From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 7ED62138CBD for ; Thu, 12 Mar 2015 15:51:45 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 26FDFE08AB; Thu, 12 Mar 2015 15:51:38 +0000 (UTC) Received: from plane.gmane.org (plane.gmane.org [80.91.229.3]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 13C77E0895 for ; Thu, 12 Mar 2015 15:51:36 +0000 (UTC) Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1YW5OU-00083v-Cg for gentoo-user@lists.gentoo.org; Thu, 12 Mar 2015 16:51:30 +0100 Received: from 220-245-218-217.tpgi.com.au ([220.245.218.217]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 12 Mar 2015 16:51:30 +0100 Received: from linux by 220-245-218-217.tpgi.com.au with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 12 Mar 2015 16:51:30 +0100 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-user@lists.gentoo.org From: Hans Subject: [gentoo-user] Re: new linux router Date: Fri, 13 Mar 2015 01:51:16 +1000 Message-ID: References: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: 220-245-218-217.tpgi.com.au User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.5.0 In-Reply-To: X-Archives-Salt: 8673dc34-ffd1-4fe2-8f66-e088446e1157 X-Archives-Hash: c3ba6e0b3396eb7dc3f57acc54a90d33 On 05/03/15 01:10, James wrote: > Hello, > > It's time to build a new router. Surely, I would just like to > purchase hardware and run a minimized or embedded gentoo on it > along with iptables and a few other packages. But, I got to reading > and well it seems much has changed. Dansguardian is deprecated? > If I add protection above layer 3, what is the best route (pun intended) > to protect some winblows systems? And I need the ability to dynamically > block some gaming sites (kids playing too many hours of video)..... > > Then I read about NFtables....... [1] > And there is more. So, being a bit busy what would folks recommend > for purchase (I really do not need another project at this time)? > I've used routers with ebtables in the past too. > > > I'd like to be able to download some open source linux to the router > hardware if updates and pathces are not maintained by the vendor? > That way I do not purchase something that is to be abandoned in > a few years by the vendor. > > It's just a small home/office so 3x100Mb E would be fine, but GigE > ports would be better. I'm flexible on the CPU/arch of the hardware, > so all discussion and suggestions are welcome. In an idealized world > I'd pay extra for a gentoo_derivative based router; but all I find > is the WRT, devil_linux and such, nothing really cool and interesting. > > Anyone used lilblue or pentoo as the basis for a firewalled_router? > > A purchase is what I really want, but some hacking, if absolutely > necessary, would be ok too. Ideas? > > curiously, > James > > [1] http://netfilter.org/projects/nftables/ > > > I use a TP-Link TD-VG3631 ADSL Modem-Router. Has dynamic site blocking etc. GPL Source is available from: www.tp-link.com/resources/gpl/TD-VG3631V1_GPL.tar.gz