It would be interesting to know if anyone ever tried building Snort3 for that box.
It seems as though you are unable to use opkg with the QorIQ platform and that Any apps must be compiled into the image before it's written to the SD card. At least Per this: https://forum.openwrt.org/t/howto-install-on-watchguard-m300/133072/19 This also does not inspire confidence: https://forum.openwrt.org/t/newbie-tried-install-openwrt-on-watchguard-firebox-m300/187341/2 Nor does the dead link here: https://openwrt.org/toh/watchguard/firebox-m300 "FIT Images" point to "doc/uImage.FIT/howto.txt" did not exist on "master" I dunno. I have 40 wifi AP's in production use running OpenWRT but I've also been burned by OpenWRT. The most recent time Was with a Linksys E3000 that was running dd-wrt just fine. Installed OpenWRT on that, worked perfectly. Enabled wifi interface #1 - still worked perfectly. Enabled the ac wifi interface - router crashed and is now stuck in a bootloop and I'll have to take it apart and serial recover it. Really stupid to provide an image on the OpenWRT site that allows you to brick a unit just by clicking an "enable" button with no warning message "do not enable this wifi interface" or some such. Ted -----Original Message----- From: PLUG <[email protected]> On Behalf Of Russell Senior Sent: Tuesday, August 6, 2024 10:32 PM To: Portland Linux/Unix Group <[email protected]> Subject: Re: [PLUG] Interesting D-Link Gigabit Ethernet Switch Fail On Tue, Aug 6, 2024 at 7:40 PM Keith Lofstrom <[email protected]> wrote: > > I have 350/350 mbps Ziply ethernet - currently down to 90/90 given a > slow Alix firewall interface (faster APU configuration Real Soon Now). > Anyway ... > > Over the last week. 90/90 dropped to 20/20 mbps, with delayed and lost > packets, as measured by Internet Speed Test. More "interesting" ... > during the speed test the speed slowly dropped (normally it rises a > little). > > Long story short, the problem traced to an old (March 2007 embossed > into the plastic case) D-Link DGS-2208 8 port ethernet switch in the > path from the Ziply ONT to the Alix. > A different switch brought the speed back, and measured > 350/350 to a directly connected Chromebook. An alternative gateway device we've used a few of is a Watchguard Firebox M300. They are pretty beefy 8-core PPC64 QorIQ e6500 (https://en.wikipedia.org/wiki/QorIQ). They have an expensive license from the vendor, but they are EOL now, so they are available on the secondary market (e.g. ebay) for ~$100 and have OpenWrt support. The are 19" rack mountable, and probably draw more power than an APU, but ... you can still get them! One of them did lose some ethernet interfaces from one of them in the thunderstorm a couple weeks ago. I just finished recovering from the cascading effect of that. Because I'm an OpenWrt nerd, I like the line of switches based on the Realtek chips, including the Zyxel GS1900-series. Most of them run OpenWrt as well. I spent last night bisecting (it was working last December, but not recently) a bug in their GS1900-24e switch (about $100) that made them not pass traffic, but problem solved with one reverted commit. -- Russell Senior [email protected]
