Menu
What's new
By:
Filters Better Search

SMB Router reviews

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

scotty

scotty

Senior Member
Here's something I see all to few of in general - SMB grade routers. SNB does have a few good write-ups of a few SMB class devices (I believe there's a good write up on an RV042), but I'd like to see more personally. There's a lot of people out there who run small business and relatively small offices, but need a little more than what a home-user grade box can offer. Yet when you look at most devices like Sonicwall TZ160/170/180 class, Firebox X Edge, Juniper, there's very, very few write ups. There are a few I stumble upon, but generally few and far between.

But as honest feedback, I do frequent SNB because I tend to see more here along these lines than anywhere else. Toms can't be bothered, and most other hardware sites are just that - hardware, not networking. I like SNB from the perspective that it's all networking. So in that sense, keep up the good work.
 
Hi Scotty,

I agree with you and we're trying to do more along those lines. We have started with the "SMB" offerings from the current vendor base, but plan to do more.

But I'll tell you that Cisco won't send product and Juniper didn't show much interest when we approached them awhile ago. Sonicwall is very cooperative, but their products tend to be $$$, especially when you add in the mandatory support agreements and licenses.

Here are some reviews of those devices in case you missed them:
Netgear ProSafe VPN Firewall 200 (FVX538 v2)
Netgear ProSafe Dual WAN Gigabit Firewall (FVS336G)
Zyxel Internet Security Appliance (Zywall 2 Plus)
D-Link NetDefend Firewall/VPN Security Appliance (DFL-CPG310)
Linksys 4-Port SSL/IPSec VPN Router (RVL200)
Sonicwall Internet Security Appliance (TZ 190)
Linksys 10/100 8-Port VPN Router (RV082)
Linksys 4-Port Gigabit Security Router with VPN (RVS4000)
PePLink Balance 30 Review
 
I'd love to see more here...as I'm a small business network consultant....and it's hard to find the "middle range". Most of our clients have networks from 10 - 75 PCs...a server or several in the mix, Exchange server, remote access/VPN needs, etc.

The old sub 200 dollar home grade router just shouldn't be there.

We've done several dozen of the RV0 units...mostly the 082 and 016 models.

I'm becoming more fond of some of the linux based "UTM" distros out there..which add some unified threat management features such as antivirus scanning and SPAM removal...something the small businesses find to be important features. I'll start another thread about that.
 
YeOldeStonecat said:
The old sub 200 dollar home grade router just shouldn't be there.
Click to expand...

I think I agree. But what are your reasons for not wanting a "home" grade router in a network of that size? Reliability? Features? Certainly not throughput since many "home" routers have higher throughput than SMB routers.

You certainly have the experience base, given your work. Give us your hard-earned wisdom! :)
 
thiggins said:
I think I agree. But what are your reasons for not wanting a "home" grade router in a network of that size? Reliability? Features? Certainly not throughput since many "home" routers have higher throughput than SMB routers.

You certainly have the experience base, given your work. Give us your hard-earned wisdom! :)
Click to expand...

Hi Tim...it's been a couple of years (we exchanged e-mails a few times way back in practicallynetworked days). I look forward to your forums taking off here! :)

Well...starting out years ago...as soon as small businesses started to get "broadband"...to fill that gap between shotgunning 56k modems for the cheaper offices...and saving some cash for the offices that used frame/T's...many of us in the field were just slapping in the early Linky befsr41 routers...or the Netgear (back when they were under BayNetworks) RT311, etc. The early days of broadband were unreliable....the ISPs were still maturing (both cable and DSL), as were the router manufacturers, as well as both of them trying to keep up with the subtle changes in PPPoE.

But eventually it got OK. As us techies found out which routers gave us less headaches (I moved from the befsr81 to the befSX41 models..I found throughput a hair higher, and stability).

But even then..in small businesses...10-25-40 PCs or whatever...the routers needed frequent reboots, and during heavy loads...they just couldn't handle all the concurrent connections of a large office. Sure..many (even today..the home grade ones) could keep up with throughput (as you state)...but slap an entire network behind them of many PCs....each with many little "things" connecting to the internet such as windows updates, antivirus updates, Adobe Acrobloat checking for updates, office staff with adware toolbars, blah blah...and, well, you have a situation for that little home grade router that is not unlike P2P software..in that article of yours. "Many concurrent connections".

The price of Cisco or Sonicwall or Watchguard boxes..often too much for the small business. But Linksys came out with a decent product (IMO)...the RV0 series. Beefy Intel processor, stuffed with quite a bit more RAM....after deploying quite a few of these to clients....I was no longer getting calls from my clients about "no internet". Plus, they did a decent job as far as "stable". They just kept going..and going. No more weekly reboots..no more monthly reboots even...heck I've had some that probably ran a year or more..rebooting only if I updated the firmware for something, or did some config change.

