Upgrading my 25gbit internet router to VyOS
a year ago
- #VyOS
- #Router-Upgrade
- #Networking
- Upgraded a 25gbit internet router to VyOS using new hardware (MS-01 and Mellanox SFP28 card) to avoid downtime.
- Installed Proxmox on the MS-01 to run VyOS as a VM for easier upgrades and backups.
- Configured PCI passthrough for SFP+ and SFP28 interfaces, and set up VLANs (100, 150, 200, 900) for network segmentation.
- Used bridges in VyOS to connect VLANs and physical interfaces, applying firewall and routing rules.
- Encountered and resolved VLAN routing issues by adjusting load-balancing rules.
- Set up automated backups for VyOS configuration using cronjobs.
- Implemented DDNS for dynamic IP updates.
- Configured a DMZ for hosted services (Matrix, Mastodon) with NAT and firewall rules.
- Used Split DNS for internal service access to avoid Hairpin NAT issues.
- Configured WAN failover with priority for Init7, Swisscom, and Yallo connections.
- Set up WireGuard for VPN access with specific firewall rules.
- Noted improved performance over OPNSense and plans for future IPv6 and special routing configurations.