Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Tuesday 19 April 2011 04:31:38 Harry Putnam wrote: So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? Have you gone through the documentation to see if there isn't a more verbose option for the logs? Do you get the same condensed format when you capture the logs in your LAN syslog server? -- Regards, Mick signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Monday 18 April 2011 22:31:38 Harry Putnam wrote: snipped - Not familiar with CISCO specifics So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? Not familiar with specific types, but I've had best results with the routers from Zyxel. The one I used to use (ADSL) would provide a lot of information via SNMP and other logging-options. Also, this one had no problem with multiple (1000+) simultaneous connections. Which is something other brands suffer from regularly. ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. I understand the sentiment. I've since stopped using pre-made routers as I had the machine running anyway as a home-server and moving the router/firewall/... onto the server wasn't too much of a change and did mean I could switch off a small device. -- Joost
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Tuesday 19 April 2011 04:31:38 Harry Putnam wrote: I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. I'm gazing at an Atom box sitting on my window-sill that would be ideal. It's silent and it has gigabit LAN connections. It's 8 square by 1 3/8. Have a look at www.aleutia.com. -- Rgds Peter
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Tue, Apr 19, 2011 at 10:31, Harry Putnam rea...@newsguy.com wrote: This is way OT, but this list is such a great resource I suspect the advice gotten here will be more to the point. ( I have posted to a network hardware group as well) I've bumped my home lan router to a gigabit from the old 10/100 (NETGEAR FVS318). I made the move for the gigabit lan ports mainly. That is, I was happy with other aspects of the old router. I ended up with a cisco RVS4000 v2. The cisco solved the gigabit problem with 4 lan ports and even a gigabit on the Internet port... (which is probably not really doing any thing on a cable connection). And it wasn't hideously expensive ($112.91). I could have solved the problem with gigabit switches behind the router for lan usage, just as well, and may go to that yet, and move back to the old NETGEAR router. But somehow I expected the cisco to be something that was `excitingly' new and fun to play with. I'm disappointed in the cisco so far as logging is concerned. The logs give only bare information like this: Mar 10 10:24:21 - [Firewall Log-PORT SCAN] TCP Packet - 60.173.11.56 -- 98.217.231.32 Mar 10 10:24:21 - [Firewall Log-PORT SCAN] TCP Packet - 60.173.11.56 -- 98.217.231.32 [...] No mention of which port is involved. Not only on port scans but ports are never reported. And of course if you wanted to pursue any of it by way of google, you'd need the port number. The Old Netgear sent logs like this (wrapped for mail): Sat, 2007-07-28 12:00:11 - TCP packet - Source: 161.170.244.20 - Destination: 70.131.83.195 - [Invalid sequence number received with Reset, dropping packet Src 443 Dst 1385 from WAN] --- - ---=--- - I went for the cisco instead of a newer `gigabit' NETGEAR after seeing several bad reviews about them. And I just assumed the cisco would have as good or better other features. Another little problem is that the Cicso had reached its end of life and was reported as such by cisco, well before I bought it. But of course, retailers (not cisco) don't bother to give that kind of info, but the result is that a kind of blackball list that was part of the deal is no longer kept up to date. So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. Have you checked out Mikrotik's RB750G? 5 GbE ports: http://routerboard.com/pricelist/download_file.php?file_id=256 Mikrotik OS is Linux-based, the firewall is Netfilter-based, and it's Lua-scriptable. Rgds, -- Pandu E Poluan ~ IT Optimizer ~ Visit my Blog: http://pepoluan.posterous.com
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On 19/4/2011, at 4:31am, Harry Putnam wrote: ... So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. Consider OpenWRT. You can run it on something like the Netgear WNR2000, the Buffalo WZR-HP-G300NH, or something even cheaper if you don't need wifi. Stroller.
