Comment on US bans any new consumer-grade routers not made in America
magic_smoke@lemmy.blahaj.zone 2 days agoTell that to the poweredge r210 ii in my closet running PFsense with its CPU barely getting touched despite four NICS, two of them 10gbps.
You’re thinking of switching hardware.
That being said I might go hit up mikrotik while I still can.
Worst case I just buy em like I do my FPV flight controllers: from Ali Express
teawrecks@sopuli.xyz 1 day ago
Interesting, yeah I’m not actually well versed, that’s why i began with “afaik” hah. My experience with EdgeRouter is that you basically have to enable hw offloading to get the full throughput, and my assumption was that probably all off-the-shelf routers are doing something similar for them to be usable in such a small/cheap/lower-power box.
When you say I might be thinking of “switching hardware”, I assume you’re referring to “managed switching”, and isn’t that just routing without any NAT? Like, if your pfsense router has 4 NICs, then it has to do the job of both a router and switch, no? First one, then the other for each packet?
magic_smoke@lemmy.blahaj.zone 1 day ago
Doing routing/firewall in software is a lot more flexible, and easier to patch when vulnerabilities come out. Keep in mind those edgerouters look like they have dual core embedded MIPS CPUs. My dell power edge is a full blown rack-mount server that could run your plex instance.
That’s what makes up for the lack of dedicated asics.
As for the four NICs they are as follows:
1gb - wan (to modem) 1gb - config (to config vlan on switch) 10gbps - main lan trunk to LAN switch 10gbps - trunk line to public server VM host (DMZ’d from rest of lan, each VM has its own vlan/subnet/firewall ruleset)
They don’t act as a switch because it handles packets, not frames, allowing/dropping/denying them based on rules set in software.
teawrecks@sopuli.xyz 1 day ago
Man, just when I think I understand home networking…