I have checked through the forum but could not seem to find an answer. Here is a quick description of my situation. Basically, I need a solid gigabit router with no wifi built-in at the back of an AT&T fiber modem
Located in the USA
Large floorplan, multiple floors BUT no need for wifi as covered by mix of gigabit switches and Unifi APs. Total of over 100 devices, some of them using fixed IP addresses (dedicated range), others using address served by router DHCP
AT&T Fiber Gibabit symmetrical 1Gb/1Gb (could upgrade to 2.5 but no need at least in near future). Would like 2x 2.5Gb ports (one for WAN, one for LAN)
Total of over 100 devices, some of them using fixed IP addresses (dedicated range), others using address served by router DHCP. Mix of streamers, laptops, phones, devices, ...
Need to run VPN server (either WireGuard or Open VPN) for occasional (fast) access to Blue Iris camera server and considering (but not sure yet and not big consideration) running VPN client for security/privacy reasons) of home network.
services they may want to run (VPN inbound or outbound, adblock, etc.)
Coming from ASUS with OEM software but used number of advanced settings incl. VPN, IP assignment...
Device will be in basement with constant temperature. Therefore, noise, heat, lights,... are not an issue.
Looking for the best bang for the buck, paying for what I need (power vs wifi) and flexibility with either prebuilt configuration or easy install ideally with graphic interface. Tech enthusiast but not network engineer not software developer.
A NanoPi R5C or R5S (purchase direct from FriendlyElec web site) could work if half Gig Wireguard or ~160 Mbps OpenVPN provides you enough VPN speed. But fakemanhk's recommendation is a better option for not too much more cost.
For SBC the R4S with RK3399 can actually do > 200Mbps OpenVPN (YouTuber tested) while in Reddit someone tested Wireguard with 800Mbps+, other than the 2.5G ethernet I see no point picking R5S/R5C, and that's also why I skipped this and bought R6S which uses RK3588 directly.
The R5C has the 2.5G ports required by the OP and can route same. If the R5C VPN capability is sufficient for the OP's needs, at $76 shipped to the USA direct from FriendlyElec (with case, memory and MMC), it will meet all the OP requirements with good bang for the buck.
If inexpensive intra-China mail system shipping delivered to the USA and assuming language skills I lack to call an R6S supplier directly in China to negotiate further discounts...the R6S would go to the top of my list
However, considering the $149/$156 cost of an R6C/R6S shipped to the USA (with case, memory and MMC), I think your recommendation of a fanless Intel N100 microcomputer/router with 2.5G NICs may be a better option for the OP if it can be found for the right price. Performance is a toss up between the two, with the N100 probably a little faster and maybe requiring a little more power than a RK3588S - but I think an N100 box is going to be more versatile.
Aside, I agree an R4S at $92 shipped to USA (with case and memory) is tough to beat for a 1 Gig network gateway router - I use one as my gateway in fact - but as you've noted it's not for the OP, who requires 2.5G ports.
Very useful feed-back and suggestions. To be fair, the 2x 2.5Gbs ports are nice to have at this stage. At low price, I am very happy with two 1G ports (WAN and LAN) and upgrade later when I need 2.5G and/or additional WAN port for failover.
I am more concerned about the perfomances especially support for Gigabit internet and the ability to run firewall, Wireguard VPN server and client without performance degradation. Ideally, I would also run Unifi Cloudkey on it.
Finally, not being a Linux nor PI expert, having access to clear set-up instructions is important.
Ultimately, I need a solid, reliable and relatively easy to tweak gateway/router that will enable a fast, safe and reliable internet connection to my wired and wireless network.
If relevant, I am using 4 Unifi APs that I need to replace/upgrade.
Thanks a lot again for your help and suggestions.
By the way, curious of your thoughts on the new Unifi UXG-Lite device. Much less versatile but pretty cool specs at low price point.
Yeah, depends on price I guess. An N100 will draw less power and be a bit faster than an N5105. But if an N5105 is substantially less cost and does the job, why not?
Thanks. Learning a lot here! Curious where we land. Sounds like N100 may be better option than PI. Any recommendation on sourcing/model? I will need case, power...
Thanks a lot again!
I have posted the message above to help refine what I am looking for. Apologize for double post but I realized it may be easier to read if I repost here.
Very useful feed-back and suggestions. To be fair, the 2x 2.5Gbs ports are nice to have at this stage. At low price, I am very happy with two 1G ports (WAN and LAN) and upgrade later when I need 2.5G and/or additional WAN port for failover.
I am more concerned about the perfomances especially support for Gigabit internet and the ability to run firewall, Wireguard VPN server and client without performance degradation. Ideally, I would also run Unifi Cloudkey on it.
Finally, not being a Linux nor PI expert, having access to clear set-up instructions is important.
Ultimately, I need a solid, reliable and relatively easy to tweak gateway/router that will enable a fast, safe and reliable internet connection to my wired and wireless network.
If relevant, I am using 4 Unifi APs that I need to replace/upgrade.
Thanks a lot again for your help and suggestions.
By the way, curious of your thoughts on the new Unifi UXG-Lite device. Much less versatile but pretty cool specs at low price point.
No specific recommendations - others may have some. I suggest doing a search of this forum for Intel N100 2.5G router, or do same on Aliexpress. There are a number of options.
If 2.5G ports are not as important to you as we were thinking, I would take a hard look at the NanoPi R4S then.
This one is out of my league. I have no idea if Unifi Cloudkey could run in docker on the R4S, or if an x86 solution like the N100 would be better for this. Others may be able to comment.
That pretty much describes my R4S gateway router (4 GB memory, no unique MAC address, and get the metal case), with the 1G port limitation of course.
