On 03/11/2023 22:56, David Wade wrote:
> I recently upgraded my UK setup to Zen FTTP 500/75 and telephony from
> Voipfone. I installed the ZEN Fritz!Box 7530AX router and set up the
> 2862 as a so called "DMZ" device. I configured VOIP on the 7530, so I
> now have:-
>
> Draytek 2862 <-- DMZ/NAT --> Fitz!Box 7530AX <-- Internet --> EG8145V5
> <-- Draytek 2820
>
> Now the 2820 seem to be a bit of a bottleneck, so I was wondering if I
> would be better replacing it with a newer Draytek, or as they seem
> cheaper and more widely available a Fritz!Box 7530.
>
> I can see the Fritz!Box does not have a local DNS. Are there any other
> features I might miss?
Your set-up sounds very close to my own.
Site to Site Draytek VPN. Upgraded remote site to Zen FTTP and old
draytek 2920 is sadly lacking in throughput to maximise FTTP connection
but it's still fast enough to fulfill the purpose, and the remote site
is the Netfix account holders location which following this years
Netflix clamp down on account sharing meant the same account couldn't be
accessed from both locations but the VPN is fast enough to route all
local t.v. traffic through to the remote end and out on the same Zen IP
address so back to 2 sites being seen by Netflix as a single site.
The Zen supplied Fritz Box 7530 is used on the remote site but replacing
a network switch and adding a 2nd telephone "socket" so not providing
WAN interface.
I have the Fritz Box telephone side registered with both voipfone and
voipcheap accounts for the simple reason that the property alarm
auto-dialer needed to be presented with a POTS interface so I simply
wired it into the FritzBox telephone port. Alarm is triggered Fritzbox
dials out over LAN through Draytek to WAN (Always connect by internet
box ticked). Works perfectly unless power is out of course.
2 things to note. I can't log into the Fritzbox from remote via VPN, I
have to VNC into a computer on the same network and log into the box
from there whereas Draytek to Draytek is Wayyyy more versatile and with
static IP addresses on both ends even if the VPN is down I can still log
into Draytek admin via the "allow admin from WAN" (via specific IP
address for security)
The main reason I've always stuck to a Draytek at each end is simplicity
of duplicating a highly configurable set-up. i.e. Same settings both
ends with the exception of localand remote IP address chages.
I see the FritzBox has done an update and now supports WireGuard but
these features always seem to be to be focused on simplicity of logging
in from a remote client for internet break-out rather than a full-scale
site<->site communications of each end being both host and client.
My scenario is both sites are only 10 miles and 20 minutes apart so
sorting things out isn't a big issue.
Cheers
Pete