F5F Stay Refreshed Power Users Networks Linus prefers IPSec over OpenVPN for networking reasons.

Linus prefers IPSec over OpenVPN for networking reasons.

Linus prefers IPSec over OpenVPN for networking reasons.

Pages (3): Previous 1 2 3 Next
C
ChibiDusk
Member
Find
164
02-16-2016, 03:44 AM
#11
A device costing around $4000 can still achieve 300Mbps with IPSEC VPN. High-end setups aren't inexpensive.
Reply
Reply
C
ChibiDusk
02-16-2016, 03:44 AM #11

A device costing around $4000 can still achieve 300Mbps with IPSEC VPN. High-end setups aren't inexpensive.

Reply
Reply
D
DantBossGamer
Member
Find
191
02-22-2016, 09:04 AM
#12
Really, it would make a big difference if OpenVPN could handle multiple threads at once.
Reply
Reply
D
DantBossGamer
02-22-2016, 09:04 AM #12

Really, it would make a big difference if OpenVPN could handle multiple threads at once.

Reply
Reply
T
Thi3uM_BzHash
Member
Find
60
03-10-2016, 05:14 AM
#13
They usually overcharge most of it, take a look at the ISR4k—list price around $3.3k for the 4331, and out of the box it only offers 100 Mbps with an extra costly license to raise it to 300. Most businesses can secure about half off, but you're mainly paying for the brand name and IOS. You could get a few extra gigabytes for a couple hundred bucks on the Mikrotik model like the RB4011iGS+RM or similar, depending on your needs.
Reply
Reply
T
Thi3uM_BzHash
03-10-2016, 05:14 AM #13

They usually overcharge most of it, take a look at the ISR4k—list price around $3.3k for the 4331, and out of the box it only offers 100 Mbps with an extra costly license to raise it to 300. Most businesses can secure about half off, but you're mainly paying for the brand name and IOS. You could get a few extra gigabytes for a couple hundred bucks on the Mikrotik model like the RB4011iGS+RM or similar, depending on your needs.

Reply
Reply
K
Komodo88
Senior Member
Find
749
03-10-2016, 06:59 AM
#14
We rely heavily on Mikrotik for customer circuits and as CPE; they are excellent devices. I understand you're investing in their brand, but Cisco has a solid history and the CCNA is a recognized networking standard. For daily use of customer CPE, I'd prefer a Routerboard, though for critical high-availability equipment I'd still choose Cisco. If Mikrotik continues improving as it has before, I wouldn't be surprised by future changes. I’ll note this is qualified since I’m certified in both Cisco and Mikrotik gear and also serve as a trainer for both.
Reply
Reply
K
Komodo88
03-10-2016, 06:59 AM #14

We rely heavily on Mikrotik for customer circuits and as CPE; they are excellent devices. I understand you're investing in their brand, but Cisco has a solid history and the CCNA is a recognized networking standard. For daily use of customer CPE, I'd prefer a Routerboard, though for critical high-availability equipment I'd still choose Cisco. If Mikrotik continues improving as it has before, I wouldn't be surprised by future changes. I’ll note this is qualified since I’m certified in both Cisco and Mikrotik gear and also serve as a trainer for both.

Reply
Reply
5
535Henrik
Junior Member
Find
45
03-13-2016, 12:00 AM
#15
It's usually better to allow the router to handle things like firewall and intrusion detection, and use a dedicated machine for advanced features such as VPN.
Reply
Reply
5
535Henrik
03-13-2016, 12:00 AM #15

It's usually better to allow the router to handle things like firewall and intrusion detection, and use a dedicated machine for advanced features such as VPN.

Reply
Reply
S
SwaaqxL
Junior Member
Find
17
03-17-2016, 05:55 PM
#16
I assume you handle relatively few networks on a large scale
Reply
Reply
S
SwaaqxL
03-17-2016, 05:55 PM #16

I assume you handle relatively few networks on a large scale

Reply
Reply
_
_dauerzocker_
Member
Find
73
03-18-2016, 12:23 AM
#17
No but i have pfsense so i can see how much of a hog snort is in terms of CPU. And i only have a 100/10 internet which is far from what a business have... There is no reason to strain the router with VPN when you can do it more cheaper on a separate machine.
Reply
Reply
_
_dauerzocker_
03-18-2016, 12:23 AM #17

No but i have pfsense so i can see how much of a hog snort is in terms of CPU. And i only have a 100/10 internet which is far from what a business have... There is no reason to strain the router with VPN when you can do it more cheaper on a separate machine.

Reply
Reply
H
HoofdPiet123
Member
Find
51
03-18-2016, 07:29 AM
#18
It seems like you're wondering about the practicality of something for personal use, especially since your current setup is already functional. It might not add much value unless it solves a specific need.
Reply
Reply
H
HoofdPiet123
03-18-2016, 07:29 AM #18

It seems like you're wondering about the practicality of something for personal use, especially since your current setup is already functional. It might not add much value unless it solves a specific need.

Reply
Reply
M
marmonar
Member
Find
82
03-19-2016, 11:59 AM
#19
It clearly states the point until you gain real-world experience in a professional setting, where you’re forced to back up what you claim.
Reply
Reply
M
marmonar
03-19-2016, 11:59 AM #19

It clearly states the point until you gain real-world experience in a professional setting, where you’re forced to back up what you claim.

Reply
Reply
P
phoenixtigger
Member
Find
129
03-26-2016, 05:47 PM
#20
I don't agree. Having the VPN on the router makes it part of the main routing table, which increases flexibility. Why install another device that uses power, needs setup, and relies on Ethernet ports when you don't? It's simpler to manage all network settings on one unit. I'd also keep WiFi enabled if pfSense's support was decent. Running a VPN server directly on the router is even better—it gives full LAN access without altering the routing table on the VPN device, which already handles the default route.
Reply
Reply
P
phoenixtigger
03-26-2016, 05:47 PM #20

I don't agree. Having the VPN on the router makes it part of the main routing table, which increases flexibility. Why install another device that uses power, needs setup, and relies on Ethernet ports when you don't? It's simpler to manage all network settings on one unit. I'd also keep WiFi enabled if pfSense's support was decent. Running a VPN server directly on the router is even better—it gives full LAN access without altering the routing table on the VPN device, which already handles the default route.

Reply
Reply
Pages (3): Previous 1 2 3 Next