Trying to find the ultimate homerouter
-
Ok. this probably have been asked a few times but i havent really found a good answer.
Im europe based so i prefer to buy things from amazon.co.uk or ebay.co.uk or trusted chinese vendors.Im looking for a small formfactor/low tdp preferly 4 lan but 2 might be enough box that can handle a pfsense with full utm functionability and preferly 100mbit+ openvpn
my internet connection is 250/100.
MAX price is €300 but less is much better.
i've got a 60b ssd disk but the rest i need to buy.
at the moment the j1900 quad lan box from aliexpress seems nice, im just worried that i can add a few euro and get a much more potent firewall. -
maybe something like this?
https://blog.codinghorror.com/the-scooter-computer/
https://www.aliexpress.com/item/Portable-Computer-Fanless-System-Mini-PC-with-Intel-Core-i5-5200u-barebone-system-with-dual-lan/32526410028.html?spm=2114.01010208.3.37.TGmY6s&ws_ab_test=searchweb201556_0,searchweb201602_1_10065_10068_10067_112_10069_110_111_418_10017_109_108_10060_10061_10062_10057_10056_10055_10054_10059_10058_10073_10070_10052_10053_10050_10051,searchweb201603_4&btsid=5dae13c9-b354-4d55-ad1c-d51e74745000
-
Trying to find the ultimate homerouter
A home router does only SPI & NAT without passing through any firewall rules and/or offering any
other service such likes VPN or other options like a proxy, AV scan or more and so you should be
not thinking you will be able to get your hands on hardware that is in the price line like this home
routers or around of 200 €. And on top it is counting what you may need in real, for how many
users this must be running, what services are offered, what protocols are really in usage and
how many throughput your Internet connection is offering.Ok. this probably have been asked a few times but i havent really found a good answer.
This might be based on the circumstance that the mostl use cases are totally different each from another
and here and there are other needs that must be fit.Im europe based so i prefer to buy things from amazon.co.uk or ebay.co.uk or trusted chinese vendors.
Amazon, eBay or whatever, if you find the right thing it might be not interesting from where it came ;)
Im looking for a small formfactor/low tdp preferly 4 lan but 2 might be enough box that can handle a pfsense
PC Engines APU2C4 as a bundle would be the best option in that case!
Varia store is selling world wide and sells also uk and us power cords!
If you are buying this parts as single spare parts you might be saving much money and get the
right power cord on top for the uk.with full utm functionability
That means Squid & SquidGuard, Snort or Suricata, pfBlockerNG and on top ClamAV scanning
are in the game, that should be not forgotten. All this needs power and often you may get after
installing and activating all this not so much out (throughput) of your box, please don´t forget this.Jetway NF9HG-2930 ~ £142,00 for the board
- M350 case ~50 €
- mSATA 64 GB ~50 €
- 2 x 4 GB RAM ~50 €
- PSU ~15 €
and preferly 100mbit+ openvpn
Then the Jetway would be definitive the one to go with.
my internet connection is 250/100.
APU2C4 and Jetway NF9HG-2930 would do that.
MAX price is €300 but less is much better.
Again, please have a look on or over Google what a fully featured UTM device is at its cost
in normal and please don´t forget you don´t pay for any licenses a fee!i've got a 60b ssd disk but the rest i need to buy.
Both boards the Jetway and PC Engines are able to hold a mSATA SSD drive so you might be better
going with a modern and less heat producing device such as your older SSD also power saving is
more pointed to the mSATA as a normal SSD.at the moment the j1900 quad lan box from aliexpress seems nice, im just worried that i can add a few euro and get a much more potent firewall.
You won´t! A more potential firewall is what exactly? Something that is performing firewall rules,
caching with Squid, performing IDS/IPS and on top AV scanning, and then you get out the full
250/50 down/upload and 100 MBit/s over OpenVPN? Or can the 250/50 narrowed down by all
this actions and then you may get out less? This point should be clear in front of talking about!If I should buy today new parts for that action (fully UTM) and all the 250/50 must be there also
after the activated services and functions, I would go with an Intel Core i3 or i5 and if I am a power
saving guy I would think about an Intel Xeon E3 that is strong enough for doing it all and otherwise
also holding the throughput for sure!!! And upcoming actions, features and services are also welcome
then and I don´t must change that hardware once more again.Firewall only:
- pfSense SG-2220
- PC Engines APU2C4
- Jetway NF9HG-2930
- Supermicro C2358, C2558, C2758
Firewall + VPN
- SG-2220, SG-2440, SG-4860
- PC Engines APU2C4
- Jetway NF9HG-2930
- Supermicro C2358, C2558, C2758
Firewall + VPN & Squid and Snort
- SG-2440, SG-4860, SG-8860
- PC Engines APU2C4
- Jetway NF9HG-2930
- Supermicro C2358, C2558, C2758
Firewall + VPN & Squid & Snort & AV Scan
- SG-2440, SG-4860, SG-8860
- PC Engines APU2C4
- Jetway NF9HG-2930
- ASUS Q87T + Intel Core i3/i5
- Supermicro C2558, C2758
- Supermicro Intel Xeon D-1528, D-1548
-
This is very much appreciated, im going to read this a bit more thoroughly and see what i can get out of it.Thank you for all the information.
-
Ultimate is subjective, no?
There are so many other things responsible for the network to be amazing.
The reality is that without purpose built from user experience UI all the way to the gateway device there will always be headaches and unforeseen scenarios that the user ultimately comes across for whatever insane reason.
This really is a Frankenstein's monster of hodgepodge tech where most of us just cross our fingers and hope that it works. I'd wager that no one knows every single facet of the technology they're using.