Routers and switches
-
@mroth911 said in Routers and switches:
I am using Comcast router. Going into a hp2920 with pfsense vm
Oh, you the issue here is that you don't have a physical firewall / router. Now it is more clear. Then okay, just get a Ubiquiti ERL and remove the pfSense completely, you don't want a VM based router on your network.
-
Ok sounds good I glad I was on the right track. I also have a Cisco 2811 router, dont know how to
Program it. -
@scottalanmiller said in Routers and switches:
you don't want a VM based router on your network.
What's wrong with it?
If he has more than one NIC on the VM host, he could dedicate one NIC to the PFSense, and the other to be shared internally.
Granted, personally, I like the idea of having the firewall be its own appliance, but is it completely needed?
-
@mroth911 said in Routers and switches:
Ok sounds good I glad I was on the right track. I also have a Cisco 2811 router, dont know how to
Program it.Toss it. For $65 you can have a good router that kicks its butt and you don't have to spend time learning Cisco and you don't have to worry about how to fix it should something go wrong.
-
@dashrender said in Routers and switches:
@scottalanmiller said in Routers and switches:
you don't want a VM based router on your network.
What's wrong with it?
It's not at the network edge. So the traffic is inside the network before being filtered. Fundamentally illogical for a network edge security device.
-
@scottalanmiller said in Routers and switches:
@dashrender said in Routers and switches:
@scottalanmiller said in Routers and switches:
@mroth911 said in Routers and switches:
I have a web hosting business.
That doesn't explain the need for double routers, though. If you have pfSense, why add another router? Are you just looking to upgrade from pfSense to something more serious?
I'm guessing that the ISP is delivering Fiber to him.. he has to convert it to ethernet for his network, or run fiber NICs everywhere
I've literally never heard of an ISP that hands off fiber. Who do you know that does that?
My ISP does if you want but it is way too expensive for us. don't even remember the price... So we simply receive the fiber and the other equipment and their stuff convert to ethernet in our racks. Then we plug the eth in the firewall.
-
@matteo-nunziati said in Routers and switches:
@scottalanmiller said in Routers and switches:
@dashrender said in Routers and switches:
@scottalanmiller said in Routers and switches:
@mroth911 said in Routers and switches:
I have a web hosting business.
That doesn't explain the need for double routers, though. If you have pfSense, why add another router? Are you just looking to upgrade from pfSense to something more serious?
I'm guessing that the ISP is delivering Fiber to him.. he has to convert it to ethernet for his network, or run fiber NICs everywhere
I've literally never heard of an ISP that hands off fiber. Who do you know that does that?
My ISP does if you want but it is way too expensive for us. don't even remember the price... So we simply receive the fiber and the other equipment and their stuff convert to ethernet in our racks. Then we plug the eth in the firewall.
Why would you want the fiber delivered directly to you?
-
@dashrender said in Routers and switches:
@matteo-nunziati said in Routers and switches:
@scottalanmiller said in Routers and switches:
@dashrender said in Routers and switches:
@scottalanmiller said in Routers and switches:
@mroth911 said in Routers and switches:
I have a web hosting business.
That doesn't explain the need for double routers, though. If you have pfSense, why add another router? Are you just looking to upgrade from pfSense to something more serious?
I'm guessing that the ISP is delivering Fiber to him.. he has to convert it to ethernet for his network, or run fiber NICs everywhere
I've literally never heard of an ISP that hands off fiber. Who do you know that does that?
My ISP does if you want but it is way too expensive for us. don't even remember the price... So we simply receive the fiber and the other equipment and their stuff convert to ethernet in our racks. Then we plug the eth in the firewall.
Why would you want the fiber delivered directly to you?
well it is not that I want it, it is how fiber connectivity is delivered in Italy in industrial areas: FTTH all around. FTTC only where you have legacy infrastructure with copper lines (I mean the POTS) like offices, houses and the so. there they wire everything with fiber but the last "mile".
In my industrial area you have only to choose: dark fiber and buy your equipment or shared/limited bandwith and reduced cost along with all the fiber-to-copper conversion stuff. -
@matteo-nunziati said in Routers and switches:
@dashrender said in Routers and switches:
@matteo-nunziati said in Routers and switches:
@scottalanmiller said in Routers and switches:
@dashrender said in Routers and switches:
@scottalanmiller said in Routers and switches:
@mroth911 said in Routers and switches:
I have a web hosting business.
That doesn't explain the need for double routers, though. If you have pfSense, why add another router? Are you just looking to upgrade from pfSense to something more serious?
I'm guessing that the ISP is delivering Fiber to him.. he has to convert it to ethernet for his network, or run fiber NICs everywhere
I've literally never heard of an ISP that hands off fiber. Who do you know that does that?
My ISP does if you want but it is way too expensive for us. don't even remember the price... So we simply receive the fiber and the other equipment and their stuff convert to ethernet in our racks. Then we plug the eth in the firewall.
Why would you want the fiber delivered directly to you?
well it is not that I want it, it is how fiber connectivity is delivered in Italy in industrial areas: FTTH all around. FTTC only where you have legacy infrastructure with copper lines (I mean the POTS) like offices, houses and the so. there they wire everything with fiber but the last "mile".
In my industrial area you have only to choose: dark fiber and buy your equipment or shared/limited bandwith and reduced cost along with all the fiber-to-copper conversion stuff.Interesting. I have fiber into my building, but the provider still handles the conversion to copper (ethernet) for me.
-
@dashrender you mean FTTB? This is available only in a few areas here. More common in the big cities.
Basically if you look at our rack you will see 2 fiber optic patch panels. One is our internal patch panel with OM2 and OM3, the other one is from our ISP and hosts the monomode fiber for WAN.
If you rent the "entire" cable you get a dark fiber in the optich patch panel. period.
Otherwise you also receive the conversion stuff. Including a cisco router reserved for the ISP "tricks and games". -
+100 for Ubiquiti, also take a look at Mikrotik
-
@r3dpand4 said in Routers and switches:
+100 for Ubiquiti, also take a look at Mikrotik
Yeah, both are good. Amazing how good a lot of options are today. For cheap.