• DD-WRT versus OpenWRT versus Tomato?

    From poindexter FORTRAN@VERT/REALITY to All on Sun Jan 3 09:32:00 2021
    Does anyone have experience with the various Linux-based firewall firmwares?

    I'm running DD-WRT with Entware now, and am looking to add NFS support and maybe reverse proxying via HAproxy or Nginx to my firewall. Does anyone have any experience extending OpenWRT or Tomato?


    ... Change nothing and continue consistently
    --- MultiMail/XT v0.52
    ■ Synchronet ■ realitycheckBBS -- http://realitycheckBBS.org
  • From Nelgin@VERT/EOTLBBS to poindexter FORTRAN on Sun Jan 3 17:49:44 2021
    poindexter wrote:
    Does anyone have experience with the various Linux-based firewall firmwares?

    I'm running DD-WRT with Entware now, and am looking to add NFS support and maybe reverse proxying via HAproxy or Nginx to my firewall. Does anyone have any experience extending OpenWRT or Tomato?

    I've been using OpenWRT for about a year or so now and I've never been happier with it.

    There's already packages to support NFS.

    nfs-kernel-server Kernel NFS server support
    nfs-kernel-server-utils NFS server utils
    nfs-utils Updated mount.nfs command - allows mounting nfs4 volumes
    nfs-utils-libs Libraries provided by nfs-utils
    kmod-fs-nfs Kernel module for NFS client support
    kmod-fs-nfs-common Common NFS filesystem modules
    kmod-fs-nfs-common-rpcsec Kernel modules for NFS Secure RPC kmod-fs-nfs-v3 Kernel module for NFS v3 client support
    kmod-fs-nfs-v4 Kernel module for NFS v4 support
    kmod-fs-nfsd Kernel module for NFS kernel server support

    and those for haproxy too

    haproxy Open source Reliable, High Performance TCP/HTTP Load Balancer.


    There's hundreds of packages for OpenWRT so I was able to offload jobs my
    linux box was doing. It can update dynamic DNS automatically (I run my own DNS server) it was a breeze to setup. I also setup my ipv6 in ipv4 tunnel to HE so I no longer have to keep my linux box up to maintain ipv6 connectivity.

    It also does a bunch of other stuff for me. Try it, I think you'll be happy with it.

    ---
    ■ Synchronet ■ End Of The Line BBS - endofthelinebbs.com
  • From Arelor@VERT/PALANT to poindexter FORTRAN on Sun Jan 3 18:06:30 2021
    Re: DD-WRT versus OpenWRT versus Tomato?
    By: poindexter FORTRAN to All on Sun Jan 03 2021 09:32 am

    Does anyone have experience with the various Linux-based firewall firmwares?

    I'm running DD-WRT with Entware now, and am looking to add NFS support and maybe reverse proxying via HAproxy or Nginx to my firewall. Does anyone have any experience extending OpenWRT or Tomato?


    ... Change nothing and continue consistently

    My experience is mainly with RouterOS, which is a propietary Linux based firmware for Mikrotik boards.

    It is mainly intended for ISP/WISP service so not really what you are asking for.

    RouterOS has ok proxy capabilities, but afaik no real reverse proxy out of the box.

    I don't think having NFS (or any sort of data storage, for that matter) in a router is wise. If you have proper servers in your home LAN you may be much better off serving your NFS filesystems from one of them.

    It would helpful to know which sort of load you are expecting. Most consumer grade routers lack horsepower to do anything heavy.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    ■ Synchronet ■ Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Gamgee@VERT/PALANT to poindexter FORTRAN on Sun Jan 3 19:43:00 2021
    poindexter FORTRAN wrote to All <=-

    Does anyone have experience with the various Linux-based firewall firmwares?

    I have used DD-WRT in the past, on a Linksys WRT-54G, and it was
    acceptable.

    I now use (and have for years) a firewall *software* (not firmware) on
    an old spare small-form-factor PC (a Dell 960), called IPFire. It is
    VASTLY more capable and expandable than the DD-WRT, which is severely
    limited by the weak hardware that it runs on.

    I'm running DD-WRT with Entware now, and am looking to add NFS
    support and maybe reverse proxying via HAproxy or Nginx to my
    firewall. Does anyone have any experience extending OpenWRT or
    Tomato?

    I think you'd be more than happy with the built-in and expandable
    options that IPFire offers. Very easy to set up and configure, just
    need a PC with 2 NICs.

    It's free and open-source, available here: https://www.ipfire.org/


    ... Gone crazy, be back later, please leave message.
    --- MultiMail/Linux v0.52
    ■ Synchronet ■ Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From poindexter FORTRAN@VERT/REALITY to Arelor on Sun Jan 3 17:29:47 2021
    Re: DD-WRT versus OpenWRT versus Tomato?
    By: Arelor to poindexter FORTRAN on Sun Jan 03 2021 06:06 pm

    It would helpful to know which sort of load you are expecting. Most consumer grade routers lack horsepower to do anything heavy.

    I'm not expecting much of a load - occasional transfers to it via NFS from my Proxmox lab, and some reverse proxying with HAProxy or Nginx.

    My router is a Linksys WRT1900ACSv2, with a dual core, 1.6ghz Marvell Armada 385 CPU and 512 MB of RAM.

    ---
    ■ Synchronet ■ realitycheckBBS -- http://realitycheckBBS.org
  • From Tracker1@VERT/TRN to poindexter FORTRAN on Thu Jan 21 19:04:54 2021
    On 1/3/2021 10:32 AM, poindexter FORTRAN wrote:
    Does anyone have experience with the various Linux-based firewall firmwares?

    I'm running DD-WRT with Entware now, and am looking to add NFS support and maybe reverse proxying via HAproxy or Nginx to my firewall. Does anyone have any experience extending OpenWRT or Tomato?

    I really like Tomato myself... I've also used the others, and prefer
    OpenWRT over DD-WRT. Right now, I'm using a Ubiquiti router and APs, so
    kind of stuck with their UX that I don't care for.

    --
    Michael J. Ryan
    tracker1 +o Roughneck BBS
    ---
    þ Synchronet þ Roughneck BBS - roughneckbbs.com
  • From Nightfox to Tracker1 on Fri Jan 22 08:08:20 2021
    Re: Re: DD-WRT versus OpenWRT versus Tomato?
    By: Tracker1 to poindexter FORTRAN on Thu Jan 21 2021 07:04 pm

    I really like Tomato myself... I've also used the others, and prefer OpenWRT over DD-WRT. Right now, I'm using a Ubiquiti router and APs, so kind of stuck with their UX that I don't care for.

    DD-WRT was the first open-source router firmware I used, and I really liked it at the time. Then years ago, I got a router that (at the time) sounded like it wouldn't support DD-WRT easily, so I put Tomato on it. I got to like Tomato's UI. Several months ago I bought a new router for DD-WRT, and I kinda miss Tomato's UI now, though DD-WRT seems capable as always though.

    Nightfox
  • From poindexter FORTRAN@VERT/REALITY to Tracker1 on Sat Jan 23 09:26:00 2021
    Tracker1 wrote to poindexter FORTRAN <=-

    I really like Tomato myself... I've also used the others, and prefer OpenWRT over DD-WRT. Right now, I'm using a Ubiquiti router and APs,
    so kind of stuck with their UX that I don't care for.

    Yeah, I ran Tomato on WRT54Gs and loved it. Loved the traffic graphs, as I think I was on a 5gb cap back then!


    ... Abandon desire
    --- MultiMail/DOS v0.52
    ■ Synchronet ■ realitycheckBBS -- http://realitycheckBBS.org
  • From Tracker1@VERT/TRN to poindexter FORTRAN on Mon Jan 25 06:07:21 2021
    On 1/23/2021 10:26 AM, poindexter FORTRAN wrote:
    I really like Tomato myself... I've also used the others, and prefer
    OpenWRT over DD-WRT. Right now, I'm using a Ubiquiti router and APs,
    so kind of stuck with their UX that I don't care for.

    Yeah, I ran Tomato on WRT54Gs and loved it. Loved the traffic graphs,
    as I think I was on a 5gb cap back then!

    I miss it... was much easier to work with imho than anything else I've
    used.
    --
    Michael J. Ryan (tracker1)
    +o roughneckbbs.com
    ---
    ï¿­ Synchronet ï¿­ Roughneck BBS - roughneckbbs.com