@johnpoz said in Merry Christmas:
I for sure will not be driving for that first meetup.. hehehe

😂 😂 😂

I wish to all a good passage to the New Year and all the Best!

Regards,
fireodo

@johnpoz, @jwj Thank you

I assume you mean hardware to run as a firewall/router with pfSense rather than just to generate traffic?

The graphics card makes no difference at all here other than potentially being unsupported by pfSense at all making install difficult. Better to use on-board video in most cases or serial console.

You don't mention RAM there but it's not really significant for high throughput.

Network card choice is though. Use something Intel based, ix or ixl.

There is a huge variation in performance across the range of E3 v3 CPUs, you need to be more specific. But the Ryzen 3900X appears more powerful than any of them. In a synthetic benchmark at least.

The 5Gbps VPN requirement is a far harder ask then 10Gbps total throughput. But again there are many variables there.

Steve

@Sergei_Shablovsky

Yes.
https://qna.habr.com/q/862669

The card you have linked to is the QXG-10G2T-107. But for either we would need to know what chipset it uses.

Edit: Looks like Mellanox ConnectX-4 LX....
If that's true they may be supported by:
https://www.freebsd.org/cgi/man.cgi?query=mlx5en

Would need to know the actual PCI IDs to say further.

Steve

Probably.

Too damn expensive though. If you want to send me one I'll test it for you. 😉

But, yeah I would expect it to work since it's just another Lanner box with mild customisation. Expect the BIOS to be locked down so you might need to get creative on the install.

Steve

@jknott

There is an update to an openSUSE 15.2 version that works. Here's the repository.

@mhertzfeld Sounds like a good plan. Yes, unfortunately paying monthly for a service you will not use 99% of the time is the only option with almost all data plans. If you are interested in T-Mobile look into a T-Mobile MVNO. They might offer lower amounts of minimum data plans for less cost on the same T-Mobile network.

Good luck.

@brightwolf
you need 5 thumbs up 👍
now you are all set, try again

@jegr

here
https://community.ui.com/releases/UAP-Firmware-4-3-23-11354/f55174e8-ec75-4ab6-b11a-822e04e5aa34?page=1

beta.png

Notice where they said they wanted beta feedback ;)

To be honest its a bit of a snafu if you ask me... Lets see if it gets removed since they released that version now..

edit: Looks like they got it sorted... I only see 5.x firmware now new 5.43.19 came out
new.png

I take it you want to do something like this?

3routers.png

Keep in mind your other 2 routers are doing nat I take it?

Keep in mind while your 2 downstream network would be able to get to anything they want on 192.168.0 in such a setup - if your going to put devices on that network.

1 couldn't get to 2, and 2 couldn't get to 1, and 0 wouldn't be able to get to 1 or 2.. Without setting up port forwarding on these other routers.

I would never suggest such a setup.. But if if that is what you have to work with until you get a new pfsense.. Yeah it can work.. It's a mess, but sure it can work.

Yeah, we didn't remove your post because linking to a github is not what your normal spammer would do. 😉
Unfortunately we get a lot of spam here and replies on an old thread that include links are typically where it appears so it got flagged.

I would still recommend adding a description there against the parent project since I'm still unsure what that is.

The vast majority of pfSense users would never have tried to use a lua script with Suricata. The package gui takes care of all that.

Steve

https://redmine.pfsense.org/issues/9263

@johnpoz
OK, in that case I suppose I have to consider if the TP-Link EAP245 is the issue. After all, both Pi3s were performing well when the Linksys WRT1900ACS was operating as the router and wireless access point. I switched to pfSense and the EAP245 WAP only about a month ago and had this issue.

Thanks for pointing me in the correct direction for investigation.

I have a lot of VoIP phones that will only update via FTP
Siemens Unify springs to mind.

But then they don't use FF or Chrome.

I normally use FileZilla for FTP , don't even like the browser ftp GUI.
And it's within my own RFC1918 net.

/Bingo

@Gertjan I will ask the ISP to provide log of data moved, IP, Mac address of my powered-off modem for mid-September to mid October to my state attorney general office that will act as a mediator.

@Parakinesis

or Ruckus and UBNT (in this order) 😉