|
My company is in need of a router for our machines. Communication within the machine will be heavy (we have 9 independent modules that need to constantly communicate with each other), but we have several switches in the machine for this. Outside communication will be limited except for periodic burst periods to download usage data. Since we're using switches we only need 2 ports - one WAN, one LAN. Security is important; the machines will be handling quite a bit of money so I want to limit access as much as I really can. However, we also want to allow (limited) remote access to some of the modules. It seems to me the best way to handle this is to have a VPN server on the router, with restricted traffic from the VPN subnet to the machine subnet. I'd prefer OpenVPN as I'm somewhat familiar with that, but am willing to use others. For ease of connecting to remote machines, I would personally like to be able to connect the router to a VPN elsewhere (that way we don't need to worry about routing rules at client locations for allowing remote access -- also, there may be multiple machines at a single location). Again, OpenVPN is preferred here but not necessary. I assume if a router supports an OpenVPN server it would support client as well. Note that the management isn't sold on this yet and it may never come to pass. In addition to the ethernet ports, we want to give our customers the option of connecting the machine wirelessly, so the router needs to support acting as a wireless client. My manager also wants to be able to wirelessly chain machines together (so one machine would be acting as a WAP for several other machines). Since the machine is a giant metal box, we probably need to mount an external antennae, so the router needs to support that. For prototype testing, we're currently using a D-Link 601 running OpenWRT and a WRT54GL running DD-WRT. While he's willing to either firmware, our project manager is worried about limited support on routers running an open source firmware. I was interested in Routerboard and briefly talked to somebody at r0c-n0c about the RB751U-2HnD (with the ACSWIM external antennae), but he said that the case design on the RB751U-2HnD is such that a right-angle MMCX connector won't fit without hacking at the case, and that nobody in the US sells a straight MMCX connector. Any suggestions for reliable routers/firmware that support these points? Also, any comments on the RB751U-2HnD?
|
# ¿ Dec 21, 2011 00:58 |
|
|
# ¿ Apr 17, 2024 20:55 |
|
LmaoTheKid posted:You're probably going to want a real piece of hardware for this (or at least, not consumer grade). Look into a Sonicwall, and a separate access point. I was hoping that with limited external traffic we could get by with something relatively cheap, and from what I've heard Routerboard/MikroTik is considered a low-cost Cisco alternative, which it sounded like I wanted. I forgot to point out that we do have space limitations, and I think getting multiple separate units might put a strain on that, but I'd have to actually spec out some parts to be sure. I've only heard vaguely of Sonicwall, but I'll give them a look, thanks.
|
# ¿ Dec 21, 2011 01:57 |