Access switch for small business recommendation

Dear nanog community I'm looking for a cost effective access switch for FTTB active fiber deployments. We are currently using Accedian demarcation devices but it's probably an overkill for customers that only require a basic internet service. The basic requirements we are looking for are: * Vlan

Re: OT - Small DNS "appliances" for remote offices.

Consider change your resolver to Unbound. Much better. -- Eduardo Schoedler Em quarta-feira, 18 de fevereiro de 2015, Ray Van Dolson < rvandol...@esri.com> escreveu: > Hopefully not too far off topic for this list. > > Am looking for options to deploy DNS caching resolvers at remote > locations

Re: OT - Small DNS "appliances" for remote offices.

On Wed, Feb 18, 2015 at 08:23:37PM -0500, Rob Seastrom wrote: > > "Robert Webb" writes: > > > What I do not like about the Pi is the network port is on the USB > > bus and thus limited to USB speeds.?? > > Pretty much all of the ARM boards have their ethernet ports on HSIC > channels (480mbit/s

Re: OT - Small DNS "appliances" for remote offices.

On Wed, Feb 18, 2015 at 10:22 AM, Rob Seastrom wrote: > The Pi is low-powered in more ways than one. Last fall I ran some > (admittedly fairly simple minded) DNS benchmarks against a Raspberry > Pi Model B and an ODROID U3. > > Particularly if you have DNSSEC validation enabled, the Pi is > under

Re: OT - Small DNS "appliances" for remote offices.

"Robert Webb" writes: > What I do not like about the Pi is the network port is on the USB > bus and thus limited to USB speeds.  Pretty much all of the ARM boards have their ethernet ports on HSIC channels (480mbit/sec, no-transceiver-phy USB for on-board use - maximum length is 10cm). The Pi

Re: OT - Small DNS "appliances" for remote offices.

The BeagleBone Black uses flash memory to hold the system image which allows it to boot quickly. I'm running Ubuntu Trusty 14.04 and it seems stable. Geoff *-- Presidential Innovation Fellow | The White House* On 02/18/2015 05:20 PM, Bacon Zombie wrote: You also have to watch out fo

Re: OT - Small DNS "appliances" for remote offices.

You also have to watch out for issues with the Pi corrupting SD cards. On 19 Feb 2015 01:04, "Geoff Mulligan" wrote: > I have used the BeagleBone to run a few simple servers. I don't know if > the ethernet port on the Bone is on the USB bus. It is slightly more > expensive than a PI, but they ha

Re: OT - Small DNS "appliances" for remote offices.

I have used the BeagleBone to run a few simple servers. I don't know if the ethernet port on the Bone is on the USB bus. It is slightly more expensive than a PI, but they have worked well for me. Geoff On 02/18/2015 04:44 PM, Peter Loron wrote: For any site where you would use a Pi as

Re: OT - Small DNS "appliances" for remote offices.

Not to mention reliability issues with old machines...fans failing, leaky capacitors, etc, etc. -Pete On 2015-02-18 14:32, Baldur Norddahl wrote: That option is expensive in power fees... Den 18/02/2015 23.12 skrev "Rich Kulawiec" : Find someone unloading 50 old, physically small desktop P

RE: OT - Small DNS "appliances" for remote offices.

For any site where you would use a Pi as the DNS cache, it won't be an issue. DNS isn't that heavy at those query rates. Yeah, it would be awesome if they'd been able to get a SoC that included ethernet. -Pete On 2015-02-18 15:08, Robert Webb wrote: What I do not like about the Pi is the ne

RE: OT - Small DNS "appliances" for remote offices.

What I do not like about the Pi is the network port is on the USB bus and thus limited to USB speeds.  Original message From: Maxwell Cole Date:02/18/2015 4:30 PM (GMT-05:00) To: "nanog@nanog.org >> 'NANOG list'" Subject: Re: OT - Small DNS "appliances" for remote offices.

Re: OT - Small DNS "appliances" for remote offices.

