages:
    15
    Likes Received:
    6
    Location:
    New Jersey
    This might do ya: NetGear GS108LP. Eight PoE ports. Up to 30W/port. 60W total PoE budget. $99 on Amazon. $110 on Newegg.

    People have reported varying degrees of success/satisfaction with NetGear kit. I've experienced good results with their ProSafe stuff at home, and did when I used it at work. The product above looks like it gets high marks on the two sites. YMMV.

    Ubiquiti... I've a love/hate relationship with Ubiquiti. Other than my Internet border router, an ERLite, I'm tending to shy away from them.
     
  4. Jose R.

    Jose R. Getting the hang of it

    Joined:
    Mar 14, 2019
    Messages:
    56
    Likes Received:
    30
    Location:
    Miami, FL
  5. Ajax

    Ajax n3wb

    Joined:
    Aug 6, 2018
    Messages:
    2
    Likes Received:
    0
    Location:
    USA
    Been looking at the Netgear GS108PP (~$130) and the Ubiquiti ES-8-150W (~$193). A couple BVTech ones caught my eye too, but I know nothing about the brand reputability (above post isn't reassuring).

    Unless I'm looking in the wrong places, there doesn't seem to be much in the way of reasonably priced POE+ switches. Understandable I suppose given that most consumers just want WiFi cloud-based devices.
     
  6. fenderman

    fenderman Staff Member

    Joined:
    Mar 9, 2014
    Messages:
    29,713
    Likes Received:
    8,960
    It all depends on what you mean by reasonably priced. There are 8 port poe+ switches for 70 bux unmanaged or 100 managed. Nothing unreasonable about that.
     
    ThomasPI likes this.
  7. Ajax

    Ajax n3wb

    Joined:
    Aug 6, 2018
    Messages:
    2
    Likes Received:
    0
    Location:
    USA
    I know I used to be able to get Netgear 8-port gigabit switches new for $20. So yeah, it seems obscene by comparison.
     
  8. fenderman

    fenderman Staff Member

    Joined:
    Mar 9, 2014
    Messages:
    29,713
    Likes Received:
    8,960
    Those were not poe switches let alone poe+. Apples to oranges. Its a completely different product.
     
    Cameraguy likes this.
  9. J39028

    J39028 n3wb

    Joined:
    May 9, 2019
    Messages:
    5
    Likes Received:
    0
    Location:
    US
    For a home network, is there an advantage to a "managed" switch to consider?
     
  10. J39028

    J39028 n3wb

    Joined:
    May 9, 2019
    Messages:
    5
    Likes Received:
    0
    Location:
    US
    Here's another showing up in my search: D-Link DGS-1010MP for about $130.
    PoE (doesn't advertise PoE+, not sure if that's important)
    1 Gigabit
    8 ports @ 30w (but 125w total)
    Fanless (so it doesn't suck up junk)
    Unmanaged (don't know what this really means for a home owner)
    Don't know if it is passive/active (don't really know what that means either).
     
  11. Dramus

    Dramus n3wb

    Joined:
    May 7, 2019
    Messages:
    15
    Likes Received:
    6
    Location:
    New Jersey
    Not from any kind of network performance or reliability standpoint, there's not. There is a potential network security benefit.

    The two things a managed switch can give you is:
    • You can access the switch's management and status from elsewhere on your network (or even off-site [properly-configured VPN for that strongly recommended]). With that you can see what's connected, with what connection parameters, what's using what bandwidth, etc. (N.B.: Depending upon products management interface.)
    • You can implement VLANs (Virtual LANs). With properly set up VLANs you can "logically" isolate different devices on you LAN from one another. This is the security advantage.
    For the purpose of this discussion: VLANs are the next best thing to a purely separate physical LAN for an IP-based surveillance system. (Or any other IoT devices.)

    However, VLANs are a fairly advanced networking technique. By no means a "plug and play" thing.
     
    Last edited: May 11, 2019
  12. J39028

    J39028 n3wb

    Joined:
    May 9, 2019
    Messages:
    5
    Likes Received:
    0
    Location:
    US
    For my SOHO:
    I have a cable modem gateway to the Internet.
    Connected to WiFi router (Netgear R7000).
    Want to connect a separate dedicated IP camera PoE via separate network switch.

    I presume these are all on different LAN's/subnets, and "isolated".

    Something I haven't thought about is what is controlling the security to the IP camera switch/LAN. So if someone does have access to my LAN, I can prevent access to the camera network switch.
     
  13. Jose R.

    Jose R. Getting the hang of it

    Joined:
    Mar 14, 2019
    Messages:
    56
    Likes Received:
    30
    Location:
    Miami, FL
    The typical goal on this forum is to isolate the camera network from accessing the internet so the cameras can't do anything nefarious. That's done either buy using a second network card on your PC (physically different network) and denying that network any internet access (blank gateway) or using a VLAN on a managed switch which is more complicated professional IT guy type stuff. I did the former.

    Now you're asking about someone physically on your LAN not having access to the camera network? That's less common but I think if your camera network is physically separated or done thru VLAN, it works the same. They won't be able to access that network unless they can actually plug into an actual switch on the camera network which you can hide away. An easier idea is to just remove a camera outside and plug into that. I don't think anyone here is really worried about that one. The real threat is from the internet.
     
    Ajax likes this.
  14. Dramus

    Dramus n3wb

    Joined:
    May 7, 2019
    Messages:
    15
    Likes Received:
    6
    Location:
    New Jersey
    Or by assigning the cameras static IP addresses and blocking them on the LAN side of your Internet router. This is less secure than a VLAN or physically separate LAN, but probably sufficient. This is the method I currently use. (Until I upgrade my main switch. Then I'll employ the VLAN approach.)

    In a residential installation, anyway. In a business/corporate installation: Insider threats are greater.
     
    Jose R. likes this.
  15. J39028

    J39028 n3wb

    Joined:
    May 9, 2019
    Messages:
    5
    Likes Received:
    0
    Location:
    US
    So somebody can't just walk up to my outdoor camera, plug into the camera network, and have access to all my cameras?
     
  16. Dramus

    Dramus n3wb

    Joined:
    May 7, 2019
    Messages:
    15
    Likes Received:
    6
    Location:
    New Jersey
    Is the camera going to be so easily accessed, and the cabling so exposed, as to make that a viable threat? If so: IMO you're doing it wrong.
     
Tags: