DrayTek's broadband routers have traditionally offered more for your money than most competing products and the latest Vigor2820n continues this tradition with a range of features that belies its modest price tag. For starters you get an SPI firewall, a draft 2.0 compliant wireless N access point, a three port Fast Ethernet switch with Gigabit uplink, an integrated ADSL2/2+ modem and a second WAN port for load balancing and failover.
There's more as along with standard URL blocking facilities, DrayTek offers optional web content filtering from SurfControl at a very affordable price and the USB port can be used for printer sharing or adding a 3G modem. The router is well built with all its ports arranged across the front panel so that they're easily accessible if the router is mounted in a standard 19in rack cabinet using DrayTek's accessory kit. The kit also includes a free Vigor N61 wireless N USB adapter and DrayTek advised us this offer will continue until mid-May 2008.
Installation starts by pointing a web browser at the router's default IP address and running the quick start wizard. An auto-detect routine is provided for the ADSL modem connection and we found this worked fine with our BT Broadband service where it correctly identified the VPI, VCI, mode and encapsulation scheme. We added our account details and a few minutes later were up and running without any problems.
The second Ethernet WAN port accepts a suitably equipped cable or ADSL modem. For load balancing you can leave the router to decide the best weighting or manually enter the line speeds for both WAN ports. Failover works when the second WAN port is set to be active on demand and you can decide whether it comes up when the primary connection fails or when the upload and download speeds breach your chosen thresholds.
The SPI firewall can be customised with a wide range of filters and this is made easier with objects. These define an IP address range which could be used to represent a department or group of users. Objects are also used to define services where you enter a protocol plus source and destination port ranges. Tie them all together and you can create a wide variety of rules for controlling inbound and outbound traffic for sets of users.
The firewall can detect and block DoS attacks whilst the CSM (content security management) component allows you to block access to common IM and P2P apps. Up to 32 profiles are available where you can decide to allow or deny IM apps such as MSN, Yahoo Messenger and AIM, P2P apps such as BitTorrent and Gnutella and also Skype. Basic web access controls also look useful as these feature black or white lists of URL keywords and domains. You can allow access to all sites except those listed but a more powerful feature is the ability to block all access except to those listed and users will get a warning message when trying to access a blocked site.