Category: DIY

Update: DIY Router/Firewall Project

Too Good to be True

The whole ‘two machines in one box’ didn’t pan out in the long run. Not that it isn’t perfectly possible; just not on the sparse hardware I attempted to do it on. After a round of updates to both VirtualBox and Windows the network bridging voodoo failed and I could not get it working again. The BlackBox continued to serve as an always on file server and remote access box (mostly to start big downloads from work, Steam and ISOs).

I was relegated to a Netgear WNDR3400 which eventually received an experimental DD-WRT install which solved a few of the issues I had with it. However, my patience worth thin with the horrible WiFi performance I got out of it and I retired it. It saw a spot of use as a client bridge. In the iterim I had replace my ailling Speedstream 4200 DSL modem with Windstream’s Segemcom F@st1704 modem-router combo (or RoMo as I have tried to term the devices). I lived with just the F@st1704 serving my network and it performed very well. I have used many of them professionally and am very impressed with their performance.

Ch-Ch-Changes!

As great as the Sagemcom is it just couldn’t keep up once my brother and I got into some really twitchy online games. And it didn’t provide the management granularity I was starting to find use of. I decided to re-roll the BlackBox as a stand alone firewall as it was seeing almost no use anymore as an always on Windows box. After much research and finding the free version of SmoothWall wanting, I settled on PFSense.

After a minor problem getting the install USB to boot properly, PFSense has been painless and powerful. Though getting forwarding rules set-up can be a tad misleading, it is not near as bad as the SonicWalls I deal with professionally. It has survived many black-outs and updates. I run it bridged of course. NAT would be impossible otherwise. I only have a handful of rules, but have had zero problems running anything from FTP to game servers. And I do get much better performance out of ping sensitive tasks over any solution since the virtualized SmoothWall.

My small yet effective network closet.

2014/02/20
DIY Virtual Router & Server
Conception

I recently decided to finally install a wired network in my house after suffering the faults of WiFi. I had considered buying a new WiFi router, but nearly every single router I looked at had its bad reviews. It was around this time I decided to wire up the place and caught a couple episodes of Hak 5 (718, 720) that tickled my fancy…Build my own router. The concept never made sense on my strictly wireless network, but everything came to a head at the same time and I was obsessed. I held off on completing my main rig by finally getting a real graphics card in order to complete this project without braking the bank.

Fleshing it out

After much experimentation and deliberating, I decided the easiest and most useful set-up (for me) would be a Windows 7 rig running the firewall OS in VirtualBox. All my PC’s run Windows 7, so it only makes sense for my server to run it. Why go through the hassle of getting Linux distro to play nice when a Win7 box will just work. And as for the firewall software, I decided on SmoothWall for now. I had originally tested Untangle, but could not get it running efficiently in a virtual machine.

Hardware
- GIGABYTE GA-D525TUD w/embedded Intel Atom D525@ 1.8GHz
- 4GB DDR3 RAM
- 1TB HDD
- Gigiabit NIC
- Rosewill RC-CIX-01 Mini-ITX case w/ 150W PSU
The whole rig was purchased for just over $300 after shipping from NewEgg.com. This router will only have to support me and my brother on a regular basis and every now and then a guest’s computer or one that I am working on on the side. If I had it to do over, I might get a processor that explicitly supports visualization, but this gets the job done.

After a little cable management

Mmmm…brains!

Realization of Virtualization

After much research on the overwhelmingly confusing topic of visualizing a firewall, I stumbled upon this incredibly helpful post. And after much experimenting, I finally managed to get SmoothWall running and routing while virtualized in Win7. My area of expertise is mainly in hardware and desktop support and any networking knowledge I posses is due to what I have had to learn to get by. Throw my lack of network experience in with trying to apply it to virtualization and bridged networks and you get a very frustrated geek. I should say that most of my frustration was with trying to optimize Untangle before I gave in and went with SmoothWall.

The trick was setting the dummy IP address on the RED NIC (network port that connects to the modem) in the host OS. It was a detail that kept overlooking in the link above. And was also something that I didn’t really see reference to on other similar tutorials. You then assign the GREEN NIC (network port that connects to the rest of your network) in the host OS to DHCP or the appropriate static IP.

