Thanks for driving me to right direction, I will look into VyOS (would be great if I can get some suggestions like VyOS to have more choice )

EdgeRouter seems a cheap and very worthy product, may suggest my friend as well, who used to setup small offices (with around 15 workstations). By the way for how many workstations it can handle the traffic, roughly with normal office operations? 30

Thanks a lot for nice insights.

I tried PFSense, due to something was not working, I had to scratch my head, so went with Zentyal to give a try.

@scottalanmiller said in Zentyal community edition - is ok for production? and using VLAN with Zentyal.:

One of the key purposes of a firewall is to protect the server, more than anything else. Essentially here there is no firewall

Isn't Zentyal a firewall?

@scottalanmiller It is is more about building things from scratch, test, learn and be ready for skills advancement and future firewall failures (just saying).

@DustinB3403 I understand, it is more about with Support and without Support.

@DustinB3403 This is not for file server, domain or printers but for Firewall mainly.

@IRJ Around 75 workstations

Let me highlight my main targets with this setup:

1. I'm setting up this Zentyal in my LAB at office, with no connection with production by using an extra 4G Internet Link, to build my whole network and test and learn things.

So to have Firewall in Lab and learn, I setup Zentyal, main purpose is for Firewall and DHCP with VLAN.

Also want to try to setup VPN on this Zentyal and try to connect from office Network to my LAB

2. We have Sophos Firewall, it is going good with Firewall and DHCP server, want to mention VLAN in use.

So along with setting up things from scratch by myself, testing and learning, I want to be ready for any failure of our production Firewall. So at least I can keep the minimum firewall things and dhcp services up for have internet, until production Firewall is back with this by using a pc and two or three NIC cards?

Dear All,

I'm talking about Zentyal community edition, it is showing as Development edition, is it ok to use this in production as Firewall, gateway, dhcp/dns etc. services on it?

Using VLAN with Zentyal, I was able to set Zentyal as gateway, dhcp etc. server with two NIC Cards, one for WAN and second card for LAN, network on LAN side is going fine as native, but I want to use VLAN on it. I'm using Cisco SG300 series switch on LAN side.

Later I realized, I need to set LAN card as a Trunk to able to create Interfaces for VLAN, I was able to create VLAN interfaces and set dhcp scope for VLANs but Native LAN stopped working, I wonder, if I need to use 3 NIC cards for this kind of scenario? as follows ?
NIC Card 1 for WAN
NIC Card 2 for LAN - native LAN
NIC Card 3 to set as Trunk and create VLAN interfaces and utilize VLAN feature?

Thanks!

Hi,

I started here few years ago, at that time I was not serious about moving from workgroup computers to domain. Some computers were home edition, due to consumer model laptops were purchased, so got with home edition, which is one of the reason for not.

We have windows server 2012, AD installed and using for File Server, now slowly we have some 75 computers, and very less home editions.

It is going fine, but am I doing wrong? missing something? or not using Domain is sin

I started thinking to move to domain asap. Thanks!

Hi there,

I was using ITarian (previously known as Comodo One).

I been there as beta user for longer, but still good with free, due to many features with agent based software.Now not free anymore.

My main concern is Global Software inventory and hardware inventory, would be great if can get more features for free , so I was looking at Spiceworks Connectivity Dashboard which seems fine with agents installed.

Wants to any other options available.

By the way, what happened to Sodium, it was some relevant software I believe?

Thanks!

No plans of Pi-Hole.

Considering to go with Quad9, since:

1. It is free for business (unlike OpenDNS free version)
2. No limit (unlike comodo free version)
3. Have at least default blocking (unlike some other DNS service without blocking)

Only downside is, no visibility of what's on and cannot add our rules/policies, fine for free. Adding one layer for free, if budget allows in future, can go with OpenDNS with good control.

Only thing I wonder is, everywhere I just see configuring Windows/Linux to use Quad9 as DNS, but, how about using office network wide? Do I just need to tell my DNS Server (Windows server) to forward DNS Queries to Quad9 DNS IP (9.9.9.9) ? instead of forwarding the DNS Queries to current ISP?
@scottalanmiller @JaredBusch @Dashrender @black3dynamite @syko24 @marcinozga @dafyre