That option is expensive in power fees... Den 18/02/2015 23.12 skrev "Rich Kulawiec" : > > Find someone unloading 50 old, physically small desktop PCs. Buy the > lot. Drop OpenBSD and BIND on them, ship 3 to every site, run 1 or 2 > live with the leftovers as on-site spares. If one breaks, wip

Re: OT - Small DNS "appliances" for remote offices.

Sounds coo with the pi idea. Not sure of the cache level you need but we have great success with fortigates performing firewall and local DNS host even for a small remote site that is part of an MS AD via a VPN tunnel. It can be setup and managed just like a DNS server. No extra devices to lear

Re: OT - Small DNS "appliances" for remote offices.

And the new CPU is ARM7 so hardfloat is supported. Should make a nifty DNS box. -Pete On 2015-02-18 07:21, Maxwell Cole wrote: +1 for the pi, The new model has a quad core and 1GB of ram which should be more than enough for a DNS. On 2/18/15 10:03 AM, Peter Kristolaitis wrote: Not "industri

Re: OT - Small DNS "appliances" for remote offices.

Find someone unloading 50 old, physically small desktop PCs. Buy the lot. Drop OpenBSD and BIND on them, ship 3 to every site, run 1 or 2 live with the leftovers as on-site spares. If one breaks, wipe the disk and send the box to recycling. (Just checked: someone on a certain auction site is s

[NANOG-announce] Don't Forget: ARIN+NANOG On The Road - Orlando

The next On The Road event is just a few short days away… We invite you to join us at: ARIN+NANOG On The Road - Orlando Tuesday, 24 February 2015 9:00 AM – 5:00 PM; Reception: 5:00 PM – 6:30 PM Eastern Time Register at: https://www.nanog.org/meetings/road5/registration

Re: OT - Small DNS "appliances" for remote offices.

+1 for the pi, The new model has a quad core and 1GB of ram which should be more than enough for a DNS. On 2/18/15 10:03 AM, Peter Kristolaitis wrote: Not "industrial grade", but Raspberry Pis are pretty great for this kind of low-horsepower application. Throw 2 at each site for redundancy

Re: OT - Small DNS "appliances" for remote offices.

I used one of these for a NAT/DNS box running FreeBSD for connection to our WiFi system. One nice thing is the 4 real serial ports. http://www.amazon.com/Qotom-I37C4-Bluetooth-Computer-Industrial-Computer/dp/B00MQKJYY0 -- Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474 On Wed, Feb 18, 2015 at 11:

Re: OT - Small DNS "appliances" for remote offices.

Justin Wilson - MTIN writes: > Have you looked at Mikrotik? > www.mikrotik.com > > It may be lacking for DNS options you want, but worth a look. I'd definitely recommend mikrotik for a cheap and cheerful router. DNS server (the original subject of this message)? Not so much. -r

Re: OT - Small DNS "appliances" for remote offices.

Hey Ray, Most tiny routers with 64MB ram are able to run a cache dns service while not all of them have the same level such as BIND but rather dnsmasq. I think that it's not always a bad choice and it depends on what other infrastructure needs you have in these remote locations. Someone menti

Re: OT - Small DNS "appliances" for remote offices.

Have you looked at Mikrotik? www.mikrotik.com It may be lacking for DNS options you want, but worth a look. Justin Justin Wilson j...@mtin.net http://www.mtin.net Managed Services – xISP Solutions – Data Centers http://www.thebrotherswisp.com Podcast about xISP topics http://www.midwest-ix.co

Re: OT - Small DNS "appliances" for remote offices.

What is your desired cost per unit? Reminds me of needing small pfsense based boxes a few years back. Used this company's hardware: http://www.logicsupply.com/computers/solutions/firewall-networking/ I bet you could get something fairly rugged and low maintenance for $400 or so. On Wed, Feb 18,

Re: OT - Small DNS "appliances" for remote offices.

