Looking for ideas on what hardware to use for a pfsense router. Would like enough power for speed and some of the addons like the firewall antivirus and run some personal vpn off it.
Pic is the Alix kit. Costs about 200 a little less. Good speed but idk how much hard drive space it leaves after software and addons for a cache.
It still shouldnt need that much hardware. Anyone already running this?
It's hard to look past that thing for a router/firewall.
3xGigabit Ethernet puts it ahead of anything that isn't a specific purpose single-board.
It only consumes 6W, so it beats a spare rig with a full x86 CPU.
You're limited by the 1GHz dual core, but for small networks that's more than enough.
The Hardware is an Alix 2D13.
I am running it as a basic firewall/router for network separation. The internet connection goes through another router, which I cannot get rid of because of the shitty VOIP setup by my provider. So I have a double NAT, with port forwarding on both routers for torrenting.
The router is as stable as you could want it to be, never had any issues apart from self-inflicted stupidity (DNS server was not listening ton 127.0.0.1, which would make the software updater fail without a hint on what was wrong). Would buy again.
I have had issues with cheap router before, they tend to die slowly. Bought this one in 2012.
What I am doing with it is pretty basic, as you can see by the CPU and memory consumption.
If you have any additional questions I may be able to answer them, but I have no recommendations for other devices.
Forgot to mention, I have an RB951G-2HnD AccessPoint, which could work as a router as well. If you do not need the pfSense packages, and want a basic router, this could be a cheaper option. Gigabit ports, gigabit routing, pretty nice feature set.
Which one do you mean? They are both pretty small, do not use much power, and can both be used for VPN. Not sure about the antivirus you mentioned, but I ould not put this on a router (cannot intercept https; if it can, it will break https)
one of these
pfsense allows some plugins also one of them is a antivirus that works inside the router on any machine passing through it. It will stop and warn you if you are downloading something infected.
From your link:
>EOL NOTICE: The AMD Geode LX800 CPU features in this system will EOL in 2015. For this reason we high recommend you purchase the APU2 or APU4 system instead, which is the follow on modern multi-core replacement CPU/system with Gigabit ethernet NICs.
As I said before, I would not rely on antivirus in the router.
You could block domains with known malware (most ad networks, add a few hosts) and be mostly fine. Still, put something on your client computers as well.
Please show me a 20$ computer that will do gigabit routing, be small, quiet (no vents, no moving parts), and not consume an obscene amount of electricity for nearly no performance at all.
flea markets, ebay, craigslist, freecycle, christ anon have a little resourcefulness.
A wide diameter fan set to a low rpm won't make much noise, but I have no idea why you're expecting no vents. Thats retarded.
Obscene amounts of electricity, as well? Nigga you aren't shoving crossfired AMD GPUs in there. Fucking pennies
Yes, flea market. Old hardware, at least a 300 watt psu with godawful efficiency, condensators the shape of a melon.
No vents = no maintenance. Not having to clean that shit out every few months. And I like it quiet, which cheap PCs almost never are.
Not everyone needs to scrap every penny they can. For some people the time invested in finding old hard ware to do this job isnt worth it.
If you buy one of these you get everything you need in a small little for factor and no fan heat from it.
If you are just fucking around with pfsense on your own yes an old computer might make sense especially if you already have something lying around.
I use a core2duo thinkcentre for my pfsense. it's got 2gigs of ram, 1.5 of which is dedicated to squid cache. It also runs snort which is great, and I have an ipsec tunnel set up to another thinkcentre (spec'd exactly the same) at a different location.
more processing power = faster vpn throughput.
hurrdurr forgot pic
this is what my cpu looks like running snort on the core2 at my home network. as you can see, it barely uses any cpu. At a small office or something like that I'm sure it would be more.
I rebooted my box last wedensday for the update, but as you can see, squid will happily use up all avaliable ram to store it's cache. Good times.
In this case, I would opt for something with a bit more power. The ThinkCentre sounds perfect, otherwise something like a zbox, brix or something like that. If you have RAM and HDD lying around, it would even be cheaper.
Alright, you tried it, I have not. I will shut up now.
>The ThinkCentre sounds perfect, otherwise something like a zbox, brix or something like that. If you have RAM and HDD lying around, it would even be cheaper.
I dont know which thinkcentre's your talking about that small.
The zbox and brick are closer to the idea but they only have one network port and I dont know if it can do wireless if you were to get an antenna.
>live with parents still which means its not free
I'm going to elect option number 2 you parasite
Is there any hardware out there that can replace the actual modem? Mine has a coaxial coming in from the wall as it through my cable company comcast.
Is that even possible I havent thought about it before.
Atom boards are pretty nice, low power and typically more expandable if you decide you want it to do more later.
You know there are apartments and other places to live that don't meter individual tenants' power, right?
I have the APU1D4 with a 128GB mSATA SSD. I run Untangle on it.
It runs well. If I put PFSense or OpenBSD on it, it'd likely run a bit faster, but I have licenses for some of the Untangle stuff, and it does what I want it to.
No, but you can just buy your own modem.
Most higher-end places here don't meter utility usage because they're already charging you a fuckton
>Free electricity, water, and heating
>Have to pay to use washing machine
>Americlap landlords in charge of making sense