Description:
7 years ago I wrote a small note about replacing my old router to a new one, since that time I tried different solutions and right now I use multiple software routers and only single hardware device, the lex, the oldest one (14 years old!). Very robust, still working without any problem, but lack (core 2 duo t7400) of a hardware random generator makes software not so fast as I wish.
Fortunately, there are plenty software random generators, even such exotic as audio-entropyd, but I decided to use Rutoken Lite as a hardware random generator in conjunction with rng-tools.
# rgnd with rutoken lite:
rngd -x hwrng -x rdrand -x jitter -f -n 7 -d -O pkcs11:engine_path:/usr/lib64/librtpkcs11ecp.so
# logs:
Aug 09 21:55:31 gw rngd[1456684]: Disabling 0: Hardware RNG Device (hwrng)
Aug 09 21:55:31 gw rngd[1456684]: Disabling 2: Intel RDRAND Instruction RNG (rdrand)
Aug 09 21:55:31 gw rngd[1456684]: Initializing available sources
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot manufacturer......:
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot description.......: Aktiv Rutoken lite 00 00
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot token label.......: livelace-rngd
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot token manufacturer: Aktiv Co.
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot token model.......: Rutoken lite
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Slot token serial......: 36995586
Aug 09 21:55:32 gw rngd[1456684]: [pkcs11]: Initialized