Ubiquiti edgerouter lite support?
-
It sounds interesting to try pfSense on an EdgeRouter.
-
Could you tell a little bit more what you know about the hardware crypto support? I installed FreeBSD on mine and /dev/crypto seems to speed up AES by 2x. Is there more hardware on there that needs support? Or only more proprietary/FPGA stuff or something?
If you (or somebody else) still got FReeBSD running on this device I would like to know some real life experience when using AES-256-CBC for OpenVPN tunnel. I'm stuck at about 7 Mbit/s with stock firmware. A UBNT staff makes the, in my opinion uneducated guess, OpenVPN itself is to blame for poor performance: http://community.ubnt.com/t5/EdgeMAX/OpenVPN-site-to-site-speed-limit-10-Mbit/m-p/925934#M36502
Crypto offloading seems on their ToDo list since the release of the product.
So I am curious what speed you get using the crypto h/w running FreeBSD.
Of course I would like to see pfSense as well for this router but I am waiting patiently. -
any news after the release of the 2.2 version of pfSense?
-
Knew this was coming, one work day after the release.
Not even mad. (But not answering.). :-X
-
I'm from the other side of the globe, but IIRC that's part of the "Miranda warning", no?
"everything you say can and will be used against you…"it's always positive there are certainties in life ;D
-
I'm from the other side of the globe, but IIRC that's part of the "Miranda warning", no?
"everything you say can and will be used against you…"it's always positive there are certainties in life ;D
Technically, that part of the Miranda warning is: "anything the suspect does say can and may be used against them;" Of course, immediately preceding same is, "you have the right to remain silent".
-
I was being good and didn't ask but it sure would be sweet to be able to use the little Ubiquity box without suffering the brain cramps the command line stuff gives me.
-
it would make a more affordable replacement for people who something more than standard box store option i know of several home already
-
By the way you mentioned getting pfsense running on the Lite version … is the Pro 8 port version that much different in architecture ? its also a MIPS processor ...
cmon, trying to save 500$ and still get an 8 port home pfsense router lol
-
The CPUs are somewhat different.
http://pastebin.com/index/ZQuLL6y8
I can't find any support for Octeon II in FreeBSD. Might not be too difficult to add, but … meh.
-
Yea .. looks like only the Lite has been tested with FreeBSD. https://wiki.freebsd.org/FreeBSD/mips/Octeon
But if you look at this file: http://web.mit.edu/freebsd/head/sys/mips/conf/OCTEON1
It does say "Support for Ubiquity Boards" Boards as in plural … I wonder what they mean by that...
-
okay looking at ubiquity firmware packages, they offer 2 FW files:
E100 for the 3 port and POE 5 port models.
E200 for the 8 port models.
If they have to offer different packages, that probably means they are not compatible with each other …
-
Has anyone tried to build their own FreeBSD source using pfSense for the Edgemax using the guide posted here (http://rtfm.net/FreeBSD/ERL/#build)?
I have a feeling there will be a lot of bricked routers in the future ;)
-
I have a feeling there will be a lot of bricked routers in the future ;)
The nice thing about the ERL, is that the os is stored on a USB drive. The smart thing would be to use a different usb stick if you wanted to play. When your done, pop the original stick in and boot up the OEM software.
From what I have read, the ERL will only process ~300mb/s if you are doing software routing. If you turn on the HW assist, that is where they get the speed. Maybe I am wrong, but I don't see pfSense being able to take advantage of the HW assist without a lot of work. I may be wrong. Without a sponsor, I don't see a bushiness case for supporting this hardware under the Ubiquity label. All a port does is make Ubiquity more money.
-
well, i guess the only real use for those ERL routers is if you don't have a gigabit interface for WAN… honestly, i would not use those for a business ... i would just buy an APU or a C2778 or a Lanner.... UNLESS ... you are dealing with one of those customers who says "OMG TOO MUCH MONEY TOO MUCH MONEY ... 500 dolla for 50 port switch ? TOO MUCH MONEY TOO MUCH MONEY, BRING PRICE DOWN BRING PRICE DOWN" and thats when i start installing shit hardware at their business and not give a shit :)
I actually heard a story where this guy who constantly works with cheap ass customers installed 3x 16 port bottom of the barrel switches instead of buying a good cisco SG200 50 port because the customer said cisco small business was too much money lol Those are the guys who drive around in their Mercedes and cheap out hard on IT ,and then their IT breaks down and they blame the IT guys hahahaha
-
pfSense on the ERL would be a nice thing, make life easier on someone like me with limited networking skills. I feel like the command line on the ERL is too much like regex, if you don't use it daily and keep good notes it is write-only. The GUI is too limiting but getting better.
I'd love to see a pfSense device similar to the VK-T40E http://store.pfsense.org/VK-T40E/ but closer to the $100-200 price point, much lower performance would be fine.
I just can't justify $450 when a re-purposed old computer and a few bits from the parts bin do the job.
The ERL was bought to see if the size, noise and power savings were worth the missing features and much harder configuration, they weren't. so I'm back on my pfSense HP-7900 and the ERL is going to be set up as a limited capability backup for the pfSense system.
-
No i agree the light is a great platform for people who has some light use requirements at home and want to run pfsense at home without spending a ton, its like an upgrade over getting a cheap router and loading DD-WRT on it.
I just recently ordered a Ubiquity 8 port Pro model just so that i can set it up in my lab, and i will likely use it in my lab network that requires 1GBPS routing between VLANS. I just can't justify spending over 1K on a C2778 system with 8 NIC ports for a lab network, but 485$ CAD delivered with taxes i can justify it.
If pfsense support ever comes to the 8 port Ubiquity models, great … I'll upgrade it to pfsense, if not ... not a big deal, for business clients, i will still recommend them the C2778 model from Netgate when possible or the APU model. ( i like C2778 because i can install vmware on it and run pfsense and a domain controller on a remote site in same box ).
-
When Bhyve boots windows, you won't need VMware.
-
I'm also very interested in getting pfSense running on the ERL. We have an ERL that provides our gateway to our local university. Our school, as well as most of the other schools in Maine, get their Internet access this way through ERLs or their big brother.
-
Ill be the next one to ask.
Any news? :D
Thanks!
