Prepare for the Ubiquiti comments to come at you - I personally like ubiquiti.
Short of a recommendation, something you will want to consider is redundancy and backup. Mikrotik is what we have run and we recently lost hardware during a lightning strike, only to find out "the hard way" and that many many people also learnt the hardway, restoring a mikrotik backup to the same mikrotik model - doesn't always work. This is due to it having hard coded MAC addresses in its backup file to start with, just a reminder to ensure whichever direction you go, look into your DR methods and always keep a plaintext export of the configuration secured somewhere. We didn't, although Kind Regards, Mario Zuppini *P* 0405 650 930 *E* [email protected] *W* http://www.fluffyduck.com.au On Mon, 21 Feb 2022 at 10:23, Luke Thompson <[email protected]> wrote: > Hi folks, > > For a long while we've leveraged 1G hardware within our office > environments. Thankfully, we're soon to have fibre at work. > > We're waiting for NBN Enterprise Ethernet to be fulfilled now so we can > transition from copper to fibre, and it presents a good opportunity to > replace our non-DC routers while we're at it. The hand-off will be SFP+ > rather than SFP. > > Ideally keeping away from lock-in models (ie. Meraki), what's > recommended and where would you seek it out? In terms of slot failures, > we'd probably prefer 2x SFP+ cages rather than 1x, and to have a bit of > resource overhead (ie. 2-4 cores rather than single-core, and 1-4GB RAM > rather than 512MB/etc) so we have room for other services (VPN, DNS, etc). > > What do you recommend? Ubiquiti make some options, likewise MikroTik > have some RB/CCR models that look suitable. WISP seem to have some > low-spec MikroTiks in-stock that would suit, though without much > resource overhead to leverage. We're happy to compromise, the main > consideration is that it balances out to being a solid all-rounder. > > This is a situation where we haven't changed the configuration in a fair > while, so are open to ideas. We'd rather get this change right and > repeat it as time goes on, rather than make the wrong move and look to > re-do it again fairly soon. > > One final factor is security - we'd prefer a vendor who issues patches > as-needed, rather than quickly EOLing devices and/or hiding them behind > a subscription. If the value's there, we can look at it, though would > rather keep that for the DCs. > > Any and all insights much appreciated! > > Cheers, > > Luke Thompson > Operations Manager > > The Network Crew Pty Ltd > https://thenetworkcrew.com.au > > > _______________________________________________ > AusNOG mailing list > [email protected] > https://lists.ausnog.net/mailman/listinfo/ausnog >
_______________________________________________ AusNOG mailing list [email protected] https://lists.ausnog.net/mailman/listinfo/ausnog
