Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. Christos

    Using pfSense with a L3 core switch

    There is a way to capture DNS traffic on pfsense and divert all port 53 traffic locally, in order to prevent clients of using external dns servers, but this must be configured manually. It is not by default. I believe the windows pc is doing come caching when using 9.9.9.9, not pfsense.
  2. Christos

    Using pfSense with a L3 core switch

    which access points will you use? what is your opinion on the Cisco Catalyst 9105? Is it better than the Business line?
  3. Christos

    Alternative to pfsense/Opnsense

    Firewalls are supposed to be “set it and forget it” devices. In this perspective I don’t believe that spending $150 each year on a device that should be sitting there and doing its job, is worth it. I understand that there is a learning curve on *sense firewall and you have to spend some hours...
  4. Christos

    home use router with BT 900Mbps that will get full speed as my Asus RT-AX55 cant do it.

    You can limit the bandwidth per client to 700mbps. Bandwidth limits are easy for the router to handle. QoS on gigabit speed requires a powerful CPU.
  5. Christos

    home use router with BT 900Mbps that will get full speed as my Asus RT-AX55 cant do it.

    Will you use 800Mbps constantly during the day? I'm asking this because if you use, let's say 600mbps, then you have 200mbps free and you don't need QoS. Maybe you only need an access pont with Guest SSID and bandwidth limit for the guests. I have Aruba InstantOn wifi access point and I can set...
  6. Christos

    home use router with BT 900Mbps that will get full speed as my Asus RT-AX55 cant do it.

    I'm afraid that you will not get over 400mbps over wifi. You can get 900mbps only with wire connection to the router. Your Asus router can give you this speed with wire.
  7. Christos

    Using pfSense with a L3 core switch

    Yes if you have much inter-vlan traffic, an L3 switch can help. But if you need vlans only for security to keep guests and IoT out of the main LAN, then an L2 switch is fine.
  8. Christos

    Using pfSense with a L3 core switch

    How do you block ports from one vlan to another? Is there a firewall between the vlans? I use pfsense firewall for inter-vlan traffic.
  9. Christos

    Alternative to pfsense/Opnsense

    Yes 23.05 Stable is just released. I'll wait for a couple of weeks before upgrading, even though with boot environments I can roll back to previous state in a matter of seconds.
  10. Christos

    Alternative to pfsense/Opnsense

    A TNSR gateway is a specialised device that does one thing: extremely fast routing and it does it well. If negate starts adding firewall features to TNSR in order to replace pfsense, then TNSR will be slower and loose its advantage. For the second part "pfsense CE is close to abandonware", I...
  11. Christos

    Small Business Stack Cisco VS Ubiquiti

    I have also noticed the gap in router offerings for the small business market. Meraki GO is expensive and garbage in features and performance. Aruba IntantOn doesn't include any router in their product line. Unifi gateways? I haven't tried them but they are famous only for their wifi products...
  12. Christos

    Router firewall configuration

    In my case, pfsense (the firewall) connects the 2 interfaces (one for each vlan). There are firewall rules for each vlan and mDNS service for broadcast traffic to passthrough between the vlans. No static routing needed. If there are many L2 switches, I understand the need for some L3 switches...
  13. Christos

    Router firewall configuration

    I don't see a reason why someone needs much inter-VLAN traffic and bandwidth. In home labs and SMBs, vlans are created for guests, cameras, IoT etc. These devices have little to no communication with other vlans, making a L3 switch a waste.
  14. Christos

    Finally made a major upgrade to my firewall router

    Both opnsense and pfsense don’t work very well with Realtek gear, especially the newer 2.5Gbit. In my case, pfsense works fine with Realtek 1Gbit butI would avoid using them if I had the chance.
  15. Christos

    Finally made a major upgrade to my firewall router

    Consider installing Proxmox and share the hardware among some virtual machines.
  16. Christos

    Secure standalone router, Ubiquiti EdgeRouter ER-X?

    ER-X is comparable to the hEX line of mikrotik routers. You can try one of these if you don't want to spend a lot of money and have time to learn RouterOS.
  17. Christos

    pfsense, possible to use old asus as APs?

    In pfsense you can use all 5 ports since they have Intel chips. You can assign any interface (WAN, LAN, VLAN) to any port. No reason to disable the original (embedded) port.
  18. Christos

    New Netgate 6100 Install

    If your LAN is 192.168.1.0/24 you cannot VPN to your LAN from another LAN that is also 192.168.1.0/24 Other than this, there is no problem.
  19. Christos

    pfsense, possible to use old asus as APs?

    The Aruba InstantOn line does not require a subscription and the management is cloud based (you don't need to have a controller running in your network). However, they are very limited in settings you can tweak and play with. If you just want to separate your network, instead of vlan you can...
  20. Christos

    pfsense, possible to use old asus as APs?

    I'm using an Aruba InstantOn access point with my pfsense box. It offers separate vlans for each SSID and the option to do NAT on each SSID and all wifi clients use a single IP address (if you need something like that for some reason).
Top