this post was submitted on 25 Mar 2024
7 points (88.9% liked)

Selfhosted

39435 readers
15 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Anyone tried it? I'm planning but saw the benchmark is pretty bad. Unsure if I interpret correctly.

top 6 comments
sorted by: hot top controversial new old
[–] [email protected] 4 points 7 months ago

I think the default firewall rules allow all VLANs to talk to each other, so you have to add a rule to prevent that.

This traffic will go through the CPU (I think), so benchmarks are heavily dependent on hardware.

If traffic on two different VLANs needs to talk with high throughput, you might ask yourself why they're on different VLANs.

I have 2 cameras on their own VLAN and they're only allowed to talk to my NVR. The amount of traffic is pretty low and the CPU use is negligible, so I haven't bothered to put the NVR on that VLAN.

[–] [email protected] 4 points 7 months ago

My use of Mikrotik is somewhat limited, but I’m testing I’ve found routing between VLANs to be pretty performant. The key is to offload that routing to the hardware, which not all configurations allow. Check out the Network Berg’s YouTube channel and you should get a good idea.

[–] randombullet 2 points 7 months ago

From my memory anything that can offload VLANs to hardware is preferred. Pretty much means anything with a switching chip.

I think my RB 5009 can offload VLANs but are exempt from packet inspection.

[–] [email protected] 1 points 7 months ago* (last edited 7 months ago)

it depends which device you get. Some routers are much better then others at routing. i think you want to look at the CCR series.

[–] [email protected] 1 points 7 months ago

I have known several ISP in Australia who use them as core routers so depends how you spec them.

If you want gigabit throughput don't get a hEX look at the CCR range. If you need less than 100Mb go for a hEX.

[–] [email protected] 1 points 7 months ago

It really depends on the specific hardware. I have Mikrotik routerOS CHR that routes between VLANs at 6Gbit/s without breaking a sweat on a $300 intel box.

At the same time, some managed switches are dirt-cheap nowadays and they generally can push the traffic around as fast as it comes in.