Firewall Router solution for a small network

[Brother]

Hi guys,

I am on the market for good firewall router solution for my home. I have a seperate Access point Ruckus 7363 and I am quite happy with its speed for now, I have a Netgear gigabit switch to help me with additional connections, but my ubiquiti edgerouter poe is too complicated to operate and I generally don't like it (maybe it is a personal thing) so I am looking into other things.

 

I have a 120MBps internet connection so the WAN to LAN speed has to at least 250MBps to cover the upload too, also in future it is possible to get higher speed connection so the more the bandwidth of router is the better.

I found a Netgear ProSafe FVS318G for about 50 euro (second hand) but is it good and stable?

Maybe you can recommend me something
Thanks!

[kristaps552]

PFsense?

[Brother]

I tried it and it just doesn't work for me, it blocked so many of the websites (including this one) so I quit trying to set it, also it is more expensive to build a computer, and not very power efficient too. I know I did something wrong because it is a powerful solution but I just didn't have the nerves and probably the knowledge to do it.

[Z3R0C00L]

Technically, PFsense shouldn't block anything from the LAN to WAN ... unless you specified otherwise in the firewall rules.
Pretty much any Gigabit router will be able to handle your 120Mbps connection. (BTW its full duplex which means 120 Download and 120 upload does not equal to 250Mbps)

BUT !!! It will all depends on

1) How many firewall rules you have
2) If you are using a VPN (IP sec and stuff can require a powerful CPU)

3) How many devices are connecting to the internet at the same time (maximum simultaneous connection)

[Brother]

Technically, PFsense shouldn't block anything from the LAN to WAN ... unless you specified otherwise in the firewall rules.

Pretty much any Gigabit router will be able to handle your 120Mbps connection. (BTW its full duplex which means 120 Download and 120 upload does not equal to 250Mbps)

BUT !!! It will all depends on

1) How many firewall rules you have

2) If you are using a VPN (IP sec and stuff can require a powerful CPU)

3) How many devices are connecting to the internet at the same time (maximum simultaneous connection)

 

Pfsense didn't block anything but when I install the addons including the firewall it begins to, but no matter because it is too ineffective solution for me. I usually don't have VPN connections, so not a problem, I have a max number of devices about 20.

About the Gigabit I agree that usually it will handle 120down and 120up, but just saying that less then gigabit won't work.

I don't understand firewall rules so non, that is why I want a simple solution and I want to be protected without having to understand how , but I plan to use owncloud which I think is a sort of VPN also I connect to a remote desktop very often so maybe it matters.

 

Also I have tried consumer solutions they just and plainly cannot handle workloads not that I can explain my workload very well but it seems to be heavy. Ubiquiti is stable but what I see in the firewall is that you cannot make requests from outside and that is the only protection I can find, and it seems stupid :) maybe this is normal for all routers but I don't know, that is why I asked you guys:)

 

I hope this added information helps.

Thanks again!

[Z3R0C00L]

Pfsense didn't block anything but when I install the addons including the firewall it begins to, but no matter because it is too ineffective solution for me. I usually don't have VPN connections, so not a problem, I have a max number of devices about 20.

About the Gigabit I agree that usually it will handle 120down and 120up, but just saying that less then gigabit won't work.

I don't understand firewall rules so non, that is why I want a simple solution and I want to be protected without having to understand how , but I plan to use owncloud which I think is a sort of VPN also I connect to a remote desktop very often so maybe it matters.

 

Also I have tried consumer solutions they just and plainly cannot handle workloads not that I can explain my workload very well but it seems to be heavy. Ubiquiti is stable but what I see in the firewall is that you cannot make requests from outside and that is the only protection I can find, and it seems stupid maybe this is normal for all routers but I don't know, that is why I asked you guys:)

 

I hope this added information helps.

Thanks again!

Yes a firewall by default will block everything coming from the WAN to go to the LAN.

A rule is when you allow a protocol / port to be open.

So if you have 100 rules, the router will have to go through all of them until it finds a match. So a slower firewall will take a while to go through multiple rules.

 

As far as i know owncloud is not a VPN service but more like a dropbox (cloud storage) that its hosted on your private server.

If you can describe your workload / internet usage (try the best you can) it will help us to give you a better answer.

 

[Brother]

Yes a firewall by default will block everything coming from the WAN to go to the LAN.

A rule is when you allow a protocol / port to be open.

So if you have 100 rules, the router will have to go through all of them until it finds a match. So a slower firewall will take a while to go through multiple rules.

 

As far as i know owncloud is not a VPN service but more like a dropbox (cloud storage) that its hosted on your private server.

If you can describe your workload / internet usage (try the best you can) it will help us to give you a better answer.

 

Well we download a lot of files, upload a lot of files, photos, videos and all kinds. Watch Youtube, heavy multitasking in web browser, On-line gaming and many times that is simultaneously from about 10 devices. in September or October just for fun I measured the total network traffic toward the internet and it was about 2400Gb for 31 days if that helps. it is a small dorm-room (a house really) and 11 people live here, if that is any help too

 

I would like if there is such a thing to be able to prioritise VOIP, Multimedia and other stuff, I know there are NICs that do it but not very well I think