Hardware purchase advice please
-
I have a NAS drive and wanted to keep the NAS bandwidth and the internet bandwidth separate.
So I'd plug the NAS directly into a port on the pfsense box.I'm not entirely sure what you mean by that. Usually your NAS traffic would all be internal and your internet traffic is… not. Does your NAS box host externally accessible services? I agree that connecting you NAS to a separate interface presents some advantages though. You can much better filter traffic to and from it. The same could be said for a wifi access point. That's still only 4 interfaces total though unless you have more than one 'LAN' style subnet. You can never have too many interfaces though. ;)
Is your existing switch VLAN capable?
Your DD-WRT equiped access point is VLAN capable so you could use a separate VLAN interface for wifi which reduces your total by one. You could probably use it's internal switch to set separate VLANs on each of it's ports but that will get complex quickly. A challenge perhaps!
The question is what bandwidth do you need internally between your NAS and a client on your LAN? If the NAS is on a separate interface then that traffic will be going through pfSense. The Atom can manage ~500Mbps between two interfaces but that is without doing any VPN encrypting at the same time.
I don't think having multiple connections inside the VPN would make much difference. It's the cryptographic function that challenges the Atom.
Steve
-
Hi,
Jetway JNF99-525 Long Life Fanless Dual Core Atom Mini-ITX Board with Dual LAN, 6x SATA and Daughterboard Expansion
Extremely versatile Jetway JNF99-525-LF Dual Core 1.8GHz 64-bit Intel Atom D525 powered Mini-ITX motherboard with Fanless operation, Jetway Daughterboard Expansion, Intel ICH9R Chipset, Integrated Graphics and VIA VT1705 6-Channel Audio Codec. Supports up to 4GB of DDR3 1066/1333MHz SODIMM memory. Ports available include: 2x Intel 82574L 10/100/1000 Base-T Gigabit LAN, 6x SATA 3Gb/s (supporting RAID 0, 1, 5, 10 & JBOD), USB 3.0, PCI and Mini-PCI Express.4GB DDR3 1333 SODIMM
3x Gigabit LAN Daughterboard Module (Intel 82541PI chipset)
M350 Universal Mini-ITX EnclosureThe M350 Universal Mini-ITX Enclosure measures just 62 x 192 x 210mm (2.5 litres) and is capable of housing both embedded and socket Mini-ITX boards. Fanless operation possible using natural air convection through hundreds of tiny holes for CPUs with TDP < 10W; CPU Fan only operation possible for CPUs with TDP <= 65W.
StarTech 3.5in SATA to CompactFlash SSD Adapter Card.
- For 3.5" SATA Hard Drives
- Able to connect a CompactFlash card through a Serial ATA data port
- Includes a 3.5" bracket
- 1 Year Manufacturer Warranty
Kingston 4GB 40x Compact Flash Card
- 4GB Capacity
- 40x Performance
- Limited Lifetime Manufacturer Warranty
picoPSU-120 12V Plug-in DC-DC ATX PSU
The picoPSU-120 plugs directly into a motherboard ATX connector and measures just 31x45x20mm - about the size of two AA batteries. The picoPSU-120 generates up to 120 Watts of power from a 12V DC supply, at over 96% efficiency. An attached cable harness provides:20pin ATX Connector
SATA Power Connector
Molex (ATA) HDD Power
Molex Floppy PowerCompatibility: The picoPSU-120 can power all our Mini-ITX boards with Geode, C3, C7, Atom and Fusion processors. Additionally most lower power consumption Mini-ITX boards with Intel and AMD processors up to around 65W TDP can be powered. More powerful picoPSUs offer more headroom for additional devices. If you are considering using with a board not on our site, please email us to check compatibility.
Q1: Will a 120 be over kill?
Q2: Did I make any wrong choices that could cause compatability issues or heat issues?Thanks
I have a NAS drive and wanted to keep the NAS bandwidth and the internet bandwidth separate.
So I'd plug the NAS directly into a port on the pfsense box.I'm not entirely sure what you mean by that. Usually your NAS traffic would all be internal and your internet traffic is… not. Does your NAS box host externally accessible services? I agree that connecting you NAS to a separate interface presents some advantages though. You can much better filter traffic to and from it. The same could be said for a wifi access point. That's still only 4 interfaces total though unless you have more than one 'LAN' style subnet. You can never have too many interfaces though. ;)
Is your existing switch VLAN capable?