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Tue, Apr 19, 2011 at 5:18 AM, Stroller strol...@stellar.eclipse.co.uk wrote: On 19/4/2011, at 4:31am, Harry Putnam wrote: ... So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. Consider OpenWRT. You can run it on something like the Netgear WNR2000, the Buffalo WZR-HP-G300NH, or something even cheaper if you don't need wifi. I have WZR-HP-G300NH (running DD-WRT), if you don't plan on using wifi it would be great. The wifi is really unstable and I couldn't recommend this device if you're a heavy wifi user, but the wired portion works great, the device itself is by far the fastest I've ever owned, and it has a USB port so you can attach external storage in case you want to use it as a server, too. If your wifi users are limited to web browsing/email it would probably be okay for that, but if you do anything with persistent open connections (ssh, gaming, streaming movies) then you'll quickly pull your hair out in frustration at the constant wifi stalls and disconnects. The good news about the bad wifi is that the constant negative reviews and dissatisfied customers have forced the price down really low, I got mine for about $50. :)
Re: [gentoo-user] [OT router advice] a router capable of detailed logs
On Tue, 2011-04-19 at 09:50 -0500, Paul Hartman wrote: On Tue, Apr 19, 2011 at 5:18 AM, Stroller strol...@stellar.eclipse.co.uk wrote: On 19/4/2011, at 4:31am, Harry Putnam wrote: ... So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing. Consider OpenWRT. You can run it on something like the Netgear WNR2000, the Buffalo WZR-HP-G300NH, or something even cheaper if you don't need wifi. I have WZR-HP-G300NH (running DD-WRT), if you don't plan on using wifi it would be great. The wifi is really unstable and I couldn't recommend this device if you're a heavy wifi user, but the wired portion works great, the device itself is by far the fastest I've ever owned, and it has a USB port so you can attach external storage in case you want to use it as a server, too. If your wifi users are limited to web browsing/email it would probably be okay for that, but if you do anything with persistent open connections (ssh, gaming, streaming movies) then you'll quickly pull your hair out in frustration at the constant wifi stalls and disconnects. The good news about the bad wifi is that the constant negative reviews and dissatisfied customers have forced the price down really low, I got mine for about $50. :) I have this device and am using Firmware: DD-WRT v24-sp2 (08/07/10) std - its been totally stable since I dumped the buffalo firmware. My son plays windoze online games and I often move large files around as well as stream mythtv across it - no problems at all. Until I started powering the systems down at night (power charges went up :) it would stay up for over a month at a time and it was never a crash as to why it was restarted - usually power, or reconfiguration. BillK
[gentoo-user] [OT router advice] a router capable of detailed logs
This is way OT, but this list is such a great resource I suspect the advice gotten here will be more to the point. ( I have posted to a network hardware group as well) I've bumped my home lan router to a gigabit from the old 10/100 (NETGEAR FVS318). I made the move for the gigabit lan ports mainly. That is, I was happy with other aspects of the old router. I ended up with a cisco RVS4000 v2. The cisco solved the gigabit problem with 4 lan ports and even a gigabit on the Internet port... (which is probably not really doing any thing on a cable connection). And it wasn't hideously expensive ($112.91). I could have solved the problem with gigabit switches behind the router for lan usage, just as well, and may go to that yet, and move back to the old NETGEAR router. But somehow I expected the cisco to be something that was `excitingly' new and fun to play with. I'm disappointed in the cisco so far as logging is concerned. The logs give only bare information like this: Mar 10 10:24:21 - [Firewall Log-PORT SCAN] TCP Packet - 60.173.11.56 -- 98.217.231.32 Mar 10 10:24:21 - [Firewall Log-PORT SCAN] TCP Packet - 60.173.11.56 -- 98.217.231.32 [...] No mention of which port is involved. Not only on port scans but ports are never reported. And of course if you wanted to pursue any of it by way of google, you'd need the port number. The Old Netgear sent logs like this (wrapped for mail): Sat, 2007-07-28 12:00:11 - TCP packet - Source: 161.170.244.20 - Destination: 70.131.83.195 - [Invalid sequence number received with Reset, dropping packet Src 443 Dst 1385 from WAN] ---- ---=--- - I went for the cisco instead of a newer `gigabit' NETGEAR after seeing several bad reviews about them. And I just assumed the cisco would have as good or better other features. Another little problem is that the Cicso had reached its end of life and was reported as such by cisco, well before I bought it. But of course, retailers (not cisco) don't bother to give that kind of info, but the result is that a kind of blackball list that was part of the deal is no longer kept up to date. So, cutting to the chase; can anyone recommend from actual use, a home lan router that has gigabit lan ports and very configurable/ informative logging options? ps - I'm not interested in running an old linux or openbsd, machine as router. Having a silent cool router the size and weight of a medium book is too appealing.
