That is exactly what I'm doing here. I have existing working configs in one big zip file what I upload and configure for their situation. They only thing what they have to do is installation of the basic Linux distro and make a ssh port available. Of course, that is much more then IPIP tunnels. (IPIP is not difficult at all, most issues are routers/fw's not passing it, less an issue nowadays with dd-wrt and otherwise, I provide a VPN from my gateway or another solution.) The rest is something else, but this provide all kinds of (tcp/ip) services and also old style packet, if they want it. A lot are maybe new or have just less experience with this stuff. Some, just need an example and after some E-mails and assistance, they figure it out themselves.
Bob
On 2021-08-03 14:37, David McGough via 44Net wrote:
Hi Rob,
Not trying to belabor the Linux discussion; agreed, it has been tossed around many times over the last decade+. I do have one more comment, thought.
I fully agree that a complete roll-it-for-yourself Linux routing solution is totally impractical for 99.9% of users and would be a nightmare for maintainers....I'm the developer and maintainer of HamVoIP (with about 10,000 users), so I know this well!!
My suggestion would be to roll an (almost) plug-and-play distro (or packages), to make the Linux setup process trivial.
This is doable, if fact, probably even easy to do.
73, David KB4FXC
On Tue, 3 Aug 2021, Rob PE1CHL via 44Net wrote:
As I wrote in another reply, for each problem and each admin there
is a different solution. The RB750Gr3 runs IPsec at >450Mbit/s which is enough for most users. Do not use OpenVPN on these devices, use L2TP/IPsec or GRE/IPsec.
I am currently in mail exchange with someone who wants to configure AMPRnet access on a VPS using standard Linux software. Easy peasy when you ask me, but it is a nightmare to get someone going who has no Linux admin skills at all and is only cutting/pasting error messages all the time, and not really reading the directions or able to debug things without constant hand-helding. With a MikroTik he would be going, with the Linux system he is only whining and complaining. (but others get it working after only a single message with some hints)
Read back in the 44Net mail archives and you can see the same discussion over and over, so I think this is enough for now.
Rob
On 8/3/21 7:29 PM, David McGough via 44Net wrote:
I'll add a comment here, since I've used the RB750G gear and RPi boards extensively as routers. I *highly* recommend the RPi4B! The difference in SoC processing power is massive, when crunching crypto for VPNs, enough RAM for BGP and other system services, etc. There are many OS/distro sources available and the very latest software version are only a few clicks away.
Also, MikroTik support for OpenVPN is seriously lacking--beyond the concern for simply having crummy data thru-put due to crypto processing overhead. I've got several RB750G routers, they're all sitting on the shelf, these days.
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net