Routing at 25Gbps possible?

Yves_

Hi there,

I am currently in the upgrade process of my homelab and switching to 25G which my new ISP also supports.

Now the big question or elephant in the room is what kind of crazy hardware will I need to achive 25Gbps routing?

Thanks for your help much appricated
Yves

bingo600

@yves_

Guess .. Maybe TNSR
https://forum.netgate.com/category/69/tnsr

JKnott

@yves_

You only get 25 Gb?

Actually, that seems a lot even for a business user. The highest I've seen is 10 Gb and that was for a major bank's data centre. You need some seriously high performance gear for that. By comparison, the undersea cable links run at 100 Gb per wavelength and some ISPs & carriers are running 100 Gb connections among them.

Cool_Corona

@yves_ 25gbps routing is not a problem on decent hardware and apropriate NIC.

25gbps FIREWALLING is very hard depending on wishes for packet inspection.

We run 100gbit on the SAN's.

Yves_

@jknott said in Routing at 25Gbps possible?:

@yves_

You only get 25 Gb?

Actually, that seems a lot even for a business user. The highest I've seen is 10 Gb and that was for a major bank's data centre. You need some seriously high performance gear for that. By comparison, the undersea cable links run at 100 Gb per wavelength and some ISPs & carriers are running 100 Gb connections among them.

Yeah I know its insane... and the price for 10/10Gbps is the same as 25/25Gbps. Setup is higher... since the optics are more expensive. But I guess thats fair.

But of course you bring out a fair point. Even if I get like 25/25Gbps from my place to the ISP. It does not mean I get 25Gbps to lets say AWS, Micro$oft, Google or who ever... They do have pretty solid BGP Peering (https://bgp.he.net/AS13030#_peers) for a consumer grade ISP.

I don't need any IDS/IPS. Its just normal Firewalling and some NAT / Portforwarding / DNS / DHCP.

Current HW is:

• AMD EPYC 3251 (8 Core / 16 Threads / base 2.5GHz / boost 3.1GHz)
• Dual 8GB 2933MHz DDR4
• 256GB WESTERN DIGITAL Black SN750 as system disk
• Intel(R) X520 82599ES SFP/SFP+ Card for current Network

But I already have a Broadcom BCM957414A4142CC ready for SFP28 and the 25G ISP connection.

stephenw10

What throughput vs CPU usage do you get currently?

I've personally never seen pfSense running on anything that could pass 25Gbps.

Steve