John R Pierce
2015-Jun-29 06:29 UTC
[CentOS] Using a CentOS 6 Machine as a gateway/router/home server
On 6/28/2015 11:11 PM, Sorin Srbu wrote:> May I ask why you don't just use a made-for-the-purpose-distro like > Smoothwall to do this?indeed, I use pfSense, running on a APU1D4 [1] router board as my firewall, and a separate home server on a HP Microserver [2]. IMHO, keeping the firewall function completely separate simplifies security. that router board can handle 300 Mbit/sec of NAT firewall rules, since I only have 30Mbit internet, thats plenty of headroom. the Microserver has 4x3 TB SATA drives in a raidZ (ZFS) for 7.5 TiB usable. I can muck about with the server at my leisure, and reboot it, and not affect internet routing to my wife. the firewall doesn't need mucking about with and has uptimes measured in months (time between pfSense upgrades). pfSense provides the DHCP and DNS and NTP services for the LAN. [1] http://store.netgate.com/kit-APU1C4.aspx [2] http://www8.hp.com/h20195/v2/GetPDF.aspx/c04111079.pdf -- john r pierce, recycling bits in santa cruz
Sorin Srbu
2015-Jun-29 06:50 UTC
[CentOS] Using a CentOS 6 Machine as a gateway/router/home server
> -----Original Message----- > From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On > Behalf Of John R Pierce > Sent: den 29 juni 2015 08:29 > To: centos at centos.org > Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home > server > > On 6/28/2015 11:11 PM, Sorin Srbu wrote: > > May I ask why you don't just use a made-for-the-purpose-distro like > > Smoothwall to do this? > > indeed, I use pfSense, running on a APU1D4 [1] router board as myfirewall,> and a separate home server on a HP Microserver [2]. IMHO, keeping the > firewall function completely separate simplifies security. > > [1] http://store.netgate.com/kit-APU1C4.aspx > [2] http://www8.hp.com/h20195/v2/GetPDF.aspx/c04111079.pdfThat DIY Kit was pretty cool, thanks for the info! -- //Sorin
John R Pierce
2015-Jun-29 07:02 UTC
[CentOS] Using a CentOS 6 Machine as a gateway/router/home server
On 6/28/2015 11:50 PM, Sorin Srbu wrote:> That DIY Kit was pretty cool, thanks for the info!I note everyone is moving over to the Intel Avoton/Rangley 'system on a chip', this is the Xeon Atom C2xx8 series, like this... http://store.netgate.com/ADI/RCC-VE-2440-board.aspx (other versions of Rangley come with 2-4-6 ethernet ports, and 2-4-8 cores) these are higher performance than the APU, for somewhat more watts and dollars. -- john r pierce, recycling bits in santa cruz