Network Guidance for Dual WAN and VoIP Quality of Service Choosing the right router for optimal performance
Network Guidance for Dual WAN and VoIP Quality of Service Choosing the right router for optimal performance
You're navigating a network setup for a growing team and a consultancy environment. Since you're comfortable with hardware but not networking, it's wise to focus on solutions that balance performance and reliability. Given your current setup—100 Mbit DSL, a switch with Ethernet ports and two Wi-Fi access points—consider upgrading to a more robust enterprise router that supports QoS. The ISP router alone isn't sufficient for smooth VoIP and consistent connectivity, especially with frequent dropouts. A second DSL line could help redundancy, but a dedicated enterprise router with built-in QoS will give you better control. If you're open to it, a high-end consumer router with advanced features might be more user-friendly than a specialized enterprise device. Prioritize stability for voice calls and bandwidth-heavy tasks like file sharing, and don't hesitate to consult a network specialist if needed.
I would deploy pfsense and evaluate it using a single WAN with defined policies. If the performance doesn’t improve, I would proceed to the second WAN setup. On the second WAN, I’d implement rules directing traffic to particular services or devices between different WANs.
If I were your client, I’d recommend a FortiGate 60 or 80E paired with two FortiAP 221Es. Add an extra internet connection and configure SD-WAN. Use existing devices just as modems if needed. Implement Traffic Shaping for SIP traffic, lower SharePoint Online/OneDrive usage, and route VoIP through SD-WAN while directing Cloud Drive traffic to the other link. Verify your switches support QoS and correctly process DSCP flags.
I completely steer clear of a tailored pfSense setup. Picture a failure scenario—now you must devise a workaround and act fast. You’ll need to prioritize QoS for VOIP, ensuring it gets a dedicated portion of your bandwidth. VOIP demands low latency and specific minimums, even though it doesn’t require a lot of data. What network switch are you using? It might be wiser to reach out to a nearby IT provider who can design a customized solution for your requirements.
I don't really want to handle pfSense myself, and I'd need a different device to run it on. I'm not sure what the switch does—it's a brand I haven't encountered before. Right now I'm working remotely, so I can't verify it myself. I'll ask someone later. I'd like a local IT firm to manage everything, especially since I'm mostly working from home. My managers aren't very supportive of this idea. I might request some quotes and then present my case. This seems like a good approach. I didn't realize switches had any settings; I thought it was just about connecting cables. I'll definitely explore this further. My next step is reaching out to IT companies and then, if needed, setting up a dual WAN router like the FortiGate 60E, configuring QoS, and possibly adding a second connection with SD-WAN. Thanks for your assistance!
The device is a Trendnet TE 100-s24g that isn't managed and lacks QoS or DSCP features. This suggests a replacement switch might be necessary.
When examining FortiGate options, also check out comparable Palo Alto products. Many find them quite pricey, though prices have dropped and we now have top-tier Palo Altos at lower costs than what Fortigate offered. While these models are more advanced, sales representatives can often negotiate better deals. Avoid restricting yourself to a single vendor—explore options from various suppliers. Trial units are typically available for free from most providers, and I spent months testing different vendors while searching for firewalls. Spend time discovering which brand suits your needs best and offers the features you require. One thing I noticed with Fortinet is their firmware updates aren’t always reliable, often containing bugs.
Also during testing, activate each function you intend to use so the device can perform optimally. Many performance numbers are shown without features turned on, then users ask why they don’t reach their full capacity. I tested various devices that could unlock the maximum from our internet connections, but turning on certain options would significantly cut performance.
After receiving a quote from an IT vendor, simply adapt whatever solution they suggest. You'll still need to handle configuration and installation yourself, but you'll have a ready hardware list. I’d definitely consider convincing your boss to go with an IT vendor solution—it’ll pay off in time and cost savings later.