Jeeze dude. How many NICs? What is the technology they use to "bond" ADSL lines? Can their modem be bridged to another router interface?

Well if the SoftEther people are to be believed, then it's much faster than OpenVPN.  We should try to get that implemented in pfSense.

Yes.

However…

What sort of bandwidth do you need over the VPNs? What sort of VPN?

Do you want to run any packages, Snort, Squid etc?

I would expect the SG-4860 to be capable whatever you were trying to do with 100Mbps max single connection limit though.

Thanks,
Steve

If you are seeing CPU usage at 50% overall then it's likely at least one of your 4 CPU cores is at 100%. To see the full break down of cpu usage across cores run at the command line:

If one core is at 100% it should be running in Turbo mode.

Specifically which A10 CPU were you looking at? As far as I know most of those support AES instructions. AMD have been shipping processors that will be supported in 2.5 since 2010.
https://www.netgate.com/blog/pfsense-2-5-and-aes-ni.html

Without seeing te exact settings you're running it's hard to comment further. It seems likely you should be able to see more bandwidth from that CPU though. In the thread you linked Pippom reports 160Mbps from that same CPU with higher encryption settings.

Steve

Mmm, good point. My box was, relatively, stable for a while after I disabled powerd. You might try that if it's enabled.

Steve

Hmm… I was hoping to make it a bit harder than that, and more custom but that'll do for now. I need the 3D Printer before I do anything more. And study up on electrical engineering. My pfSense box won't be online until April :( Stupid bills :(

Thanks for all the responses guys. I really appreciate it. Your responses have sparked some crazy ideas in my head. I'll be writing them down in my "Stuff to do to my own House" book. :)

Do you plan on using pfsense to protect the windows 7 client, or is it only to run the pfsense on virtual box?  If only for pfsense, I would not recommend your setup.  If windows 7 gets bsod, or exploit, your pfsense box is down.

If you need both, please look at a free esxi license.  (Vmware)
Then run pfsense and windows as virtual clients.

Else, most secure is to install the pfsense direct to the box.

@fmertz:

Actually, looking at the Linux device, it suggests it is a raw device. Maybe the character device is not needed.

Maybe it needs to be initialized read/write:

exec 3<> /dev/ukbd1

[2.3.5-RELEASE][root@pfSense.geek.local]/: exec 3<> /dev/ukbd1
Missing name for redirect.

Yeah you should be running 6.5 but as johnpoz says it may work fine in 6.0.

If you are seeing ICMP work but not TCP it is often an asymmetric routing issue. Is there some other path between those VLANs?

It could also be packet size issue. Try pinging with much larger packets.

Steve

Hi Folks, new bie too, I am trying the same/similar  here , with Infiniband ConnectX-2 dual QSFP+ on fiber NIC card in one of the PCIe slots of my new PFSense 2.4 physical box install (from an older recycled HP workstation) with an extra  4 ports 1GB/s NiC card ,
trying to bridge the Ethernet and Infiniband network, to hook up my homelab ESXI 6.5 server ( host for all VMs ) + NAS at a blazing speed.
I guess there are existing FreeBSD / OFED drivers but how can we get these installed  and PFsense box to recognize the Mellanox Infiniband card on its PCIe slots.
thanks for your help, and to all for their advised comments on this thread. Best,

@johnkeates:

USB flash disks rarely have useful smart data, just ignore it.

Is that a fact? Or simply your opinion? Sweeping statements like that can be dangerous for people that don't know any better.

Okay, I'll check these cases and monitor …

Thanks again!

Yeah, I don't think there is a FreeBSD/lcdproc driver for that display.

It was documented quite extensively in other threads though, have a look back through them.

Steve

So what exactly did you try?

You loaded the hd44780.so with ezio driver?

You set lcdd.conf to use it?

Do you have the rubber key model? Can we see a picture of it?

Steve

I believe the E20 runs the same Qualcom linux flavour (or very similar) that the Sierra devices do so you may be able to change the USB profile from it's command line.

It looks like currently it's presenting a QMI interface only (there is only one config index) which means pfSense cannot talk to it.

Try connecting to those ttyUSB ports in Linux and look for an AT prompt. Looks like it's probably ttyUSB3.

If you do get a command line you might try this or something similar:
https://forum.pfsense.org/index.php?topic=140301.msg766861#msg766861

You might just get one of those Sierra modems instead though.

Steve

Hmm, not much that can make them disappear from the OS side. I could believe they could get fried at the hardware level externally but I still expect them to be visible to the OS.

If they are disabled that would happen but I can see no reason why they would be. ACPI tables damaged maybe? Perhaps force reflash the BIOS with the same image.

Are they on the SuperIO chip on that board? Check they are enabled after boot.

Steve

@mricecool:

I don't like the big bulky transformator on the cable :/

Me either but 1u built-in PSU tend to have those small whinny fans, so u pick, noise or external power brick?

I've seen fanless designs, but don't even mention a budget.

@johnpoz:

My comment was in response

"I have a Raspberry Pi running the controller software.  It's a little silly to have an entire system just to manage ONE network appliance."

I guess I should of quoted..

Ah yes, that makes more sense now.

@johnpoz:

What would be nice if they brought in to their dashboard this sort of info from other switches that support flows and snmp where you could query the interfaces traffic, etc.

Ah yes, that would be nice indeed, but I'm sure what will never happen as long as this is what they push as their walled garden/marketing/USP. At best we could reverse-engineer the integration (which shouldn't be too hard) and supply it ourselves.