Linksys WRT54G (and clones)
Anyone here using that device? With Sveasoft's firmware? Building the firmware yourself, or using VPNs/IPsec? Sveasoft's forums contain lots of info, but are difficult to access. If you're looking for same information we could mutually help each other by starting a Wiki, or using a mailing list (WRT54G@yahoogroups.com is largely silent on crypto matters). -- Eugen* Leitl <a href="http://leitl.org">leitl</a> ______________________________________________________________ ICBM: 48.07078, 11.61144 http://www.leitl.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE http://moleculardevices.org http://nanomachines.net [demime 1.01d removed an attachment of type application/pgp-signature]
On Jun 20 2004, Eugen Leitl wrote: | Anyone here using that device? With Sveasoft's firmware? Building the | firmware yourself, or using VPNs/IPsec? I have one here at work. Works wonders. I didn't build it myself though. I actually paid the subscription too. The $20 seemed worthile to me. I don't see anywhere in this thing that allows me to make it a vpn endpoint, but I do have ipsec passthrough enabled and it works fine. | Sveasoft's forums contain lots of info, but are difficult to access. | If you're looking for same information we could mutually help each other by | starting a Wiki, or using a mailing list (WRT54G@yahoogroups.com is largely | silent on crypto matters). I don't know what you have in mind, but I'm all for it. If this thing becomes a vpn endpoint that helps me out some, though the 200mhz proc might not handle as much as I'd like...
On Sun, Jun 20, 2004 at 06:24:35AM -0400, Gabriel Rocha wrote:
Yes, I thought that as well, and bought the subscription for a year. I'm very pleased with what I've seen so far, and intend to prolong it.
don't see anywhere in this thing that allows me to make it a vpn endpoint, but I do have ipsec passthrough enabled and it works fine.
Alchemy (the next bleeding edge after Satori) is supposed to have IPsec. It would be very good indeed to have opportunistic IPsec in there. WRT54GS is about to be released in the EU as well, and with twice the flash and the RAM it should have space for some interesting functionality.
The WRT54G clones are largely useful as very cheap Linux boxes with radio, for individual homes and small scall meshes. They should be able to support a few VPNs over typical ADSL/cable modem link bitrate, but for more serious work I'd go with VIA's C5 family (1 GHz fanless, and hardware crypto support as well as on-die entropy source). -- Eugen* Leitl <a href="http://leitl.org">leitl</a> ______________________________________________________________ ICBM: 48.07078, 11.61144 http://www.leitl.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE http://moleculardevices.org http://nanomachines.net [demime 1.01d removed an attachment of type application/pgp-signature]
At 03:24 AM 6/20/2004, Gabriel Rocha wrote:
200 MHz ought to be plenty for a typical home connection. The FreeSWAN folks found that a 150 MHz Pentium Doorstop was enough to keep a T1 line busy with 3DES - presumably AES is much faster. So either one should be good enough for most US DSL or cable modem connections, and they'll at least handle an 802.11b 2 MHz channel (yeah, the stuff says 10 Mbps, but you either need 802.11g or .11a or really good tuning to actually get that), and they'll probably go faster. ---- Bill Stewart bill.stewart@pobox.com
participants (4)
-
Bill Stewart -
Eugen Leitl -
Gabriel Rocha -
Jack Lloyd