Please don’t host a router on a Hypervisor VM. That does not benefit security. First of all a router is an integral part of the (home) network, therefore it should not be dependent on anything, like a hypervisor. You want to be able to replace or update your server/ hypervisor independently from each other, for example in 5 hrs your router might be still rocking all data, but you would want to upgrade your home server / hypervisor. Furthermore all those OpenWRT, PFsense, OpenSense kernel/ OS hardening is more effective on the hardware itself, especially all RAM/ Memory based security measures. Also if you truly want to be more secure, you use dedicated hardware for multiple reasons, performance is dedicated to only routing/ firewall processing (no other service/ VM can block or slow down packet processing), reducing the attack surface (less software, less attack surface), easier to update.
Comment on Best secure router for home use?
daranto@2dl.eu 1 year ago
If you want the full control use opnsense.org on a mini pc or in a VM on your home server.
thejoker8814@lemmy.world 1 year ago
betternotbigger@lemmy.world 1 year ago
Can this work with the “off the shelf” mesh routers.
Lrobie@lemmy.world 1 year ago
No, off the shelf routers are usually ARM and opnsense is x86 only.
glue_snorter@lemmy.sdfeu.org 1 year ago
…or MIPS…
vector_zero@lemmy.world 1 year ago
This seems like it’s geared toward higher power hardware that’s not generally available on a consumer-grade router.
stown@sedd.it 1 year ago
You could buy a $300 consumer router and it would be worse than just using an old PC with OPNsense.
_TK@lemmy.antemeridiem.xyz 1 year ago
Except that the old PC is probably less efficient at a lower clock than an AR based consumer router. You’ll get more performance and features, but it will be more expensive to run.