Hello everyone,
I am currently considering buying an ERLite-3 (+ a small manageable switch) in order to implement network segmentation at home. However, I want to validate that every feature I need will be supported on the ERLite-3 before buying.
So here is what I want to achieve (diagram): http://postimg.org/image/xsst2tp8j/
The main goal is to send all the inter-subnet traffic through the ERLite-3 firewall to achieve complete control on permitted traffic between subnets. So the ERLite-3 would be the default gateway for every subnet and its firewall functionnality will permit or deny packets between subnets. With this configuration, I'm still wondering:
1. If creating a dot1q VLAN trunk between ERLite-3 and the switch is possible?
2. What throughput between subnets will the ERLite-3 be able to achieve? Using gigabit interfaces, I don't want to goes down to 100 Mbps bandwidth between my LAN and my NAS server because the ERLite-3 is struggling to process firewall rules at 1000 Mbps.
3. Is point-to-point openvpn supported?
I am currently unable to decide between buying a ERLite-3 or building a custom pfSense box and I really don't know which one would perform better for same price.
Thank you in advance for your help and advices :-)