Your DD-WRT equiped access point is VLAN capable so you could use a separate VLAN interface for wifi which reduces your total by one. You could probably use it's internal switch to set separate VLANs on each of it's ports but that will get complex quickly. A challenge perhaps!
The question is what bandwidth do you need internally between your NAS and a client on your LAN? If the NAS is on a separate interface then that traffic will be going through pfSense. The Atom can manage ~500Mbps between two interfaces but that is without doing any VPN encrypting at the same time.
I don't think having multiple connections inside the VPN would make much difference. It's the cryptographic function that challenges the Atom.
Steve
-
I would think the 120W pico-psu will be over kill, I would not expect that box to use more than 30W at any time, mostly a lot less.
Steve
-
I would think the 120W pico-psu will be over kill, I would not expect that box to use more than 30W at any time, mostly a lot less.
Steve
Thanks Steve,
I might add in at some point a WiFi card.
Q1: I take it that once the initial set up is done I can make changes such as adding a Wifi card to the box?
Q2: Is there any advantages to doing this at the point of set up?The plan is to get rid of as much clutter as possible in the way of extra routers and if possible switches.
Also a little head room for a few fans that might be needed if I do run into heat problems for any reason.
And maybe a SSD or HDD add. So I'm thinking about not buying twice later on. So if I have a little extra power
will probably be for the best.
But the power consumption you mentioned… that's very low :)Is there anything else I've over looked?
-
You can add a wifi card at any time. I would recommend starting with the simplest system you can. Adding and testing more interfaces or packages in stages will result in fewer problems.
The biggest advantage of an Atom is that its peak power consumption is low. You can get a system that consumes a very small amount of power most of the time, my own Pentium-M setup is <25W, but because at peak load it consumes more you need much better cooling provision. The Atom can be passively cooled relatively easily for this reason.
If you think that 30W is low, check this out: http://ssj3gohan.tweakblogs.net/blog/8217/fluffy2-59-watt-high-end-desktop-computer.html :)
Steve
-
I would think the 120W pico-psu will be over kill, I would not expect that box to use more than 30W at any time, mostly a lot less.
Steve
Steve, I think 120W is not an overkill. That daughterboard with 3 Intel NICs is getting pretty warm.
We had originally set the box up with a 65W pico-psu - it died within 6 months of 24/7 usage. Switched to 120W, feels much better now. (can't state that the first psu died because of overload, it's just a guess, that peaks can occur).Just look at some specs.
The Intel D 2700 MUD board eats about 35W when the more power-efficient cedar Atom runs at 100%.
Jetway JNF99-525 uses an older an less power efficient CPU, and has lots (literally several times) more features than the former. It's normal, that it eats more power… -
Fair enough. Since you've actually used that board I'll definitely go by your judgement. :)
I don't think they make the 65W model any more, the 80W should be sufficient don't you think?
Steve
-
Yes, I guess.
-
You can add a wifi card at any time. I would recommend starting with the simplest system you can. Adding and testing more interfaces or packages in stages will result in fewer problems.
The biggest advantage of an Atom is that its peak power consumption is low. You can get a system that consumes a very small amount of power most of the time, my own Pentium-M setup is <25W, but because at peak load it consumes more you need much better cooling provision. The Atom can be passively cooled relatively easily for this reason.
If you think that 30W is low, check this out: http://ssj3gohan.tweakblogs.net/blog/8217/fluffy2-59-watt-high-end-desktop-computer.html :)
Steve
Hi Steve,
Thanks for your advice.
I will not be adding the Wifi card right away but I'm curious to which would be the best for general connectivity and range coverage?
I do want the fastest speed possible for wifi.
So I'm looking for the "best" option on what is avail from the shop I will be using below…
Also taking into consideration pfsense support.Here are what I was looking at. At this store....
http://www.mini-itx.com/store/?c=17
I was considering this since it seems to be the better one....
Intel Ultimate-N 633AN Half-Mini PCIe Wireless Card - up to 450 Mbps
I know you'd need all 3 antennas to achieve this.
