Is this going to be too much for the APU 1D?

APU2C4 Jetway NF9HG-2930 if this might be not really strong enough!

But the best way in my eyes is to insert a small Layer3 Switch such as the following
A D-Link DGS-1510 or Cisco SG350, they will route between the VLANs if this is needed with wire speed
if not needed you can also go with a Cisco SG220 switch, that is really fast and wicked. then the APU1D
would be enough for it or one from the both other named above boxes.

Use case: home FW (filtering / Snort / Malware mitigation / VPN (1 user)) (may be other features I find worthwhile or educational)

A router only device is not needing this Hardware, a Firewall needs some more horse power and a fully odr nearly UTM device
is taking with each Point the packets are passing more and more away from the entire throughput! So it is even more interesting
what do you expect form that device after processing all things such as IDS (Snort), ClamAV (AV Scan) Proxy (Squid,) pfblockerNG
and other packets.

If you have or own that hardware it is really nice, but if want to buy new hardware you should be have a look on more common and
less powerful hardware if that will fit your needs too.

Guy on ebay selling them for cheap:
http://www.ebay.com/itm/141760352711

It is a good motherboard choice.

You are prob right - and usb prob likely where that might happen.  But when he says card, I don't think about usb adapters..

Works.  :)

@jimp:

For a card that old, especially with an Intel chipset, I wouldn't expect it to have a problem.

You might try a 2.4 snapshot in case it needs a newer driver.

If the card works in another operating system, what is it detected as there?

Hi problem solved by changing to a AOC-SGP-i2 card not a AOC-SG-i2 - the older card I think wasn't compatible with my machine.

I've been up and running a few days now - trying to get my head around traffic shaping now

https://forum.pfsense.org/index.php?topic=127444.msg703386#msg703386

@chpalmer:

If it is really running that hot you will burn your finger if you were to touch the heatsink.. Might help to tell you if its an accurate reading or not.

Check it with a meat thermometer.

Only time mine got that hot was using offloading.

A good rule of thumb (no pun intended) I learned when working on outboard motors is that 140F (~60C) should be hot enough to hold your finger on the powerhead block (or heatsink in this case) for a few seconds before it becomes uncomfortable.

@kobzar:

yes, in the documentation on wiki you can found next:

Write the image to a small CF card, 256MB or less. Larger cards will not boot.

Up to 512Mb will work, because the original CF card thats installed in the X E-core series, is
usally a Sandisk CF card with 256Mb or 512Mb.

Grtz
DeLorean

@ghostshell:

I think I know what your issue is from what you posted since I custom make CF cards for people that want them ready to go, let me know if you still have this issue

In the meanwhile i havn't experienced this behavior, since i don't use the standard Kingston CF cards anymore
on the x550e of x750e boxes.
With the High speed versions of different brands, there are no errors of this kind.
I like to hear if you know the reason.

Grtz
DeLorean

Hi lansmurf,

I purchased a DS67U3 4 days ago for one of my customers. The temperature thing interested me too.

Config:

DS67U3 (i3-6100U) 1x 8GB RAM module 1x 1TB 2.5 HDD aw-cb209nf wifi 2x intel nics
-      BIOS: 1.03

I used Knoppix Live CD and ran a few commands to read the CPU temp while a few loops were pushing the CPU cores to the max.

Testing environment: SOHO room, 25 degrees celcius, DS67U3 not under direct sunlight

CPU temp while idle in BIOS: 39 to 41 degrees Celsius

CPU under heavy load: 49 to 53 degrees Celsius stabilizing around 51 – 52 degrees Celsius after 2 minutes.

Sadly I cannot give you temperatures while running pfSense with some OpenVPN site-to-site connections as the computer is running esxi 6.5 standalone and it’s unable to return sensors data.

PROs: the perfect SOHO firewall appliance, vtx, vt-d, intel nics, powerful, silent, compact, cool.
CONs: no IPMI, aw-cb209nf not recognized by pfSense

I have a pfSense build I made with a Lenovo H100s motherboard (j1800) that I bought off ebay for $15 and a Pro 1000 VT quad NIC, and a couple Intel SLC SSDs in a gmirror, running 2.3.3_1  bare metal.

I can confirm that the bay trail processor works great with 2.3.3.  Iperf over 900mbs across local network, rarely goes above 30% CPU with OpenVPN tunnel running concurrently.

just swapping should be fine

I found this post
https://forum.pfsense.org/index.php?topic=126463.0
If these guys are using the nanobsd firmware that is good enough for me. I tried one and got it upgraded to 2.3.3 release p1 so I'll upgrade them all and put them up for now.

ok.  Maybe my issue that pfsense support though was the MB of the pcengines was really the ssd? or maybe both for this system.

db:0:kdb.enter.default>  bt
Tracing pid 3499 tid 100150 td 0xfffff8006a6834b0
kdb_enter() at kdb_enter+0x3e/frame 0xfffffe012113f730
vpanic() at vpanic+0x146/frame 0xfffffe012113f770
panic() at panic+0x43/frame 0xfffffe012113f7d0
pmap_remove_pages() at pmap_remove_pages+0x736/frame 0xfffffe012113f8b0
vmspace_exit() at vmspace_exit+0x9c/frame 0xfffffe012113f8f0
exit1() at exit1+0x65f/frame 0xfffffe012113f980
sys_sys_exit() at sys_sys_exit+0xe/frame 0xfffffe012113f990
amd64_syscall() at amd64_syscall+0x40f/frame 0xfffffe012113fab0
Xfast_syscall() at Xfast_syscall+0xfb/frame 0xfffffe012113fab0
–- syscall (1, FreeBSD ELF64, sys_sys_exit), rip = 0x8008fa14a, rsp = 0x7fffffffec48, rbp = 0x7fffffffec60 ---

panic: bad pte va 8008a2000 pte 0
cpuid = 1
KDB: enter: panic

While I agree with you that integrated Intel NICs are not necessary, I can think of one reason you might consider integrated.

You mention that you want to get full gigabit speeds. It might be worth it to get a supermicro board with integrated 2.5 or 10 GbE NICs to ensure absolutely no question about your routers ability to get full gigabit.

Ah, too bad!

While you're in the market check out the Apollo Lake lineup.

They are similar to your current board and CPU but will be an upgrade in every way for cheap.

J3355B is probably best for you ~€73, J3455B gets you 4 cores but lower clocks for ~€12 more.

https://www.amazon.de/Asrock-J3355B-ITX-Hauptplatine-schwarz-braun/dp/B01M9EXCYB/ref=sr_1_1?ie=UTF8&qid=1489164890&sr=8-1&keywords=j3355b

https://www.amazon.de/Asrock-J3455B-ITX-Hauptplatine-schwarz-braun/dp/B01M7OUO62/ref=sr_1_1?ie=UTF8&qid=1489164905&sr=8-1&keywords=j3455b

@Deveilhuray:

I believe it is something that must be sure to go.

Thanks for the response Deveilhuray, I discover that this dongle is incompatible with pfsense, it is a huawei e1550s-1, and the id product is the same as the huawei e1550s, in the compatible list: https://doc.pfsense.org/index.php/Known_Working_3G-4G_Modems