We recently installed one of these basically as digital signage, but I think it should work fine for your needs too. We've had no issues with it at all. (we installed ubuntu) It's the ECS Liva mini-pc http://www.ecs.com.tw/ECSWebSite/Product/Product_LIVA.aspx?DetailID=1560&LanID=0 On Wed, Feb

Re: OT - Small DNS "appliances" for remote offices.

On Wed, 18 Feb 2015 06:28:16 -0800 Ray Van Dolson wrote: > Hopefully not too far off topic for this list. > > Am looking for options to deploy DNS caching resolvers at remote > locations > We're BIND-based and leaning to stick that way, but open to other > options if they present themselves. I

Re: OT - Small DNS "appliances" for remote offices.

I really like the Intel NUC. Standard x86 hardware, multiple choices of CPUs, runs debian/ubuntu/fedora etc with zero modifications. /Anders MVH / Regards Anders Löwinger Founder, Senior Consultant Abundo AB Murkelgränd 6 94471 Piteåhttp://abundo.se office: +46 911 400021 mobile: +46 72 206 0322

Re: OT - Small DNS "appliances" for remote offices.

Once upon a time, Rob Seastrom said: > The Pi is low-powered in more ways than one. Last fall I ran some > (admittedly fairly simple minded) DNS benchmarks against a Raspberry > Pi Model B and an ODROID U3. The Pi is not really the right tool for any "production" job IMHO. Even if you are restr

Re: OT - Small DNS "appliances" for remote offices.

On Wed, Feb 18, 2015 at 06:28:16AM -0800, Ray Van Dolson wrote: > > Am looking for options to deploy DNS caching resolvers at remote > locations where there may only be minimal infrastructure I suspect that this could be done using an ERLite but have not actually tried it.

Re: OT - Small DNS "appliances" for remote offices.

We use Mac Minis; $500 each anywhere plus $25 (!) for all the server components, dead silent, and ready to go with Bind installed out of the box. You can also enable dhcpd and all manner of other stock BSD services. There are "helper" GUI tools for the non-CLI admin built into the Server toolkit

Re: OT - Small DNS "appliances" for remote offices.

Peter Kristolaitis writes: > Not "industrial grade", but Raspberry Pis are pretty great for this > kind of low-horsepower application. Throw 2 at each site for > redundancy and you have a low-powered, physically small, cheap, dead > silent, easily replaceable system for ~$150 per site. The Pi

RE: Intrusion Detection recommendations

I'm not sure if it's been mentioned, but for a business of your size...check out SecurityOnion. It's everything you need in one easy package and it's free. -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of Andy Ringsmuth Sent: Friday, February 13, 2015 12:40 PM

Re: OT - Small DNS "appliances" for remote offices.

use a vm dns appliance on the same machine as your vm router instance Colin > On 18 Feb 2015, at 14:28, Ray Van Dolson wrote: > > Hopefully not too far off topic for this list. > > Am looking for options to deploy DNS caching resolvers at remote > locations where there may only be minimal infr

Re: OT - Small DNS "appliances" for remote offices.

Not "industrial grade", but Raspberry Pis are pretty great for this kind of low-horsepower application. Throw 2 at each site for redundancy and you have a low-powered, physically small, cheap, dead silent, easily replaceable system for ~$150 per site. Same idea as the Soekris -- just ship ou

Re: OT - Small DNS "appliances" for remote offices.

Well, if they ever manage to get them into production, I'm hoping to talk my boss into buying some of these. http://www.fit-pc.com/web/products/fitlet/ We'd just need to figure out a rackmount bracket of some sort. Hide them in the case of our previous gen hardware maybe??? Screw them to a cheap r

OT - Small DNS "appliances" for remote offices.

Hopefully not too far off topic for this list. Am looking for options to deploy DNS caching resolvers at remote locations where there may only be minimal infrastructure (FW and Cisco equipment) and limited options for installing a noisier, more power hugnry servers or appliances from a vendor. S