top | item 22081023

(no title)

knacky | 6 years ago

I have a UniFi EdgeRouter-X and two UniFi APs. I'm happy with the APs satisfied with the ER-X. Once nice feature on the ER-X is their Smart QoS; you specify your broadband UL/DL rate and the router does a good job of preventing single devices from monopolizing your pipe.

I've been looking into replacing my router with something that can host a VPN that I can connect to on the go. I don't think the ER-X can fully utilize my broadband with L2TP/IPsec or OpenVPN so I'm looking for something that can run Wireguard.

Right now I'm eyeing a PC Engine APU2 [0] running OpenWRT. I think it's powerful enough to meet my needs and would also function as a pi-hole. This setup will require more setup than the ER-X but it also is more customizable.

My UniFi APs are upstairs and downstairs. Since my place isn't wired I am using some MoCA devices [1] over coax to get everything connected.

[0] https://www.pcengines.ch/apu2d4.htm

[1] https://smile.amazon.com/dp/B013J7O3X0

discuss

bradknowles|6 years ago

IPSec is lower CPU and higher throughput on the ER-X compared to OpenVPN, but the device is also capable of running wireguard, with the right firmware. And WG will beat IPSec hands-down, at least in the benchmarks I’ve seen.

For me, the bigger concern is that the configurations for WG on the ER-X are still pretty beta, as is connecting to any WG server on the other side that you didn’t build yourself. Service provider support for WG is limited and the configuration management there is still quite clunky.