1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Firewall/router..

Discussion in 'Linux / BSD / Mac OS X' started by Frick, Sep 14, 2007.

  1. Frick

    Frick Fishfaced Nincompoop

    Joined:
    Feb 27, 2006
    Messages:
    13,782 (3.51/day)
    Thanks Received:
    4,623
    j0 all. Now I'm settled in my new apartment in Piteå, and I have something of a connection to the World (2Mbit is teh :rockout:). I also found this cool store where they sell discarded computer parts. I got 4 NICs for like a buck each, and I built a computer with a P2. I want it to be a router and a firewall.

    I have Smoothwall, FreeSCO and Devil-Linux downloaded already, I just want to know if anyone here have some experience with any of them.. I'm kinda new to Linux, but as I have a REAL connection that's not a major problem. Soo.. Is there anything you guys would recommend?
     
    10 Year Member at TPU
  2. Frick

    Frick Fishfaced Nincompoop

    Joined:
    Feb 27, 2006
    Messages:
    13,782 (3.51/day)
    Thanks Received:
    4,623
    Nevermind, I tries Smoothwall 3.0 and it works like a charm. :D
     
    10 Year Member at TPU
  3. Frick

    Frick Fishfaced Nincompoop

    Joined:
    Feb 27, 2006
    Messages:
    13,782 (3.51/day)
    Thanks Received:
    4,623
    The performance was terrible.
     
    10 Year Member at TPU
  4. SnakeDoctor

    SnakeDoctor

    Joined:
    Aug 13, 2015
    Messages:
    310 (0.65/day)
    Thanks Received:
    171
    Location:
    South Africa ,Lions Everywhere..
    PF Sense is awesome :)
     
    elitan says thanks.
  5. Kursah

    Kursah

    Joined:
    Oct 15, 2006
    Messages:
    9,723 (2.63/day)
    Thanks Received:
    3,586
    Location:
    Missoula, MT, USA
    This.

    Its what I run at home on a custom built PC centered around an Asus N3150-C...works amazingly well and is very very well documented. I even have a spare VM as I was testing CARP (failover), worked perfect!

    You could even just turn Ubuntu Server into a router, all these Linux-based routers use IPTables for firewalling. Here read this: http://arstechnica.com/gadgets/2016/01/numbers-dont-lie-its-time-to-build-your-own-router/

    But honestly, I prefer PFSense. I don't mind command-line, that's actually pretty easy to deal with...but PFSense is a drop-in and it works kinda deal 95% of the time for me. At work we've even reduced how many Dell SonicWalls we offer and sell and instead sell Netgate and PFSense routers and have way better experiences for both us and the customers.
     
    Frick says thanks.
    10 Year Member at TPU
  6. Nobody99

    Joined:
    Jun 29, 2016
    Messages:
    140 (0.89/day)
    Thanks Received:
    27
    You need better CPU if you are going to be routing a few Gb of data, i3 would be more future proof. I have CPU with similar performance which I was planning to use for OpeMediaVault and PfSense but I soon founf out that OpenMediaVault alone overwhelmed it.

    PfSense is the best choice you can make, I favored OpnSense for a while because they updated their GUI but PfSense soon followed and it has the best documentation and support available. The best setup you could make is using PfSense router and if you want wireless you can buy AP and plug them to your ethernet ports around the house. Remember most of the routers you can buy have security vulnerabilities and they don't offer the features PfSense offers.
     
    Frick and Kursah say thanks.
  7. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    18,583 (4.50/day)
    Thanks Received:
    5,058
    Location:
    Florida
    I personally run OPNsense but agree with the above. I really like the *sense framworks.

    You can also give a try to Sophos UTM and untangle. both are free. There was another but I forgot what it was damn.
     
    Frick and Kursah say thanks.
    10 Year Member at TPU More than 25k PPD
  8. Kursah

    Kursah

    Joined:
    Oct 15, 2006
    Messages:
    9,723 (2.63/day)
    Thanks Received:
    3,586
    Location:
    Missoula, MT, USA
    Honestly that quad core has done great...though I'm only pushing gigabit infrastructure at home and 60 meg WAN and VPN tunnels. So far I haven't loaded the CPU nearly as much as expected. I will add that 2.3.2 seems to be less of a load especially with VPN tunnels.

    I've used the same board as a VM host and it does surprisingly well even with Server 2012 GUI as the core OS. But in the same breath...an i3 or i5 should do better.

    Don't count that CPU out...it also supports Intel HW encryption. Sure its not the badass 8-core Intel found in higher end Netgate routers nor is it an i3 or i5...but at what amounts to 14W power consumption CPU and board...I've been very impressed. For perspective ..my UBNT ERL ran at 7 watts usually with its dual core (iirc).

    Plus it runs circles around home-grade routers that cost the same or more (entire build-wise obviously). Considering the price for board with SoC costs less than and consumes less power than an i3 is impressive for dedicating for such a task.

    But for multigig throughput, one should and will be spending far more than that little build cost. Though I'm tempted to really stress that system now that you've voiced your opinion...frankly I've yet to ever have a performance issue I haven't tried to push multi gig networks either!

    :toast:
     
    Frick says thanks.
    10 Year Member at TPU
  9. hat

    hat Enthusiast

    Joined:
    Nov 20, 2006
    Messages:
    17,939 (4.89/day)
    Thanks Received:
    2,732
    Location:
    Ohio
    He said 2Mbit not 2Gbit. You guys are either overestimating his needs by a factor of 1000 (yikes) or talking about something else altogether. Even a Pentium 2 should be more than enough for such networking. I messed around with some router software in the past, using an old P4 Willamette, and CPU usage was always extremely low.

    Frick, if using this computer as a router is the way you want to go, I'd first suggest DD-WRT. There's an x86 edition which will run on that machine. If you find yourself looking for more features than that, well... I wouldn't know where to go from there. It seems you may be looking for something basic to me, so there's a basic option.
     
    Frick says thanks.
    10 Year Member at TPU
  10. qubit

    qubit Overclocked quantum bit

    Joined:
    Dec 6, 2007
    Messages:
    13,126 (4.00/day)
    Thanks Received:
    6,655
    Location:
    Quantum Well UK
    You took 9 years to tell us that?
     
    SnakeDoctor, Frick, Caring1 and 3 others say thanks.
  11. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    18,583 (4.50/day)
    Thanks Received:
    5,058
    Location:
    Florida
    lol didnt notice that.
     
    SnakeDoctor and qubit say thanks.
    10 Year Member at TPU More than 25k PPD
  12. hat

    hat Enthusiast

    Joined:
    Nov 20, 2006
    Messages:
    17,939 (4.89/day)
    Thanks Received:
    2,732
    Location:
    Ohio
    [​IMG]
     
    Frick and Kursah say thanks.
    10 Year Member at TPU
  13. Frick

    Frick Fishfaced Nincompoop

    Joined:
    Feb 27, 2006
    Messages:
    13,782 (3.51/day)
    Thanks Received:
    4,623
    Was wondering when someone would notice. :roll:

    EDIT: I have been thinking about doing it again, so the advice is welcome anyway!
     
    Last edited: Aug 23, 2016
    Caring1 says thanks.
    10 Year Member at TPU
  14. elitan New Member

    Joined:
    Sep 4, 2016
    Messages:
    14 (0.16/day)
    Thanks Received:
    3
    I deployed PFSENSE as my internet gateway. If you are new to linux. PFsense maybe the best one
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)