Other nice..almost enterprise grade features....something like RV0 series..built in PPTP VPN server. IMO..rock solid. However..their IPSec "QuickVPN" product leaves something to be desired...after several attempts at getting that going for clients...no more of that VPN setup for me. Ability to add ACLs to the WAN interface...example, a client of mine (golf club/beach resort) needs port 80 open on their server for this "Tea Time" software to tie into the software company. I'd be petrified to leave port 80 open on a server..but on a biz grade router like the RV0 series..you can put an ACL allowing port 80 to only be open to the range of IPs that the software company gave me.

Ability to have port based VLANs on the router itself...for smaller networks..gives you that flexibility to segment the network easily.

So to sum up your question...the features as you leave the 100-150 dollar home grade routers..and step into the 200-400 entry level biz grade routers....it's stability, ability to handle high loads of a large network, and some biz like features such as built in VPN, VLAN ability, and some lightweight ACLs.
 
I thought I recognized your handle! Nice to have you here.

Great reply. Lots of good info there.

I agree with you on Linksys' Quick VPN. Great when it works. Hell to figure out what's wrong then it doesn't!

One interesting thing is that # of concurrent connection handling has been on the rise in "home" routers. Ubicom based routers (most of D-Link's line except for the real cheapies) are very good in that regard and Ubicom tells me they can actually handle thousands of sessions! You might take a one of the D-Links at the top of the Router Simultaneous Connection charts sometime.

Another trend I'm seeing is a shift to SSL-based VPN's, even in the less expensive "SMB" routers. The Linksys RVL200 is a good example.

We will be doing more entry-level business grade products as we can get them, though.
 
thiggins said:
Another trend I'm seeing is a shift to SSL-based VPN's, even in the less expensive "SMB" routers.
Click to expand...

Agreed....SSL VPN is fantastic. Many call it "clientless"...but there's usually a tiny java based client that installs into your browser. I've gone to using SSL VPN for clients....I'm most pleased with Junipers products..such as the SA700. Granted....pricey pricey...but problem free. Another device that I never have to reboot....unless I upgrade the IVE (firmware).

As much as a Linksys fan that I was a few years ago....I never gave their SSL box a try....and based on reading some stuff in the linksysinfo forums...sorta glad I didn't.
 
I'm fairly happy with my Netgear SSL312 concentrator, I think thisone was already handled by your staff. Most newer SMB routers get the SSL-VPN feature out of the box now.
I think regarding VPN and SSL connectivity, Zyxell is a brand worth looking after, although I'm not sure how easy these are to get your hands on in US and/or Canada.
 
Don't forget about m0n0wall. It's perfect for SNB, and can easily be setup for $200 on one of the new PCEngines ALIX platforms.

It was more expensive on older hardware, like Soekris or WRAP. Used to start at $250 for the hardware. Now its well under $200.

Very solid software, too!! Great community support.

Michael
 
Last edited:
Cisco's SSL VPN is an amazing product, something they are very proud of (You can tell by the licensing fees!!). I personally use it, and SSL Explorer (It doesn't require anything to be installed, SSL Exp does) for both me, and friends/co-workers.

We also use CiscoSSL for our work network (I think we have something like 50 Licenses for SSL, 20 or IPSec) which works very well for us. We run a very VERY locked down network (No local admins, no writing to C other than a temp file for program settings).

The down side to Cisco has been the same thing for years, which they /are/ trying to improve.. sort of.. When you have a product that complicated, it really doesn't fit well into the small industry, which really hasn't been a target for them. I think the Linksys buyout was to try to move them in that direction a bit more (I just which some of the Cisco tech would step down to the Linksys line of products >.>).

The problem with low end business tech, is the lack of interest of your major names. Most aim for 20-50 heads Plus, which leaves the small guys out. When you have to pay someone to come in and reprogram your equipment every few weeks because you can't afford to staff someone, it gets to be a bit much.

I currently support around 350-400 end points (Servers/workstations/laptops/networking) with two other systems administrators (yes, two). We have quite a few people coming in fairly often to do what we can't afford to staff people for (Like recently hiring a local company to inspect our network, checking confureations, making everything run better) which helps a lot, but not something you can afford without some know how yourself.

Now, the smaller end of the scope, that needs a lot (Not nearly as much however) of the same grade of products as us, can't afford it. The worst part of all of this, most of the techs hired by small companies (Not all, so don't flame me) have never used anything outside of home grade. This in turn costs much much MUCH more than people should be spending when they can afford the better stuff but hire the wrong people.

Note: the rest is a story, and can be skipped (I tend to babble..)

A recent case, a friend of mine worked for a Tax office that had a total of five offices, all of which connecting using a hardware VPN to the main office. This system supported a VoIP (All lines came into the main office, then went out through the VPN..). The main office used a Comcast high end cable modem (16 Mb down, 512k up) at $300/month, then home cable (6 Mb down, 128k up) in its offices. When a phone rang, every come would go dead.. For WEEKS!

