PfSense, ALIX & Cisco Router Guidance
-
Hello. I am currently moving away from my ISP provided D-Link all in one device for my home broadband onto better stuff. I have a few needs which are not possible with the all in one box, plus, the all in one box is croacking and needs resetting more regular.
I have a Cisco 1921 router with ADSL module acting as router and modem and I have enabled the firewall feature on the Cisco router too. I have an Asterisk PBX running on an ALIX board and I am port forwarding ports from my Internet Telephony Service Providers (ITSP) to the Asterisk PBX. My D-Link devie is now only acting as a switch and a wireless access point.
Here are my needs…
-
VPN to privateinternetacces.com from the router/firewall so VPN clients are not needed on each laptop/mobile/tablet
-
A few dedicated LAN IP addresses which will bypass the VPN
-
Ability to restrict bandwidth usage of certain IP address
-
Ability to ensure VoIP phones and VoIP trunks get preferred bandwidth when in use
I have a spare ALIX board already and CF card on the way from eBay. I want to build pfSense on the spare ALIX board and have it also acting as a wireless access point.
I would rather avoid having to buy an expensive 8+ port managed PoE switch and go for something like a cheap unmanaged Netgear switch and traffic shaping to be done with pfSense.
My concern is the peformance I will get from the ALIX board. I am hoping to keep the router and firewall bits on the Cisco router and use the pfSense ALIX board to run as the access point, run the VPN and run traffic shaping, with perhaps some detailed future firewall requirments possibly scope creeping into the pfSense.
Does this set up sound feasible or would an ALIX board grind to a halt with this load? I could possibly set up the VPN on the Cisco router too, but to be honest i'm not really sure how I could have certain LAN IP addresses bypass it that way for starters, and possibly there are other issues with that setup which I am not sure of.
I hope this makes sense and you can help.
-