Which is where perhaps I'd need to drill a few more holes in the case ;)would it be of benefit and most of all is it fully supported by pfsense?
-
Wifi hardware support in pfSense is… limited. ;) Especially under 2.0.X. It's built on FreeBSD 8.1 which was released in July 2010. Anything newer than that is unlikely to be supported. There is no support for 802.11N outside of the specific drivers so although some hardware will work it will only be at 'G' speeds.
There is better support in 2.1 since it's built on FreeBSD 8.3 and some drivers from 9 have been back ported. The best supported cards are those based on Atheros chips-sets.The best source of information is JimP's spreadsheet:
https://spreadsheets.google.com/ccc?key=0AojFUXcbH0ROdHgwYkFHbkRUdV9hVWljVWl5SXkxbFE&hl=enSteve
-
Wifi hardware support in pfSense is… limited. ;) Especially under 2.0.X. It's built on FreeBSD 8.1 which was released in July 2010. Anything newer than that is unlikely to be supported. There is no support for 802.11N outside of the specific drivers so although some hardware will work it will only be at 'G' speeds.
There is better support in 2.1 since it's built on FreeBSD 8.3 and some drivers from 9 have been back ported. The best supported cards are those based on Atheros chips-sets.The best source of information is JimP's spreadsheet:
http://www.draisberghof.de/usb_modeswitch/bb/viewtopic.php?t=983Steve
Hi,
I don't see any spreadsheet.. Am I missing something on the link you provided.
So is there danger of newer cards not been supported at all or just at slower speeds?
-
Nooo, copy and paste fail! :-[
See corrected link above.There is a danger of no support at all. FreeBSD hardware support lags behind other OSs anyway and pfSense lags that by a bit.
Steve
-
I would strongly advise to use a dedicated, separate AP for wifi. pfSense is not really meant to be a wifi router.
-
I would strongly advise to use a dedicated, separate AP for wifi. pfSense is not really meant to be a wifi router.
OK, I think I will skip it anyhow.
Maybe look at it at a later date.thanks
-
I would think the 120W pico-psu will be over kill, I would not expect that box to use more than 30W at any time, mostly a lot less.
Steve
I'm using the Jetway NF99FL-525 with 3 Intel NIC Daughterboard, 1 Compex abg WLAN card and 1 CF attached to SATA via SATA2CF converter. With a standard 300 W ATX power supply it's consuming ~33 W - measured with a power meter. With a picoPSU you will probably reduce power consumption below 30 W. That's why I go along with Steve's opinion: 120 W picoPSU will be overkill :) Of course, my 300 W ATX PSU is overkill as well, but it's currently impossible to get a smaller standard ATX PSU.
-
pvoigt - would this be any better for you?
http://www.ebay.co.uk/itm/HIPRO-100W-ATX-PSU-Power-Supply-Unit-HP-A1463F5-/230822905477
-
With the Sata to CF converter. Should I select IDE or SATA mode in BIOS?
Assuming the bios on this motherboard will offer that choice? -
With the Sata to CF converter. Should I select IDE or SATA mode in BIOS?
Assuming the bios on this motherboard will offer that choice?Tested so far following CF converters:
http://www.delock.de/produkte/F_283_2-5_91697/merkmale.html?setLanguage=en
http://www.delock.de/produkte/F_283_2-5_91661/merkmale.html?setLanguage=enUsing BIOS IDE mode.
Peter
-
pvoigt - would this be any better for you?
http://www.ebay.co.uk/itm/HIPRO-100W-ATX-PSU-Power-Supply-Unit-HP-A1463F5-/230822905477
You may be right because its power data seems more appropriate. One the other hand I am using a 80+ PSU (Enermax). Only if I can directly compare both PSU I will become more wise :)
I suppose most effective would be using a picoPSU. I once decided to go with the ATX PSU because I wanted to use a standard miniITX case which could be re-used by another machine in the future.
Peter
-
The CF card I have is a 16GB… do I just use the 4GB image with that?
pfSense-2.0.3-RELEASE-4g-i386-nanobsd_vga-20130412-1022.img.gz
Is this the correct image?This will be going on an Atom 1.8 with VGA output only.