The tech (The one that set the system up in the first place) suggested changing all of the devices (Linksys Firewalls) to Sonicwalls (Newegg price at the time $450/each) into each (5x(450+%30)) into each office. I told him he needed better connections to support was he's trying, and also SonicWall doesn't support QOS over VPN, so it would create more problems. I suggested going with an SDSL in the main office for starters, then upgrading the connections in the offices..

A week later, the offices are sporting both ADSL, AND Cable modems, with duel (10x450+%30) SonicWall firewalls, the main office sporting duel T1's.. I just /facepalmed as the phone rang, and the system kicked out..

Moral of the story, CHOOSE YOUR TECHS WISELY!!
 
mgraves said:
Don't forget about m0n0wall. It's perfect for SNB, and can easily be setup for $200 on one of the new PCEngines ALIX platforms.

It was more expensive on older hardware, like Soekris or WRAP. Used to start at $250 for the hardware. Now its well under $200.

Very solid software, too!! Great community support.

Michael
Click to expand...

m0n0wall is a very nice product, that I use a lot for friends/family that have a home network, and no clue what that means. Very fast and easy to set up, also able to fit any needs (Just change the hardware!).
 
Brandon said:
Cisco's SSL VPN is an amazing product, something they are very proud of (You can tell by the licensing fees!!). I personally use it, and SSL Explorer (It doesn't require anything to be installed, SSL Exp does) for both me, and friends/co-workers.

We also use CiscoSSL for our work network (I think we have something like 50 Licenses for SSL, 20 or IPSec) which works very well for us. We run a very VERY locked down network (No local admins, no writing to C other than a temp file for program settings).

The down side to Cisco has been the same thing for years, which they /are/ trying to improve.. sort of.. When you have a product that complicated, it really doesn't fit well into the small industry, which really hasn't been a target for them. I think the Linksys buyout was to try to move them in that direction a bit more (I just which some of the Cisco tech would step down to the Linksys line of products >.>).

The problem with low end business tech, is the lack of interest of your major names. Most aim for 20-50 heads Plus, which leaves the small guys out. When you have to pay someone to come in and reprogram your equipment every few weeks because you can't afford to staff someone, it gets to be a bit much.

I currently support around 350-400 end points (Servers/workstations/laptops/networking) with two other systems administrators (yes, two). We have quite a few people coming in fairly often to do what we can't afford to staff people for (Like recently hiring a local company to inspect our network, checking confureations, making everything run better) which helps a lot, but not something you can afford without some know how yourself.

Now, the smaller end of the scope, that needs a lot (Not nearly as much however) of the same grade of products as us, can't afford it. The worst part of all of this, most of the techs hired by small companies (Not all, so don't flame me) have never used anything outside of home grade. This in turn costs much much MUCH more than people should be spending when they can afford the better stuff but hire the wrong people.

Note: the rest is a story, and can be skipped (I tend to babble..)

A recent case, a friend of mine worked for a Tax office that had a total of five offices, all of which connecting using a hardware VPN to the main office. This system supported a VoIP (All lines came into the main office, then went out through the VPN..). The main office used a Comcast high end cable modem (16 Mb down, 512k up) at $300/month, then home cable (6 Mb down, 128k up) in its offices. When a phone rang, every come would go dead.. For WEEKS!

The tech (The one that set the system up in the first place) suggested changing all of the devices (Linksys Firewalls) to Sonicwalls (Newegg price at the time $450/each) into each (5x(450+%30)) into each office. I told him he needed better connections to support was he's trying, and also SonicWall doesn't support QOS over VPN, so it would create more problems. I suggested going with an SDSL in the main office for starters, then upgrading the connections in the offices..

A week later, the offices are sporting both ADSL, AND Cable modems, with duel (10x450+%30) SonicWall firewalls, the main office sporting duel T1's.. I just /facepalmed as the phone rang, and the system kicked out..

Moral of the story, CHOOSE YOUR TECHS WISELY!!
Click to expand...

Very wise words.

I would tend to agree, a lot of small-business type techs and admins tend to have knowledge of only home-grade products and concepts. It's a natural progression for a lot of people. The computer tech starts helping with small networks and before you know it they're in over their head. This is how a lot of people get started, cause you have to start somewhere. It's not necessarily bad, but you do get people who don't fundamentally understand some of the technologies. But when you think about it this happens in a lot of industries and professions.
 
Wish all my clients had budgets like that... :)

Internet competition would also be nice, the Salt Lake area doesn't have much overall, unless you're really lucky.

Tam
 
You must log in or register to reply here.

Similar threads

M
CAKEQOS/FLEXQOS Advise/Guidance/Best Practice
2
Replies
34
Views
2K
marcd5123
M
R
Asus RT-AX88U Pro or BE92U (or other)?
Replies
10
Views
491
Piotrek
P
koonthul
Home Network Plan - Where and What
2
Replies
20
Views
2K
degrub
D
P
Solved Router DHCP and DNS not responding to changes
2
Replies
35
Views
3K
PTS
P
A
Need some recommendations for 2 switches
Replies
8
Views
2K
Avery
A

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 764 (members: 24, guests: 740)
Top