Interview with Richard Tang of Zen

Started by Tacitus, Nov 22, 2008, 11:07:39

Previous topic - Next topic

0 Members and 3 Guests are viewing this topic.

Rik

First thing to try, Tac, would be a 2-wire 2700, they can really have an impact on poor lines.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Rik on Nov 23, 2008, 11:13:14
First thing to try, Tac, would be a 2-wire 2700, they can really have an impact on poor lines.

I know, but they don't do one with VPN.....  Unless of course they do a vanilla modem I could use with a separate VPN firewall.

Rik

Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Sebby

Quote from: Tacitus on Nov 23, 2008, 11:23:07
I know, but they don't do one with VPN.....  Unless of course they do a vanilla modem I could use with a separate VPN firewall.

If it can do bridge mode (not sure) couldn't you use another router for the VPN?

Simon

Quote from: Sebby on Nov 23, 2008, 12:07:04
If it can do bridge mode (not sure) couldn't you use another router for the VPN?

It can do Bridged LLC and Bridged VC-Mux, if that's any help.  :dunno:
Simon.
--
This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Simon on Nov 23, 2008, 12:10:32
It can do Bridged LLC and Bridged VC-Mux, if that's any help.  :dunno:

Not sure if it is tbh.  I don't currently have a separate firewall as I use an all in one at present.  I'll take a look around and see what's on offer. 

What I think I would have to do is use a Two-Wire as a modem with the internal firewall switched off and a feed to a router/firewall on a sub-net for all other functions.  Not sure if that might give problems with double NATting and it could be an expensive proposition to find out. 

I was thinking of a Draytek 100 for the modem with either a Draytek 2900 or the equivalent Zywall as the  firewall.  Cost of these together is about the same as (say) a Thompson 608 - not cheap, but not out of the ball park either.  Whether it would be an improvement on the Thompson or my current setup is another matter.


Rik

#31
I'm pretty sure you can kill NAT in the 2700, Tac.

Yup, disable routing:

Warning: When you disable routing, the gateway's local IP address gets set to 192.168.1.254/255.255.255.0.

If you want to connect to the gateway when it is in bridged mode to change its configuration parameters, you must:

    * Configure your computer's IP address to work on the same subnet (ex. 192.168.1.x, 255.255.255.0).
    * Attach your computer to the local network port of the gateway.
    * Enter 192.168.1.254 as address in a web browser.

Note: When routing is disabled, NAT and the DHCP Server are disabled.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Rik on Nov 23, 2008, 15:07:37
Note: When routing is disabled, NAT and the DHCP Server are disabled.

And presumably that kills the firewall as well.  Or is it controlled separately on the 2-wire?

Rik

I'm not sure, but there is a separate control.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Rik on Nov 23, 2008, 18:42:55
I'm not sure, but there is a separate control.

Mind you given that these go for ridiculous amounts on e-bay, it might be worth a try.  Either way I won't lose a fortune and no doubt someone would take it off my hands if it didn't work out.

Rik

I'm sure we could find you a buyer, Tac. :)
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Steve

Presumably if the 2wire is acting as a modem only you will then need a router with a WAN input or a DHCP server??
Steve
------------
This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: stevethegas on Nov 24, 2008, 10:16:35
Presumably if the 2wire is acting as a modem only you will then need a router with a WAN input or a DHCP server??

My original thoughts were to use a vanilla modem (Draytek 100 which does PPoE/or I think Thompson do a single port) with a separate firewall router (Draytek 2910/Zywall 2), the idea being the modem could sit next to the phone socket and the firewall where I can get at it.

Problem with this is that it is expensive, so I was thinking of first trying the 2-Wire on its own - I can manage without VPN for a bit, or if I have to use SSH, although I doubt the 2-Wire does port mapping.  If the 2-wire gave sufficiently good results (stable/ high sync etc) then I could use this as a pure modem and pony up for the firewall.  Total cost is about the same and I could offload the 2-wire if it didn't work. Not ideal but should be workable. 

Alternatively I could go for a Thompson 608WL with VPN on the grounds that the Broadcom chip (I think all Speedtouch use Broadcom?) is better than the AR7 which is what I have at present.

In the end it may be that nothing makes sufficient difference to be worth the bother and I have to accept that part of the price of living in one of the more pleasant parts of the world is c..p broadband.  :)

Correct me if I'm wrong, but the dual SSID 2-Wire is the one to go for as you don't have to do DNS poisoning tricks?



Rik

That's it, Tac. Or a single SSID with SBC firmware. I use a 2700 on my poor line, and have gained 1000k in profile over a Netgear DG834, which uses the AR7 chipset. I replaced a Draytek with the Netgear because I found the Draytek wasn't as good once I went to Max.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Sebby

That seems to be the general consensus about Drayteks, Rik. It's very interesting as they were considered the best before Max came along.

Lance

Just so you know, the 2700 does do port mapping in the form that you set up a application which uses a port, and then tell the router which pc the application is running on.
Lance
_____

This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Lance on Nov 24, 2008, 22:34:36
Just so you know, the 2700 does do port mapping in the form that you set up a application which uses a port, and then tell the router which pc the application is running on.

Thanks Lance but does it do translation?  (= incoming port 1234 at the router mapped to port 4567 at the PC).  Surprisingly few routers do this as standard, even some of the so-called high end ones.  The Drayteks do it via the GUI, and you can with the Zyxels but you need to use the command line. 

I always use SSH on non-standard ports.  It  may not be hugely secure although I disable passwords and  use a key, but it does at least keep the script kids out  :)

Rik

Quote from: Sebby on Nov 24, 2008, 20:57:51
That seems to be the general consensus about Drayteks, Rik. It's very interesting as they were considered the best before Max came along.

I agree, Seb, it was odd because they were so good pre-Max, especially on poor lines. However, Max seemed to re-write the rule book for them.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

Tacitus

Quote from: Rik on Nov 25, 2008, 09:42:21
I agree, Seb, it was odd because they were so good pre-Max, especially on poor lines. However, Max seemed to re-write the rule book for them.

I was using a 2800 for a while and tbh it wasn't bad and feature wise beats most others.  Mind you, I had to do a lot of command line tweaking to get there.  Problem was that under some conditions it started having periods where it dropped into a cycle of constant re-syncing - no doubt due to the detiorating line. 

My current AR7 based one isn't too bad but seems to have swapped speed for stability in quite a big way as I get nowhere near the same sync speeds as I did with the Draytek.  Further detioration on the line now seems to be defeating this one, hence the desire to try something else.  AFAICT it's only those with Broadcom chips that seem to do the business under most  circumstances.  The others are fine if you're on a good line but throw a hissy fit at the first sign of trouble. 

Rik

That's why I'd recommend a 2700 if it can meet the rest of your needs, Tac. I, and most others on poor lines, have certainly seen advantages with them.
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.