Hands On: Syswan Duolinks SW24 VPN High Performance Dual WAN Router

By Jim Clark on October 3, 2009 in Hardware, Networking, Networking Reviews, News, Reviews, Routers, Windows Home Server

CONFIGURATION

Before I proceeded further, I felt it was in my (and your) best interest to read through the manual included on the CD. Actually, I had opened the Syswan router configuration screens and then felt it best to read the manual. Lots of configuration screens and lots of associated options.

What follows are pictures of each of the configuration screens for the SW24 VPN router. Most are shown here simply for completeness and to show you what is available inside this router. If you want to know more about a specific screen, check out the manual at this link. For this review, I am interested primarily in the security screens

Admin Setup Screen

Basic Configuration Screens

Advanced Port Screens

Advanced Configuration Screens

Security Management Screens

URL Filter: You can block specific web sites by configuring their IP address, URL or Key words.

This feature allows you to block or allow access to specific Web sites. You can block or allow Internet access by URL, IP address, or Keyword. You can also have different blocking or allow access settings for different groups of PCs.
When in operation, every URL is searched to see if it matches or contains any of the URL or keywords specified. A DNS lookup determines the IP address of the requested site and the site’s IP address is checked against specified IP address entries. Depending on the results and the URL filter settings, access is either granted or denied.

If you know the IP address range for a particular country and do not want anyone snooping from that country, here is your opportunity to block access from countries X, Y and Z. I am sure the expert hacker can hide behind a “fake” IP address, but this should keep out a majority of those “drive-by”
undesirables.

Access Filter: You can block all Internet access, select blocks of well-known ports or block user define ports for previously defined groups of LAN users.

You can use the Access Filter settings to gain control over the Internet access and applications available to LAN users.
Five user groups are available and each group can have different access rights.
By default all PCs (users) are in the Default group unless specifically assigned to another group on the Host IP screen.

To tell you the honest truth, some of information and terminology here is somewhat beyond my ability to fully understand and configure properly. Needless to say, one should not mess with something you do not understand. In addition, it is time for to do some additional reading to understand how to properly configure the items in this screen.

Actually, many of the options are more suitable for a business environment, but the complexity of many SOHO environments may also require decisions about who has access where.

Sometimes, one needs to separate the Home from the Office in a SOHO environment. The SW24 can give you the tools to do this. The question that arises is how to configure those tools. The answer may be as simple as calling Syswan. Per Syswan: “We offer free tech support, 30 day money back guarantee, and also a 2 year hardware warranty.” If you were to purchase a Syswan router, I would highly recommend you take advantage of that tech support.

Session Limit: You can limit user access to the Internet in the event of the device detecting any new
sessions that exceed the maximum sessions setting during the given sampling time.

This feature allows to drop any new session requests from the WAN or the LAN when the total new sessions number exceedes the maximum sessions during the sampling time.

hmm. As I look through each security screens, I begin to feel increasingly stupid (or ignorant). It is somewhat similar to reading through the BIOS section of a motherboard manual. They tell you what each option does, but do not explain why you want to use one option or another. Once again, one should not mess with something you do not understand. As I indicated just above, I would highly recommend you take advantage of the Syswan tech support.

Pages: 1 2 3 4 5 6 7 8

Enjoyed this post? Share it.

If you enjoyed reading this post, then why not share it with your friends and followers?

About Jim Clark

Hello. I’m from the heartland of the U.S. Lots of corn and beans, although Iowa is a lot more than just farmland. It also has a few computer enthusiasts (no, not me!). I’ve been around PCs since I got my 1st PC XT aloooong time ago. WGS is one of the first sites I found centered around WHS. And the best. Every once in awhile, I do get away from the KB and enjoy time with and my wife and our 4 kids. And I do have a day job.

