From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id BEE31138CA3 for ; Wed, 4 Mar 2015 15:11:08 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 58581E087F; Wed, 4 Mar 2015 15:11:03 +0000 (UTC) Received: from plane.gmane.org (plane.gmane.org [80.91.229.3]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 3720FE07D7 for ; Wed, 4 Mar 2015 15:11:02 +0000 (UTC) Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1YTAwm-0005aC-DS for gentoo-user@lists.gentoo.org; Wed, 04 Mar 2015 16:10:57 +0100 Received: from rrcs-71-40-157-251.se.biz.rr.com ([71.40.157.251]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 04 Mar 2015 16:10:47 +0100 Received: from wireless by rrcs-71-40-157-251.se.biz.rr.com with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 04 Mar 2015 16:10:47 +0100 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-user@lists.gentoo.org From: James Subject: [gentoo-user] new linux router Date: Wed, 4 Mar 2015 15:10:40 +0000 (UTC) Message-ID: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: sea.gmane.org User-Agent: Loom/3.14 (http://gmane.org/) X-Loom-IP: 71.40.157.251 (Mozilla/5.0 (X11; Linux x86_64; rv:35.0) Gecko/20100101 Firefox/35.0 SeaMonkey/2.32.1) X-Archives-Salt: 92419e59-e805-4c93-ae2f-41cc24cb1d16 X-Archives-Hash: ed78d938358049404bfbd9c4fb8a7bab Hello, It's time to build a new router. Surely, I would just like to purchase hardware and run a minimized or embedded gentoo on it along with iptables and a few other packages. But, I got to reading and well it seems much has changed. Dansguardian is deprecated? If I add protection above layer 3, what is the best route (pun intended) to protect some winblows systems? And I need the ability to dynamically block some gaming sites (kids playing too many hours of video)..... Then I read about NFtables....... [1] And there is more. So, being a bit busy what would folks recommend for purchase (I really do not need another project at this time)? I've used routers with ebtables in the past too. I'd like to be able to download some open source linux to the router hardware if updates and pathces are not maintained by the vendor? That way I do not purchase something that is to be abandoned in a few years by the vendor. It's just a small home/office so 3x100Mb E would be fine, but GigE ports would be better. I'm flexible on the CPU/arch of the hardware, so all discussion and suggestions are welcome. In an idealized world I'd pay extra for a gentoo_derivative based router; but all I find is the WRT, devil_linux and such, nothing really cool and interesting. Anyone used lilblue or pentoo as the basis for a firewalled_router? A purchase is what I really want, but some hacking, if absolutely necessary, would be ok too. Ideas? curiously, James [1] http://netfilter.org/projects/nftables/