Show Posts
1
General Discussion / Re: Can I install OPNsense on my Dell T30 server running Ubuntu ?
« on: December 22, 2023, 01:07:02 pm »
Thanks cookiemonster,
I had a feeling that having only one physical NIC might be an issue so thanks for confirming this.
I guess one solution would be to purchase a NIC card with multiple ports that fits into one of the PCIe slots in the Dell T30 ?
One thing I don't understand about firewalls, is that if the router has a firewall then why do OS's like Windows, Mac OS, Ubuntu etc come with firewalls as they would be a second firewall too ?
I have been advised never to put a VPN on a router. I was told...
As it seems I can't use OPNsense (unless fitting a PCIe NIC card will work?), I'm wondering if its possible to run Wireguard VPN in Virtualbox on my Dell T30 Ubuntu server ? Then my parents could use a VPN client to connect to my server and I can then perform offsite backups.
I initially was looking at setting up a VPN connection and OPNsense was recommended by several people as a way to do this, but it sounded like OPNsense also provides extra protection which is why I started looking at it.
These people run OPNsense on their router, would it be possible to run it on my Fritzbox router if I decided to in the future ?
If required I can replace the router at my house and my parents house, although I wouldn't know which router to replace them with. I also get the impression Virgin ISP is more restrictive when trying to setup things like this ?
I had a feeling that having only one physical NIC might be an issue so thanks for confirming this.
I guess one solution would be to purchase a NIC card with multiple ports that fits into one of the PCIe slots in the Dell T30 ?
One thing I don't understand about firewalls, is that if the router has a firewall then why do OS's like Windows, Mac OS, Ubuntu etc come with firewalls as they would be a second firewall too ?
I have been advised never to put a VPN on a router. I was told...
Quote
Never, ever, run the VPN on your primary edge router that protects your entire network. When that device fails, there are some terrible failure modes which may leave you with no VPN, but access still provided. I don't want anything on my edge router besides a firewall and routing. No DHCP, no DNS, no fancy addons, no VPN. They should do routing and firewalling, nothing else. Sure, there are 500 packages that can be installed on our edge routers now, but just because something is possible, that doesn't make it a good idea. I use OPNSense on my router. No way would I run a VPN on it and I won't use openVPN at all due to the complexity. OPNSense is just a router distro that runs on x86-64 systems using BSD as the base OS. I stopped using OpenVPN a few years ago and switched to Wireguard. It is 100x easier to setup and faster for transfers.
As it seems I can't use OPNsense (unless fitting a PCIe NIC card will work?), I'm wondering if its possible to run Wireguard VPN in Virtualbox on my Dell T30 Ubuntu server ? Then my parents could use a VPN client to connect to my server and I can then perform offsite backups.
I initially was looking at setting up a VPN connection and OPNsense was recommended by several people as a way to do this, but it sounded like OPNsense also provides extra protection which is why I started looking at it.
These people run OPNsense on their router, would it be possible to run it on my Fritzbox router if I decided to in the future ?
If required I can replace the router at my house and my parents house, although I wouldn't know which router to replace them with. I also get the impression Virgin ISP is more restrictive when trying to setup things like this ?