View all posts by Jim Clark →

Sign Up for WGS Daily News

If you don't want to miss out on the latest news from We Got Served, why not subscribe to our daily digest? You'll get the day's headlines and a short summary of each news item delivered straight to your inbox each morning.

review, router, SW24 VPN, Syswan, we-got-served, wgs, whs, Windows Home Server

← Xstream Cooling Available Courtesy of the Xstreamer XSC

Weekend Deal: Get $30 Off the New HP MediaSmart Server Range →

Diehard
Wow, what an article. It must have taken 2 weeks to write this. Lots of detail. I'll have to bookmark it and read it a bit at a time so my head doesn't explode. Thanks

http://intensedebate.com/people/Jim_Clark Jim_Clark
Wish I could have tried out more features, but the time and effort to do so would have delayed this "Hands On" probably another week. At least. And yes, it wasn't an easy "Hands On" to do.
It's funny tho. I talked to our IT manager at where I work, and while we both agree that business-grade routers are better than consumer-grade routers, we also agreed that trying to understand the reasons why would require a Masters in IT Management. To write about and read.
So *hopefully*, I have provided enough info for the reader to make an informed decision.

http://intensedebate.com/people/Jim_Clark Jim_Clark
BTW, Let Google do the searching! I just noticed their ads will let me choose from "10 different models to choose low price with full support" for multiWAN routers.
http://intensedebate.com/people/urmaster urmaster
Oh no, just glancing over and I noticed 10/100 for the LAN ports, why oh why. I'm sure most of us here will exceed that bandwidth with high definition videos and file transfers. My heart was lifting considering I need a new router solution but I'm afraid that 10/100 on LAN doesn't cut it anymore.
That article is huge, I'll make the time to read after some assignments. Nice write up Jim

http://intensedebate.com/people/Jim_Clark Jim_Clark
A 1Gbit router is not needed. Just add a $20 1Gbit switch and you the best of both worlds, security and speed!

http://www.intensedebate.com/people/urmaster urmaster
That's the problem for me, I already have a 1Gbit 8 port switch where the server and PC are located. But the router is in the centre of the house (for best wireless signal). I can't add another switch there that would complicate things and look very untidy.
0_0 i just noticed the price you put out, it will cost at least £40 ($65) for a decent switch over here.

sic0048
So how does something like this stack up against a router running DD-WRT? Is there a compelling reason to look at something like this vs getting an inexpensive router that works with DD-WRT and flashing it? If you really need the extra features that a router like this provides, then surely you are technical enough to flash a router’s firmware.
I honestly don’t know the answer, so I am really trying to ask a question here, not pump up DD-WRT.
Thanks!

http://intensedebate.com/people/urmaster urmaster
Well you will find for one that DD-WRT is very generic and not all the features work properly with all the routers. Some features like QOS are next to useless even when they do work. I'm sure at the least that this router does what is advertised.

Crow
And why are sure QoS will work on this router? Because mfctr website says so?

http://www.intensedebate.com/people/urmaster urmaster
Yes or you get your money back. Not the case with DD-WRT now is it since you void the warrenty by using it.

Crow
JFYI, DD-WRT does not change your hardware. You can reflash your original firmware any time. So stop spreading FUD.

http://intensedebate.com/people/Jim_Clark Jim_Clark
FWIW, the last time I checked, the list price on Newegg was $250. The last discounted price was approximately $180(?). It seems that Newegg has a hard time keeping them in stock, as it is rather hit and miss that you find the SW24's on Newegg.
http://www.intensedebate.com/people/Jim_Clark Jim_Clark
Technically, you also lose the warranty on your router. It all depends on your needs. Dual WAN support may not apply to many, but that is one feature. If you need to use VPN, does DD-WRT support the level of security that this router does?
Basically, based upon the popularity of DD-WRT, the user base recognizes the need for better features that a "stock" consumer router has. The choice is yours as to which path you take for improved security features. A flashed consumer-grade router may be better than stock, but it still does not make it a business-class router.
Of course, the Syswan solution is more expensive…

