Router with 2.5G WAN and Ethernet ports

ppmm · December 8, 2024, 9:22pm

Just bind the necessary devices into LXC container and it'll be fine. At least that's the case for me with OpenConnect which needs access to /dev/net/tun and optionally /dev/vhost-net.

lxc.cgroup.devices.allow = c 10:238 rwm
lxc.cgroup.devices.allow = c 10:200 rwm
lxc.mount.entry = /dev/vhost-net dev/vhost-net none bind,create=file
lxc.mount.entry = /dev/net/tun   dev/net/tun   none bind,create=file

mcaptur · December 9, 2024, 5:10am

Yes mapping devices works fine.. the only issue which put me off lxc is how to upgrade openwrt? in my case i need to backup config.. deploy new lxc and update restored config.. Whilst in a vm i can just do sysupgrade..

ppmm · December 9, 2024, 2:07pm

As always it's YMMV. If keeping up to date with every release is important to you and performance takes 2nd place, vm probably suits you better.

I've only recently moved to lxc and backing up/restoring a few files is no big deal:

Summary

/var/lib/lxc/openwrt/rootfs/etc$ find . -type f -mtime -12
./init.d/dnsmasq
./dropbear/dropbear_ed25519_host_key
./dropbear/authorized_keys
./dropbear/dropbear_rsa_host_key
./shadow
./config/firewall
./config/luci
./config/uhttpd
./config/system
./config/network
./config/dhcp
./urandom.seed
./rc.local
./uhttpd.key
./uhttpd.crt
./board.json
./passwd

bogorad · December 12, 2024, 3:43pm

Yes, any of the 2.5 FriendlyElecs should do. I use Unifi 6E-ent for wifi with an R5s.

https://www.friendlyelec.com/index.php?route=product/search&search=2.5&category_id=69&sub_category=true&description=true

TimSmall · December 12, 2024, 8:32pm

As well as the ARM options already given, various Intel N100 or N95 etc. fanless systems with 2.5Gbps Ethernet are available on Aliexpress etc. at around €100. Sticking with ARM, you could also add a single or dual 2.5G Ethernet NIC to a suitably equipped ARM board (even a Raspberry Pi 5) via an m.2 slot (€10 to €30).

For a Wifi 6 (2.4GHz and 5GHz only) dedicated access point, the Zyxel NWA50AX PRO is worth considering (I use them at home and also with professional clients), they're good value and has a well supported (and open source friendly) Mediatek chipset, 2.5Gbps Ethernet, POE, and an externally available serial uart.

If you need 6GHz, then I don't know of any great off-the-shelf choices at the moment, but you could something with an m.2 (or mini-pcie) slot and an AW7916-AED (or -NPD) card.

I don't recommend Ubiquiti Unifi because they repeatedly violate the GPL.

system · December 22, 2024, 8:33pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.