Home Router For High-Speed Connection?

soulprivate writes "My cable company has recently begun to offer Internet access plans with speeds over 30 Mbps (60, 80 and 100 Mbps). However my D-link router is unable to go beyond 30 Mbps if I use NAT; it reaches 60-70 Mbps only if NAT is disabled. Is there any recommendation for a brand/model of residential router that is able to get more than 70 Mbps with NAT enabled? I have been looking for benchmarks or comparisons, to no avail. Does anyone know one? What are your experiences at home?"

Chart

[ximenes]

My ISP links to http://www.smallnetbuilder.com/component/option,com_chart/Itemid,189/ which has throughput numbers for common home routers.

The long and short of it is that a lot of these devices have pretty poor performance, and can get away with it because they're used on 1.5mbps lines. However, there are some out there that are decent.

Of course, there's the build-it-yourself approach with m0n0wall or pfSense or something else. With a spare PC laying around you'll likely get reasonable performance, although electricity usage is quite a bit higher than an appliance.

WRT-160NL

[extintor]

I have a 100/10 mbit (fiber, no modems etc) line at home and use a Linksys WRT-160NL. When I do heavy file transfer (downloading, mainly from big FTPs like universities and such) the speed is around 90 mbits (~9.5 Mb/sec).
I highly recommend it. And if you're extra geeky, I know that there's a OpenWRT port being worked on, but it's not finished yet.

Linux PC

[seanadams.com]

The replies you've got so far seem to think that just because a router has gigabit ports that it can do NAT at gigabit speeds, which of course you've already figured out is nonsense.

For a standalone firewall box you might need to look at something like a Cisco ASA. Not cheap but they will at least specify the actual NAT throughput for whatever model you pick.

The other way to go is to roll your own on a decent PC with Linux which will get you a few hundred Mbps easily. For example a Mac Mini or FitPC will be fast enough.

Re:Linux PC

[JWSmythe]

    I second your opinion on using a PC. He may still run into a PPS rate limitation with the router though. It depends on how they bring the connection in. A friend of mine has a business FIOS line (20Mb/20Mb) and a /25 of static IP's, and I specified at install time that they had to bring it in by CAT5. They'll either install CAT5 or coax. I yanked their router off as soon as they finished the install, and put a Catalyst 2924 on. The speed was ok (but not great) with their router. It was exactly as advertised through the 2924.

    For a NAT environment, a decent PC with Linux and iptables would be fine. It would obviously need decent interfaces (nope, that old 10baseT card won't do it), but it doesn't need lots of memory or even CPU power. A handy spare 1Ghz machine with 256Mb RAM is overkill, but easily available in most of our homes. :) The best part is, it's free. No need to waste money on new equipment, if you already have it sitting in your garage gathering dust.

    I don't recommend exceeding 80% capacity on the interfaces. If they do offer 100Mb/s, it's time to upgrade to GigE interfaces. Again, that's pretty easy to do these days. You'll start running into problems at the PCI bus after a while, but that's over 100Mb/s.

    Even in testing the 20Mb/s connection a couple years ago, I just started downloading ISO's. From any one source, I ran into their limitations, so I pulled one copy from a bunch of mirrors, and was able to saturate the connection to flatline at 28Mb/s (wheee). Their advertising was wrong, but I won't complain when they're wrong in my favor.

I agree with TheRealMindChild

[majortom1981]

Like another user stated use pfsense. We had this problem at work. We are a library and just got 100/100 fiber service. Couldnt afford to buy some $10,000 router and our $1000 router couldnt handle the speeds. Downloaded pfsense and put it on an old server and get full 100/100 speed. Its open source , has snort and everything. ITs free to use and they have a pay for support option as well.

Chart comparing throughput of various home routers

http://www.smallnetbuilder.com/component/option,com_chart/Itemid,189/
I found this a few months ago... seems what you are asking for.

I Beg To Differ

[didde]

I'm on an unmetered 100 Mbps line, bursting up to 300 Mbps from time to time. Just like you, I had a tough time finding consumer-grade hardware able to keep up with speeds > 30-50 Mbps. After going through most of what's on offer here in the EU, short of DIY routers, I ended up with D-Link's "Wireless N Gigabit router DIR-655". Believe it or not, but I have actually seen throughput close to 150 Mbps (using NAT) on the WAN while on this network.

Of course, YMMW, but my search ended with this piece of hardware.Of course, it's priced slightly higher than the average router, but IMHO it's worth it.

On a side note: I personally, had no luck what so ever using Linksys offerings, including the WRT54*. Most "premium" hardware platforms in the consumer sphere only offer throughput close to 30-40 or even 50 Mbps while on NAT.

Good luck. And enjoy the speeds you have been blessed with, son.

6-year-old SMC2804

[AliasMarlowe]

We have a SMC2804WBRP-G router for our home net, with a 100/10 WAN connection through a fiber switch. It handles our traffic smoothly using NAT and firewall with both wired and 11g wireless LAN connections. We've had it for almost 6 years now, and upgraded our WAN connection during that time. The SMC2804 was not particularly expensive, but cost about 50% more than the Netgear and Buffalo trash of the time. Typically, there are 3-4 PCs, a multifunction printer, and a headless server on our wired LAN, and there may be another PC or two on wireless from time to time. The firewall rules prevent the headless server and printer from calling home, among other things.

Re:Why do you need it?

[inKubus]

Actually considering there are content distribution networks like Akamai and of course Google that have servers within one hop of most metropolitan ISP's edge routers, it's pretty likely you'll be able to achieve those speeds for a lot of your content.

I recommend they take a look at some of the small business products from Cisco and Sonicwall. They are a step above the home stuff in features and price. Most of them will list their firewall throughput, how much they can NAT is a function of the processor and more importantly the software.. Beware that there is some Cisco branded stuff that is actually Linksys in disguise (with minor software changes), however Cisco won't put it's name on total crap (yet) so they are pretty good.

Re:Cisco

[BulletMagnet]

a Cisco ASA 5505 would certainly do the job. I upgraded to a 5505 / 10 user unit at home after having a PIX 501 for years and it rocks. You're looking at just under 400.00 new for a 10 user unit and used is all over the place. Throw on 100.00 for SmartNet if you've never used Cisco's IOS before....

Re:Mikrotik

[zn0k]

Or buy one of the lower end RouterBoards. A 450G would be a fairly good fit for this situation and comes in at under $150 with a case and a power supply.

Re:Why do you need it?

[inKubus]

Also, as far as low end professional stuff, the ASA 5505 is pretty good (overkill for home use probably). It'll do 150Mbps NAT and it does that with hardware VPN also. The lowest version (10 user license) is around $350. It has a built in layer 3 switch also.

Re:The best

[paul248]

This is bad advice. The WRT54GL is *not* capable of routing at much faster than 30Mbps, because the LAN and WAN ports are on the same switch, connected to one physical Ethernet interface.

You at least need a device with 2 physical Ethernet interfaces, like the ar71xx platform.

Re:The best

[joaommp]

I use a dedicated PC for my 100Mbps connection. An old PIII 800 computer with Gentoo. Works like a charm.

Re:The best

[Wdomburg]

These little WRT's and such have the equivalent of 8-bit 200 Mhz CPU's.

They have what is a 32-bit 200 MHz processor. Specifically this one in the referenced Linksys model.