Last week we explored the features of combination routers, switches, and wireless access points. Over the next 3 weeks, we will look at building a more powerful modular network, with a separate router, wireless access point, and a switch. We will begin by examining the router, which is the central device responsible for regulating the flow of data in and out of your network, for our home or office setup.
This week, we will be adhering to several NSA Best Practices to ensure the safety of our network. Firstly, we will avoid renting a router from our ISP and instead purchase our own. It’s important to keep it updated regularly (NSA BP#2 Secure routing devices and keep them up-to-date). We’ll also consider routers that support OpenVPN (NSA BP #13 & #14 Ensure confidentiality during telework & Exercise caution when accessing public hotspots). Additionally, owning our router allows us to make some administrative security changes to increase its safety. These include enabling firewalls (NSA BP #5 Employ firewall capabilities), disabling uPNP, limiting administration to the internal network only, and implementing OpenVPN.
To ensure optimal network performance, it’s important to choose a router that fits the speed of your internet connection and the number of devices on your network. When selecting a new router, you should verify that it can support the internet speeds provided by your new FTTH connection. Of the four routers we’re comparing, the two entry-level options are rated for speeds up to 1Gb, making them suitable for 500Mb internet connections. However, for a 1Gb connection, these routers may not provide full performance. The mid-range ER-6p router can handle 1Gb internet connections and up to 2Gb dual WAN connections. The Dream Machine, on the other hand, supports internet speeds up to 3.5Gb and comes with built-in management software for controlling access points, switches, and security cameras.
| Ubiquiti ER-X | TP-Link ER605 V2 | Ubiquity ER-6P | Ubiquity Dream Machine Special Edition | |
| Prices As of 6/16/23 | $65 | $60 | $250 | $500 |
| Internet Connections | Up to 1Gb | Up to 1Gb | Up to 2Gb Dual WAN Failover | Up to 3.5Gb |
| Ports | (5) GbE RJ45 ports | (5) GbE RJ45 ports | 1Gbps SFP Port | (8) LAN: GbE RJ45 ports (1) WAN: 2.5 GbE RJ45 port (1) LAN: 10G SFP+ (1) WAN: 10G SFP+ |
| PoE | 24V passive PoE | No | 24V passive PoE | Including (2) PoE+, and (6) PoE |
| Switch Chip | Yes | Yes | No | Yes |
| High Performance | Includes UniFi OS for Device Management |
When setting up wired devices, it’s important to consider the physical connections. If you have multiple wired devices such as a printer, access point, or desktop computer, you need to ensure that your router can connect them. Check the router’s specifications to make sure it has a ‘switch chip’, which is essential for optimal performance. Keep in mind that some routers have limited LAN ports, and if you have too many wired devices, you may need to purchase a network switch. Next week, we’ll cover more on that. The ER-X and TP-Link ER605 both have up to 4 LAN ports available. However, the EdgeRouter ER-6P lacks a switch chip, so it’s best to pair it with a dedicated network switch. For those in need of high-performance ports, PoE ports for powering access points, and uplinks to switches, the DreamMachine is an excellent option.
All 4 of the above routers support OpenVPN. There are some additional features that routers can offer. If you have 2 internet connections, you would want to look for a router that supports redundant internet connections and Dual-WAN. If you have children at home, a router with parental controls may be ideal.
The Ubiquiti Dream Machine Router is rack mountable, which means that they come with hardware to mount them directly into a standard 19″ computer rack. The ER-6P can sit on a shelf, or it offers a rack mount kit. Both the ER-X and TP-Link ER605 routers are designed to sit on a shelf.
Next week, we will take a look at adding a network switch to our network, to allow for more wired devices.
Links / References:
https://www.servethehome.com/ubiquiti-edgerouter-6p-review-moving-up-the-stack/
https://store.ui.com/us/en/pro/category/all-unifi-gateway-consoles/products/udm-se
https://m.media-amazon.com/images/I/B1l6oO0LOJS.pdf