[AusNOG] Gateway Router firewall
Luke Fong
luke at lateralplains.com
Tue Jan 10 13:11:46 EST 2017
I’d also consider the Edgerouter from Ubiquiti.
They basically forked VyOS and are now major contributers.
Does everything (BGP/OSPF etc) and can load balance or even bond WAN connections.
Just a thought.
Cheers
L
Kind Regards,
Luke Fong
Operations Manager
Lateral Plains Pty Ltd
PO Box 549
Ballarat ,Vic 3353
Tel : 03 5317 7123
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Thomas Cuthbert
Sent: Tuesday, 10 January 2017 1:08 PM
To: Joseph Goldman <joe at apcs.com.au>
Cc: Ausnog <ausnog at lists.ausnog.net>
Subject: Re: [AusNOG] Gateway Router firewall
I've been using openwrt on a linksys wrt 1900ac with great success. It supports quagga nicely. There is a loadbalancer script that I use to loadbalance over two WAN connections as well.
If I needed something beefier I'd maybe look at pfsense, vyos, cumulus or the same setup you have currently.
Regards,
Thomas Cuthbert
On Tue, Jan 10, 2017 at 9:25 AM, Joseph Goldman <joe at apcs.com.au <mailto:joe at apcs.com.au> > wrote:
Is there features those tech dont allow for?
For x86 boxes, not necessarily free but you do have VyOS and RouterOS, they close it down a bit more through their own management interfaces (CLI, GUI etc) but will have the standard protocols installed and ready to go, just got to pump in your environment specifics.
There's also the baked in Linux OS's like smoothwall and others I believe, but from memory they dont talk the more complex routing protocols, more built for just DHCP/PPP WAN with NAT and basic routing.
If you dont want something like that then your best to stick with what you know, and just upgrade the hardware behind it if you are looking for more power.
Thanks,
Joe
On 2017-01-10 11:55 AM, Glenn Hocking wrote:
Hi All
For many years been using hand rolled router/firewall boxes for my hosting network gateways. Time for an upgrade but still want the flexibility of Linux based systems. Just wondering what others like in this area and recommend as assume there should be some good hardened preconfigured systems available now. Prefer open source Linux and free.
What I currently use is,
OS: Debian Linux
BGP: quagga
Firewall: iptables
Load balancing and HA: ipvsadm + perl
Monitoring: ipt_netflow + nfsen
Cheers
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net <mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20170110/754d3c0c/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 20987 bytes
Desc: not available
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20170110/754d3c0c/attachment.png>
More information about the AusNOG
mailing list