autodrivel
In this context, one of the principle differentiators between a consumer-grade and business-grade firewall/router is the build quality and reliability.
However, this does get skewed when considering the WHS target market – i.e. Home User. Businesses (often) cannot afford to be without internet connectivity, so they need a reliable product. For home users if their router dies and they are without internet connectivity for a few days it is not the end of the world -only as far as the kids are concerned
Hence, a Home (WHS-target) user most often cannot/willnot justify paying two or three times the cost of consumer router, if the main tangible benefit is not having to be without a internet for a few days.
I’m a DD-WRT’ed Linksys WRT54GL user. The installed functionality matches the Syswan (even down to using one of the LAN ports as a fail-over WAN connection). The Linky cost me about £40 and at that price, I could buy a second one and have it sitting in the box ready to go and still be a lot cheaper than the Syswan.
This isn’t a downer on the Syswan, it looks like a nice unit, I’m just highlighting some of the economics associated with home use.

Pingback: Tweets that mention Hands On: Syswan Duolinks SW24 VPN High Performance Dual WAN Router | We Got Served - Windows Home Server & Your Digital Home -- Topsy.com
http://www.ihomesecuritysystems.com Jim_Clark
Technically, you also lose the warranty on your router. It all depends on your needs. Dual WAN support may not apply to many, but that is one feature. If you need to use VPN, does DD-WRT support the level of security that this router does?
Basically, based upon the popularity of DD-WRT, the user base recognizes the need for better features that a “stock” consumer router has. The choice is yours as to which path you take for improved security features. A flashed consumer-grade router may be better than stock, but it still does not make it a business-class router.
Of course, the Syswan solution is more expensive…
OH! You’re my new favorite blogger fyi
scoob
If you don`t specifically know why you need an enterprise class router, the chances are you don`t need one. Generally speaking, all they give you is more control and reliability – not more security.
A simple NAT firewall used on every home router is plenty good enough for 99.9% of home users (everything behind NAT is invisible) – and punching a hole through any firewall, corporate or not, means the router no longer offers any protection for that IP. So anyone hosting webpages on their WHS is relying on the security on their WHS, not their router.
Crow
How is crappy article (or whould I say shameless plug for Syswan) like this gets into the blog?
How's even remotely related to WHS?

http://intensedebate.com/people/Dieharder Dieharder
it is remotely related to WHS, get it, REMOTELY.
Jim mentions up front about routers that configure properly using WHS Remote Access. We are always looking for routers that do so. That is why it is related to WHS.
A lot of work and detail has gone into this review, I am shocked that you call the review crappy.

Crow
Any current router could be configured to work with WHS. They ALL support port forwarding, hence the word 'router' in their name.

regmigrant
but many dont work without a lot of complicated setup and advanced rules. Most home users dont want to have to do that and run the risk of opening firewall completley if they do.
On the other hand I agree with some of what you originally said – but not the way you said it – I dont see why THIS company got so much of their documentation reproduced directly in someones blog. – Why not a similar entry for CISCO or LUCENT or JUNIPER – all of which produce enterprise class routers similar to this one.

http://www.intensedebate.com/people/Dieharder Dieharder
it is remotely related to WHS, get it, REMOTELY.
Jim mentions up front about routers that configure properly using WHS Remote Access. We are always looking for routers that do so. That is how it is related to WHS.
A lot of work and detail has gone into this review, I am shocked that you call the review crappy.
http://intensedebate.com/people/tezzer Terry Walsh
Simply because this website covers Windows Home Server as well as things that *connect* to Windows Home Server and things that Windows Home Server connects *to*. No router? No Windows Home Server.
There may also be articles on tech that doesn't even touch WHS, and do you know what? It's okay! No one gets hurt, there's no permanent damage and no-one is forced to read them.
That "& your digital home" line at the top of the page? Read it again, Crow.
http://www.intensedebate.com/people/tezzer Terry Walsh
Simply because this website covers Windows Home Server as well as things that *connect* to Windows Home Server and things that Windows Home Server connects *to*. No router? No Windows Home Server.
There may also be articles here on the site covering tech that doesn't even touch WHS, and do you know what? It's okay! No one gets hurt, there's no permanent damage and no-one is forced to read them.
That "& your digital home" line at the top of the page? Read it again, Crow.
http://intensedebate.com/people/Jim_Clark Jim_Clark
I am sorry you feel that way. Shameless plug? IMHO, I felt I wrote more about network setups, in general, and just a bit upon security by highlighting some of the Syswan router features. A router is a very difficult item to review, and I think I said that pretty much up-front.
Nowhere did I say you should go out and buy one right now, which WOULD be a shameless plug. IF your needs dictate the need of a device like this, here is one option, however.
I also feel the feedback was very benificial regarding other alternatives like DD-WRT, and replies about the security capabilities of consumer-grade routers.
Finally, FWIW, unless one was a MAJOR player in the retail jungle prior the influence of the Internet, where does one find out about alternatives to Linksys, D-Link and others? Not at your local Best Buy.