After getting the firewall working, I did get the host OS onto my workgroup and sharing a storage folder. I even got VNC working after getting around some of the problems that it has on Win7. So now I can manage it headless. I also found a great little application for running Virtual Box VM’s as a service at boot-up that is dead simple to set-up and is working like a charm.

Results…or Was it all worth it?

Yes! Now your mileage may vary, but I am seeing great speed and performance increases. My subscribed DSL speed is 6Mbps and really never had issues with getting that speed on my old Belkin router. I did however have problems that required my restarting it at least once an evening. Which was one of the factors driving this project. With the my new custom rig I am now seeing regular speeds of around 6.5Mbps and even see some steady 8Mbps speeds in some Steam downloads. These kinds of improvements might seem ridiculous, but I am not really surprised. I live in a small town and live just outside the city limits. And I can imagine that Windstream (my ISP) is pumping out a healthy signal to get as far out in the boonies as possible. There are also relatively few subscribers between me and town. So my more powerful router is just taking advantage of every bit it can. I have also not had to restart any part of the machine after the initial setup process and boot-up testing. So yes it was all worth it.

An IP map that I made in Visio to make is make sense to me.
2010/10/07
New Build Status: Pending…

I received all the components for my new build on Friday (more…)

2010/04/12
Nu Kompooterz!

I recently picked my gaming addiction back up and decided a new desk-based rig was needed. My original gaming rig is now part of my home theater and I could only take the “lap desk” so long.

Rather than be at the mercy of OEMs, I have saved up and decided to build a custom system. My goal was to end up with a stable, yet powerful rig that has plenty of room for growth; and to not spend over $2000 when everything is said and done. What I ended up with cost me just under $1200:

Case: HSPC Top Deck Tech Station

–I actually bought this a couple months ago in preparation for this project. I wanted to wait until there is a selection of USB3.0 cases rather than locking myself into a 2.0 case and have to perform a reach around to take advantage of USB3.0.

CPU: Intel Core i7 920 (2.66GHz)

–Yes it is the slowest i7, but I didn’t want to run the risk of getting a mobo without the bios to recognize the nominally more expensive 930. And the 920 overclocks pretty well.

MOBO: Gigabyte GA-X58A-UD3R

–Future proof and highly expandable. USB 3.0, SATA 6G, SLi & Crossfire (I am an ATI man myself).

Memory: 6GB of RAM @ 1600MHz (OCZ OCZ3P1600LV6GKR)

–Gotta have it.

Storage: 750GB HDD – WD Caviar Black

–I will be starting this rig out using a run of the mill HDD, but as soon as SSD is a bit more standard (read cheaper) I will be putting this one on storage duty and using the SSD for boot and certain apps. I did get the ‘black’ so I will get as good of performance as I can for the price ($80). No Seagate fanboy mail please.

Optical: $23 DVD Burner

–While physical media is on its way out, we are not there yet. Will add a Blu-Ray Burner when the need arises or they get cheaper.

PSU: 850W Antec PSU – TPQ-850 850W RT

–More than enough power to get started and even get Crossfire running, and I got a deal on this one so am willing to upgrade in the future if need be.

Video: “GRAPHICS CARD” would be listed here if I had bought one…

–There is a war brewing right now with the imminent release of nVidia’s GTX 480 & 470 and I hope to either see ATI drop prices or announce that they have an ace in the hole to kick nVidia’s butt as the 480 is more than edging them out (even if it is a power pig). I will be using the nVidia GeForece 8500GT that was replaced by an Radeon 4870 in my old HP that is on home theater duty. I figure $800 (or less) for a couple 5870’s will put me right at my $2000 budget.

OS: Windows 7

–Picked up an OEM System builders copy. I have never had to contact Microsoft for support; which is the only thing you lose by going this route.

Anyway, there should be a plethora of posts about any and all of these items in the coming weeks. While I have replaced, upgraded, installed more of every part of a computer than I would like to remember…I have yet to actually build an entire one from the ground up. You might liken it to a mechanic who knows cars inside and out and replaced ever conceivable part on a million different vehicles, but has never worked in an assembly plant. Just because he hasn’t built one, doesn’t mean he doesn’t know what he’s doing.

2010/04/09
TriTrix DIY Speakers & Flexi-Stand

Here is a repost of my DIY speakers for the faithful out there. (more…)

2009/12/29