-
【免費軟體路由器】請大家用用看pfsense!
一款號稱比m0n0wall 還強的軟體路由器,是由m0n0wall 改進而來,大陸那邊有很多人使用routeros,但是routeros不是免費,routeros和pfsense都可以使用負載平衡,但是我不知道pfsense如何使用,麻煩大家有興趣的人用用看,將心得放在網路上分享,pfsense看起來很強大,但是討論的人很少,希望大家都來討論,看看pfsense是否真的很強大
我自己歸納高手的心得
linux製做的路由不是非常穩定,但是系統要求低,BSD製作的路由很穩定速度快,但是對系統要求高,可以請高手來驗證是不是這樣
這是在中國路由網看到的留言
[url]http://www.router.net.cn/BBS/dispbbs.asp?boardID=9&ID=28&page=1[/url]
以下是引用cen在2005-3-11 2:59:31的发言:
我的看法是:
1) MikroTik RouterOS 功能最强大,适合宽带营运商。(Linux商业软件、英文)
2) MomoWall 运行最快、系统简明,适合中型办公网络。(BSD免费、英文)
3) Smoothwall 最花最热门、插件超多。。(Linux商业&免费软件、英文)
4) CoyoteLinux 最傻瓜,适合家庭网络。(Linux免费、有中文版)
5) IpCop 最具扩展性,例如加装CS服务,适合网吧。(Linux免费、英文)
以上是我的一些经验,除了5)都使用过。大家发表一下自己熟悉的路由系统的看法吧。
穩定版 [url]http://www.pfsense.com/downloads/pfSense-0.62.3.iso[/url]
網站 pfsense [url]http://www.pfsense.com/[/url]
m0n0wall [url]http://www.m0n0.ch/wall/index.php[/url]
貼兩張圖給大家看
[img]http://www.pfsense.com/screens/traffic_graph.jpg[/img]
[img]http://www.pfsense.com/screens/altq_rules_magic_shaper.JPG[/img]
-
-
從m0n0wall改進來的 , 所以也是使用 FreeBSD 5.3
FreeBSD 5.3 - STABLE as of Feb 13 with IPFW2 + ALTQ + PF BRIDGING Patch
功能看起來滿多的 , 還有Incoming load balancing
我想之後應會有越來越多free unix like 嵌入式系統出現
-
MikroTik RouterOS 的功能似乎頗為強悍~
:D
-
routeros是很強大,而且要錢,但是據大陸那邊用的人表示速度普通,m0n0wall和pfsense是一樣的介面(不覺得它們看起來幾乎一樣嗎?)但是pfsense比m0n0wall還強(發展的目的不一樣,速度也比routeros快,又可以更新),所以我才會推薦大家使用,希望大家能多討論pfsense,如果有更好的軟體也可以介紹一下
-
-
-
[QUOTE=mzhuang]不過好像沒辦法從硬碟開機喔?[/QUOTE]
可以從硬碟開機啊!
我今天就有裝起來試了一下
從硬碟開機是 OK 的
不過還沒試 CF 卡
目前還沒看到中文化的選項
-
pfsense跟m0n0wall基本上相同,也就是說安裝方法.介面.幾乎一樣,硬碟開機是可以的,我沒試過cf卡,但是應該也是可以,pfsense和m0n0wall做法一樣,我給的iso檔是用來燒成光碟
,在第一次開機時灌入硬碟,以後就不需要了,就用硬碟開機,我沒cf卡所以沒辦法試,有問題或有能力解決的麻煩都提出來吧!
-
pfSense Features
pfSense changes that are in the works (subject to change daily):
[COLOR=Red] * Incoming load balancing
* Multiple WAN support
o Multiple PPPOE WAN Support[/COLOR]
pfSense changes implemented (subject to change daily):
*
[COLOR=Red]FreeBSD 5.3 - STABLE as of Feb 13 with IPFW2 + ALTQ + PF BRIDGING Patch[/COLOR]
*
[COLOR=Red] Auto upgrade function. Click one button and the firewall upgrade itself.[/COLOR]
*
Larger PPTP default subnet size (128 hosts)
*
All of the GREAT m0n0wall features
*
FreeBSD 5.3 - Includes many expanded networking cards
*
setup wizard using xml -> web gui toolkit
*
package xml -> web gui toolkit. RAPIDLY create packages and GUI's
*
outgoing load balancing
*
pf (openbsd's packet filter)
*
gif ipsec interface option for expanded routing
*
SWAP usage monitor
*
ALTQ traffic shaping with integrated magic shaper wizard
*
Edit file option
*
Execute command now in menu
*
SSH Support
*
Packages!
o
CARP
o
PFStat - Graphing
o
NTOP - Enhanced network history data
o
STunnel - wrap standard ports with SSL
o
Pure-FTPD - Host FTP files
o
Squid Transparent Proxy
o many more things that I cannot recall now :)
[COLOR=Red]m0n0wall base features[/COLOR]
*
web interface (supports SSL)
*
serial console interface for recovery
o
set LAN IP address
o
reset password
o
restore factory defaults
o
reboot system
*
wireless support (access point with PRISM-II/2.5/3 cards, BSS/IBSS with other cards including Cisco)
*
captive portal
*
802.1Q VLAN support
*
stateful packet filtering
*
block/pass rules
*
logging
*
NAT/PAT (including 1:1)
*
DHCP client, PPPoE, PPTP and Telstra BigPond Cable support on the WAN interface
*
IPsec VPN tunnels (IKE; with support for hardware crypto cards and mobile clients)
*
PPTP VPN (with RADIUS server support)
*
static routes
*
DHCP server
*
caching DNS forwarder
*
DynDNS client
*
SNMP agent
*
traffic shaper
*
SVG-based traffic grapher
*
firmware upgrade through the web browser
*
Wake on LAN client
*
configuration backup/restore
*
host/network aliases