Crow
I am sorry for being rude.
It just did not feel like an actual review. There are several manufacturers claims that are just copied here without any proof. Like better security, high performance, enhanced VPN, etc compared to 'consumer router'.
From reading this article I just don't see why pay premium. Yes, some people believe if it cost more it will work better (like the guy above talking about QoS). I base my opinion on something more substantial. At least show us some tests that it is in fact High Performance Router compared to the run-of-the-mill d-link or linksys.

regmigrant
now you are being silly, the premium is for better quality hardware/software. I agree this article fails to establish anyhting concrete in that respect but i have no doubt that this is a better router than one costing half the price – however after reading this aritcle I STILL dont know if its TWICE as good.
If comparing consumer grade with corporate grade is to be a regular feature then perhaps someone who understands that market place ought to write some of the articles.

http://intensedebate.com/people/urmaster urmaster
How does an article on a router relate to a windows home server. I don't think that’s even worth an answer

Crow
Ha-ha, you are funny. Let's hear about electricity now. How can you run your WHS without electricity, right?

regmigratn
now you are just be ridiculous, are you suggesting that a community devoted to media servers in the home should ONLY discuss the WHS part of the picture? We shouldnt, for example, talk about different disk drives, processors, wireless connections, cabling, even desk space, air conditioning or whatever?
And to answer your question – yes you cant run your home server without electricity so be aware of your carbon footprint when you are leaving it running all the time.

http://intensedebate.com/people/urmaster urmaster
How does an article on a router relate to a windows home server. I don't think that’s even worth an answer.
http://intensedebate.com/people/urmaster urmaster
Who's spreading "FUD", you lose your right to a refund, simple.
http://intensedebate.com/people/urmaster urmaster
Who said anything about cost? DD-WRT simply does not work with QOS. If this router advertises QOS as a function it must work no? DD-WRT is a no guarantee – that it will even run let alone work – solution.
http://www.intensedebate.com/people/urmaster urmaster
Who said anything about cost, read my post again? DD-WRT simply does not work with QOS. If this router advertises QOS as a function it must work no? DD-WRT is a no guarantee – that it will even run let alone work – solution.
http://www.intensedebate.com/people/urmaster urmaster
Who said anything about cost, read my post again? DD-WRT simply does not work with QOS. If this router advertises QOS as a function it must work, no? DD-WRT is a no guarantee – that it will even run let alone work – solution.
Noodle2732
Nice article.
I use a dual wan router at home (a Draytek Vigor 2390n), cant fault it.
Only advise i have to give about dual WAN routers is that when you make a connection to the internet you are going to end up using one of 2 IP address, most of the time this is fine however if your IP address changes whilst in the middle of say doing some online banking the secure website will kick you off.
You need to setup a rule for HTTPS (port 443) to only use one of the WAN links to stop this.
In terms of security i love being able to create firewall rules that make sense rather than the wierd way most home routers work.
Trey
appears to be the same hardware and management software as the Xincom 502 Twin WAN. I've used the Xincom for a couple of years and it's rock solid, stability wise, but the load balancing and failover feature has not worked 100% for me despite many tries and config changes.

Hands On: Syswan Duolinks SW24 VPN High Performance Dual WAN Router

Enjoyed this post? Share it.

About Jim Clark

Sign Up for WGS Daily News

WGS on Facebook & Twitter

WGS Recommends (US)