I wouldnt really say that I'm an expert at pfsense or anything, I usually pop into irc#pfsense when I try something new ;)<div><br></div><div>I usually offer to host because I have spare hardware, and conference room, and a projector.</div>
<div><br></div><div>I think it would be cool to do a multi-city lug one of these days. Seems like anything above a lug is usually happening in some far-off city<br><div><br></div><div><div><br></div><div><br></div><div><div>
<br><div class="gmail_quote">On Sat, Jul 24, 2010 at 8:48 PM, Pippin Wallace <span dir="ltr"><<a href="mailto:nippip@gmail.com">nippip@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Dan, if you are ever up the Bozeman way and have time for pfsense LUG<br>
lab please let us know.<br>
<font color="#888888"><br>
Pippin<br>
</font><div><div></div><div class="h5"><br>
On Tue, Jul 20, 2010 at 11:34 AM, dan <<a href="mailto:dandenson@gmail.com">dandenson@gmail.com</a>> wrote:<br>
> On Tue, Jul 20, 2010 at 1:12 AM, Mike Berry <<a href="mailto:madeinmontana@bresnan.net">madeinmontana@bresnan.net</a>><br>
> wrote:<br>
>><br>
>> I would probably be looking at the pre-builds. Lol, I'm not that versed in<br>
>> the build-ur-own.<br>
><br>
> Actually, getting a pfsense box setup is easier than a cisco. If you pop<br>
> into #ubuntu-montana on freenode or even post on montana linux you could get<br>
> someone to put one together for you local to Billings or Bozeman. I would<br>
> offer BUT because I suggested it you might see some sort of scandal :) also,<br>
> #pfsense on freenode is an excellent irc chan and they are very willing to<br>
> help. You wont find the same with a Cisco.<br>
>><br>
>> When you say re: the ciSCo, If you want multiple WAN, you will need an<br>
>> 1821 or better, does blgs to bzmn count as multiple?<br>
><br>
> No, its the number of seperate internet connections you can use. If you get<br>
> a box that can multi-wan you can have say a DSL and a Cable connection, or a<br>
> T1 and DSL, and you can load balance or fail over the connections. An 881<br>
> has a single WAN port and wont let you VLAN out your WAN port or anything so<br>
> it can only have 1 WAN IP address, aka 1 WAN. The 1821 and higher routers<br>
> allow you to add Ethernet modules, which means you can do up to 5 WAN ports<br>
> on a 1821 with 2 Ethernet WIC cards. This is BIG$$$. $1500 router + about<br>
> $500-$800 each for the WIC cards.<br>
> With Cisco I would say that it is *practically impossible to load balance<br>
> VPN, but you can do failover. With pfsense, you can create two tunnels, one<br>
> on each WAN, and then load balance between them, if one goes down it<br>
> compensates. For that matter, you can put a third connection on dialup,<br>
> give it a lower priority in the loadbalance/failover mechanism, and pfsense<br>
> can dial that when the other connection(s) are down. You can add a droid<br>
> phone with wifi tether and install a wireless adapter in pfsense, again with<br>
> a lower priority, put that in the loadbalancing mechanism, and you can stack<br>
> those and have 2 WAN priority 1, Verizon on priority 2, and dialup on<br>
> priority 3, or even two dial ups on priority 3. I have seen people using<br>
> pfsense to 'shotgun' 6 or more dial up modems in the forums. basically,<br>
> pfsense is EXTREMELY flexible, much more so than a Cisco. Also, you can<br>
> setup your pfsense box to a final, production state in no time flat. Nice,<br>
> easy web GUI.<br>
> excuse the tangent there!<br>
>><br>
>> And who is a reputable outlet for these? Any one?<br>
><br>
> <a href="http://www.newegg.com/Product/Product.aspx?Item=N82E16833150036&Tpk=cisco%20881" target="_blank">http://www.newegg.com/Product/Product.aspx?Item=N82E16833150036&Tpk=cisco%20881</a><br>
> <a href="http://www.cdw.com/shop/products/default.aspx?EDC=1482835" target="_blank">http://www.cdw.com/shop/products/default.aspx?EDC=1482835</a><br>
> **note, if the picture shows wireless, it is the wrong picture. That is the<br>
> 881W and is about $200-$250 more.<br>
> I would also caution you that if you have not worked on cisco IOS it may be<br>
> tough to configure yourself. There is a web gui but it will only do VERY<br>
> basic things. As soon as you put a specific route, or acl, or vpn option,<br>
> the webgui wont let you configure anything anymore.<br>
>><br>
>> I will have to talk to you more, later, about the other OS, maybe I could<br>
>> suggest a LUG meeting demo from someone for those of us not so<br>
>> knowledgeable?<br>
><br>
> Bozeman and Billings both have a LUG that has some skilled regulars. I have<br>
> a conference room in Billings and would be more than happy to do the August<br>
> LUG on pfsense. I think that it would be more appropriate to do a lab<br>
> instead of just a demo though, get some hands dirty :)<br>
><br>
> I currently have 37 VPN tunnels on Cisco and a few on ipsec with pfsense and<br>
> a few mobile setups with openvpn in production.<br>
</div></div><div><div></div><div class="h5">> _______________________________________________<br>
> BillingsLUG mailing list<br>
> <a href="mailto:BillingsLUG@billingslug.org">BillingsLUG@billingslug.org</a><br>
> <a href="http://lists.billingslug.org/mailman/listinfo/billingslug" target="_blank">http://lists.billingslug.org/mailman/listinfo/billingslug</a><br>
> <a href="http://www.billingslug.org" target="_blank">http://www.billingslug.org</a> group information<br>
><br>
_______________________________________________<br>
BillingsLUG mailing list<br>
<a href="mailto:BillingsLUG@billingslug.org">BillingsLUG@billingslug.org</a><br>
<a href="http://lists.billingslug.org/mailman/listinfo/billingslug" target="_blank">http://lists.billingslug.org/mailman/listinfo/billingslug</a><br>
<a href="http://www.billingslug.org" target="_blank">http://www.billingslug.org</a> group information<br>
</div></div></blockquote></div><br></div></div></div></div>