Solved

Relatively simple linux router / vpn distro

Posted on 2010-11-25
6
785 Views
Last Modified: 2012-05-10
I have discovered that my router is a piece of garbage. It doesn't even support VPN passthrough. It's a Linksys BEFSR81.

Ideally I'd like to replace it with a linux distribution running in a virtual machine on my Windows server. What is a good linux distribution which will provide a "plug and play" router that will work with virtual hardware, and basically provide the services of a decent router?

I'm primarily looking for VPN passthrough, port forwarding, and bandwidth management

Also, what extra hardware should I put in the server in the way of NICs? Would it be useful / necessary for the machine to have several network adapters to work with?
0
Comment
Question by:Frosty555
  • 3
  • 2
6 Comments
 
LVL 6

Expert Comment

by:SkykingOH
ID: 34213013
If you are willing to lean toward BSD instead of Linux the pfSense box is the most full featured free firewall/IDS/VPN concentrator available.

On the Linux side the Debian based Untangle works well.

0
 
LVL 31

Author Comment

by:Frosty555
ID: 34213978
Sure I have no qualms over what kind of OS it is. I just would like it to be relatively straightforward to configure (e.g. provide some kind of web interface or other method of configuration so I'm not playing around with settings files all day)

I'll take a look into those two products. I'm also looking at Vyatta - do you know anything about that one? It seemed to suggest that it was specifically designed to be used in a virtual environment.
0
 
LVL 31

Author Comment

by:Frosty555
ID: 34214595
I looked into Vyatta - and it is a very nice BSD based firewall/router.

But it still is basically just a graphical skin over linux's existing routing system. I still need a lot of knowledge about how to set up the iptables, the firewall, etc., far more than what you'd need for a traditional router.

I'm really looking for something with a web interface and configuration similar to that of traditional routers. Does something like that exist?
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 11

Accepted Solution

by:
Ross-C earned 500 total points
ID: 34214947
I had the same opinion as you with vyatta and didn't really have any linux experience.  Vyatta is well worth spending a bit of time evaluating.  The docs are really well written, each documented feature is like a tutorial.  After a couple of days i was able to configure a point to point ipsec vpn.  I found it easier to configure with the command line, you can press tab during the command line to drill through the commands.

There is a really good blog here http://roggyblog.blogspot.com/ with lots of vyatta video tutorials If you watch a couple of them and download the docs you should find it easier than you think.

Hope this helps
0
 
LVL 31

Author Comment

by:Frosty555
ID: 34244160
Well I've finally resurfaced after plunging in way over my head with all of these distros.

I think the problem is I just don't understand the terminology and concepts behind linux networking well enough to do anything useful with these distros.

I'v'e even give OpenWRT / DD-WRT a try but the x86 platforms are somewhat difficult to compile/setup so they work in a virtual machine environment.

I'm throwing in the towel, I think i'm just going to go buy a router.
0
 
LVL 11

Expert Comment

by:Ross-C
ID: 34252656
if you tell me what you need to do i can help you out if you like.
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now