Discussion topic: fortinet routers/switches/vpns

@FinnieFinFin 

Look at OPNsense and Zenarmor great products rated very highly and used in our infrastructure to protect public and private assets. OPNsense is as low as free and Zenarmor is $10 a month for the home edition, a great reporting and protection L7 application layer with Next-Generation Firewall Features. And we use Suricata IDS/IPS for DPI protection of our servers.

Yes, i'll be definetely using opensense and it seems that fortigate in comparrison to unifi is a must.

https://www.gartner.com/reviews/market/enterprise-wired-wireless-lan-access-infrastructure/compare/f...

Again, im gonna have to start figuring out what hardware to buy for a small home lab and have great security. I like to think myself of a white hat user, but these days they are grey because to know threats, once must understand the pen testing tools and attacks and dirty the hat leaving it grey 😉

Im no red hat or black hat and dont even own a hat! But this change when i start learning alot more and in the next few years become confident and call myself a hybrid hat user 😄

@FinnieFinFin 

Just get a mini fanless barebones PC and install OPNsense and Zenarmor and you'll be very happy with its features at the right home price, business or enterprise cybersecurity product.  The total cost is about £300 for hardware. 😀

What would you suggest?

I've seen a lot lately minisforum pc bare bones. But on ebay ive seen old units from dell hp that do a better job and cheaper!

Im looking for ddr5, intel, wifi6, 2.5 eth, poe, poe+ and bonus ++ but these pc's will be something in the range of 800 pounds

@FinnieFinFin 

I'd take a look on Amazon, I use a firewall with 4 ethernets 2.5Gbps intel ports with a J4125 Intel 4 cores processor with 16GB memory and it handles 250Mbps downstream and 50Mbps upstream without any issues whatsoever with full DPI Suricata and with Zenarmor. The important thing is to keep it low power or it'll eat into the electricity bill or be too noisy.

My wireless is over an Asus router in access point mode for the home environment, and dedicated wireless routers for other areas of my network which are segregated by IP address because I've got a /29 block of public addresses...

@FinnieFinFin 

This is the type of mini PC I use:-

Ah!! yes the protectli of sorts firewall router. I was going for this 2 years ago but had little time and now i have time, im all fussy about what to purchase.

the ikoolcore R2 is darn good for an all rounder but i still feel im missing out on security.

Sonicwall, sophos, cisco, unifi, fortinet, these industrial firewalls have extra features that mini pc's dont have. I will be using opensense even with these for that added sense of security and manage everything on the fly. I just feel im missing out on all that tech that i know will cost a fortune to run. 

Your asus router, this has a merger for option 61 right? I am trying to stay clear of any more known router brands out there and have some firewall router you showed similar to protectli. 

I need to know if i can simply have the eth from the firewall router to the modem fttp openreach. If i can, I wont need to concern myself to much with all the big tech at the moment and be happy with just some industrial firewall router

Fortinet Fortigate 300C FG-300C 10x 1GbE RJ45 Ports Firewall Security Appliance

On ebay they have this for 60 pounds

@FinnieFinFin 

The firewall has DHCP Option 61 and DHCPv6 PD just use that on the perimeter security.

@FinnieFinFin 

That firewall runs a FortiASIC™ chipset it will not run OPNsense which needs an Intel processor with Intel i225 network cards.

Can you tell me what you think of these, FIREBAT T8 Pro Plus Mini PC Intel Celeron N5095 N100 Desktop Gaming Computer 8GB 16GB 256GB 512GB DDR4 DDR5 WIFI5 BT4.2

I looked on aliexpress

I originally wanted to build a cluster, 3 of them side by side.

1 for Vlan

2 for media

3 for other

Ah!!! good to know!

See, im learning lol

would of bought this earlier, thank you 🙂

@FinnieFinFin 

Those PCs would be okay for a mini server but not that good for a firewall, you need a solid external metal case for heat dissipation.

Interesting!! so its possible to have 3 of these to do virtualizations and operate like a home lab

I will purchase one of these routers you mentioned as long as it has intel right? 

Do you have a link or name of that industrial metal router you have