danb35
Hall of Famer
- Joined
- Aug 16, 2011
- Messages
- 15,504
For the last 15+ years, I've been running what's now Koozali SME Server (www.koozali.org, formerly Mitel e-smith Server) as my home server/router. It's a Linux-based web/mail/file server that incorporates a NAT gateway/firewall and a variety of other features that aren't especially relevant. It's worked well and met my needs so far, but there are some things I'd now like to do that it just isn't capable of, so I'm looking mostly at pfSense to handle the routing/firewall functions, while keeping the SME server for web/mail/etc duties. The particular capabilities I'm thinking of are:
On the first bullet, I have a Ubiquiti access point that supports multiple SSIDs and VLAN tagging, which I'm thinking would make it fairly straightforward. As to my existing server, I'm thinking I'd just forward the relevant ports (25, 80, 110, 143, 443, 993, 995) to that server and disable its routing functions.
Any thoughts on this? Or alternative suggestions? I'm also considering Sophos, but not a big fan of the "crippleware" aspect*. Whatever the software, I'd want to run it on a standalone, fairly low-power device like this.
* Edit: but I'm not really fond of pfSense's "hide the documentation unless you pay for a $100 membership" approach either.
- I'd like to set up a guest WiFi network that's completely isolated from my main LAN. Clients on the guest network shouldn't be able to see each other, or wired machines on the LAN, but should have Internet access.
- I'd like the ability to use a second Internet connection, mostly as a backup to my main connection, but also for increased bandwidth.
On the first bullet, I have a Ubiquiti access point that supports multiple SSIDs and VLAN tagging, which I'm thinking would make it fairly straightforward. As to my existing server, I'm thinking I'd just forward the relevant ports (25, 80, 110, 143, 443, 993, 995) to that server and disable its routing functions.
Any thoughts on this? Or alternative suggestions? I'm also considering Sophos, but not a big fan of the "crippleware" aspect*. Whatever the software, I'd want to run it on a standalone, fairly low-power device like this.
* Edit: but I'm not really fond of pfSense's "hide the documentation unless you pay for a $100 membership" approach either.
Last edited: