My First pfSense Box
-
Wow, recommendations are greatly appreciated! Thanks!
Only one thing bothers me with the Intel DQ77KB and that is upgradability/expandability. I'm guessing that over time, you have found more things to load onto your box, giving it more tasks to perform. I'm worried that this lower powered system along with its 120w DC-DC power supply won't hold up with future changes, please correct me if I'm wrong.
When you do a custom build, its a investment and if you expect 5 to 10 years service out of the unit, don't cut corners on the motherboard just to save a few bucks.
If you invest in a board that supports i3 and i5 Intel CPU you will have a far greater scope for what the system can be used for in the future if the need arises.Favored Manufactures
-
Intel
-
Supermico
If you don't give a hoot and just want the cheapest board …... well nothing wrong with that I guess ..... just don't expect a lot.
And stay away from Atom systems .... there are many reasons for staying away, the two main reasons being they are overpriced based on performance per watt and limited in scope for what they can be used for.
On another note, I'm new to virtualization and plan to try it on an old pc i have in the garage. Does virtualization (instead of single OS install) limit the capability or performance of pfSense in any way? Could pfSense be installed as non-virtualized and the other services run on a virtualized OS? Would 4GB ram be sufficient, or should it go up to 8GB?
It would be best you have a CPU which has speed enhancements for Virtualization.
4GB will work just don't expect much.
Virtualization loves RAM ….. Think of it this way, if you Virtualize 3 operating systems you effectively have 3 computers. Build the Virtualization machine with as much ram as you would building 3 computers suited to the task at hand.
Personally if I where doing a custom build for pfsense I would want to future proof my build so if I decided to use the computer for Virtualization 16GB to 24GB supported motherboard would be a must .....
Edit: How does the SeaSonic SSR-360GP 360W http://www.newegg.com/Product/Product.aspx?Item=N82E16817151117 look in terms of efficiency?
You want your power supply somewhere around 2 to 3 times your actual estimated power consumption. To big of a power supply will lower the efficiency of the power-supply. The problem I have had in the past is finding quality 100w to 200w power supplies.
But I have to say with the lower power consumption for some of the Intel low voltage CPU's a 50w to 100w power brick would be nice. I have seen a board or two that come with a AC plug for power bricks.
-
-
Ok, so taking the previous comments into consideration, these are the following changes that I have looked in to:
-
CPU - Intel Core i3-2120T Sandy Bridge 2.6GHz LGA 1155 35W - http://www.newegg.com/Product/Product.aspx?Item=N82E16819115094
-
Motherboard - Intel BOXDQ77KB - http://www.newegg.com/Product/Product.aspx?Item=N82E16813121622
-
PSU - FSP FSP150-ABAN1 150w AC-DC - http://www.amazon.com/Adapter-FSP150-ABAN1-FSP150ABAN1-Charger-Supply/dp/B00AI16RJE
-
Case - SILVERSTONE Black PT12B Mini ITX - http://www.newegg.com/Product/Product.aspx?Item=N82E16811163219
-
RAM - G.SKILL 8GB (2 x 4GB) 204-Pin DDR3 SO-DIMM DDR3 1600 - http://www.newegg.com/Product/Product.aspx?Item=N82E16820231472
Based on http://extreme.outervision.com/PSUEngine, I will only need 102w under full 100% load, so it is safe to take a bit extra room and get a 150w, right?
Also, with this thin mini-itx case, I'm not sure if the Intel NIC can fit… not even the low-profile ones... please correct me if I'm wrong. If you have a solution, that would be great! Maybe a different thin case? I'll keep looking around. If there isn't a solution, I'll go back to a regular mini-itx case. The only problem is that there is a big hole in the back for the regular sized PSU's... -
-
There are a number of cases designed specially for that board due to it's great combination of features, they are expensive though I seem to recall. It is only half height so you have more space above the board to fit expansion cards than normal. The only restriction is the cpu heatsink/fan.
That Silverstone case looks great but you don't need an optical drive in a firewall.There is plenty of upgrade potential with that board, have a look at the compatible CPUs:
http://processormatch.intel.com/CompDB/SearchResult.aspx?BoardName=dq77kbThe power brick you have linked to won't fit, it has the wrong connector. You need something like this:
http://www.mini-box.com/19v-8-4A-160-Watt-AC-DC-Power-AdapterSteve
-
If price/size is of no concern and you want to get the most out of virtualization, I matched this motherboard/CPU pair to do the job:
Motherboard
http://www.newegg.com/Product/Product.aspx?Item=N82E16813121623CPU
http://www.newegg.com/Product/Product.aspx?Item=N82E16819116503NICs
http://www.newegg.com/Product/Product.aspx?Item=N82E16833106033I am, however, known for overspecing systems out, so this might be way out of your ballpark. I did use the same motherboard in my pfSense build but with an i3. I have an i7-2600K on the shelf if the i3 starts getting overtaxes. I doubt I'll ever use it.
-
The PSU model I got from Intel's compatibility chart on their pdf's (i attached to this post the jpg showing the chart). Interesting enough, you're right about that connection.
A 130w-150w would be all that is needed. Anymore would just be wasted, no?
Also, from my understanding of your replies, there is no way to get a pci(e) NIC to work with a thin mini-itx case?
Thanks again!
Edit: This looks like a nice case and there is room for the NIC by using a riser: http://www.g-alantic.com.tw/wp-content/uploads/Download-GA6503.pdf
The only thing is that its a regular mini-itx, although made specifically for DC boards, and not internal power supplies.
 -
Hmm, I see the chart but never the less it won't fit. ::)
@http://www.intel.com/support/motherboards/desktop/sb/cs-012037.htm:
Desktop boards with a 19 VDC power connector
These boards can use the following power supplies:
External Power Supply – the board can be powered with a 19 VDC external power supply through the 19 VDC connector (A in the image below) on the back panel. The back panel connector accepts plugs with an inner diameter (ID) of 5.1 mm and an outer diameter (OD) of 7.4 mm, where the inner contact is 19 (±5%) VDC and the shell is GND.
If you ever decide to fit a more powerful CPU you might need a larger power brick. That i3 will be fine though.
Steve
-
Notes
Power Bricks - If there's no ferrite choke on the cord, that would be a sign the manufacture is cutting corners!
Motherboard - There might be problems with the Intel board you selected .. http://www.newegg.com/Product/Product.aspx?Item=N82E16813121622 .. investigate the Newegg Customer Review complaints left by users, they may be valid concerns.
I like most of Intel's hardware, but they can screw things up to…. after all they are human to.
-
Ok great, thanks Stephen!
Looks like I have a final build:
- CPU - Intel Core i3-2120T Sandy Bridge 2.6GHz LGA 1155 35W - http://www.newegg.com/Product/Product.aspx?Item=N82E16819115094
- Motherboard - Intel DQ77KB - http://www.newegg.com/Product/Product.aspx?Item=N82E16813121622
_* RAM - G.SKILL 8GB (2 x 4GB) 204-Pin DDR3 SO-DIMM DDR3 1600 - http://www.newegg.com/Product/Product.aspx?Item=N82E16820231472 * PSU - 19v/8.4A 160 Watt AC-DC Power Adapter - http://www.mini-box.com/19v-8-4A-160-Watt-AC-DC-Power-Adapter [still unsure] _* HDD - Mushkin Enhanced Callisto Deluxe 40GB Sata II MLC - http://www.newegg.com/Product/Product.aspx?Item=N82E16820226168 - NIC - Intel EXPI9402PTBLK 10/100/1000Mbps - http://www.newegg.com/Product/Product.aspx?Item=N82E16833106015 [using a pci-e riser]
- Case - G-Atlantic GA6503 B-Type Mini-ITX Case - http://www.g-alantic.com.tw/wp-content/uploads/Download-GA6503.pdf
Seems like that should be everything then!
Everyone, thank you very much!! :D I would like to start it in the next few weeks… would be a nice summer project!
Edit: @Clear-Pixel: You seem to have posted while I was writing mine up too. It seems there are some problems with the board, but it seems there are just as many good reviews too... so like a 50/50 shot huh? If everything on the hard drive is backed up and the mobo fails, could I RMA it and have it all up and running as soon as it's installed? Do you have any recommendations for a power adapter? Thanks.__
-
The concerns about the MB seem to be valid ghendi ….. You must investigate for yourself .... don't take anyone's word that everything's ok!
From a IT perspective when your running server based software you can run into serious issues with some boards.Like I said a power supply such as this http://www.mini-box.com/19v-8-4A-160-Watt-AC-DC-Power-Adapter with no ferrite choke tells me they are cutting corners.
My choice for a quality power supply would be HP TouchSmart 310 520 135W 19V AC Adapter Power Supply they do make higher powered bricks if needed.
http://www.ebay.com/itm/GENUINE-HP-TouchSmart-310-520-135W-19V-AC-Adapter-Power-Supply-Cord-Charger-/400343813708?pt=Laptop_Adapters_Chargers&hash=item5d3659ce4c_You're the one which will have to live with it, not them … always verify information! _
-
Interesting. Surprised it doesn't have a choke. I guess it could have sufficient internal filtering.
There are quite a few people using that board here on the forum, have a search around. I don't remember hearing about any problems with the NICs. It could be a Linux only driver issue.
I'm not running that board myself though so I can only pass on what I've read. ;)
Steve
-
Interesting. Surprised it doesn't have a choke. I guess it could have sufficient internal filtering.
There are quite a few people using that board here on the forum, have a search around. I don't remember hearing about any problems with the NICs. It could be a Linux only driver issue.
I'm not running that board myself though so I can only pass on what I've read. ;)
Steve
I don't have a need to investigate the issue, but there seems to be a problem with Linux and the 82579LM and 82574L Intel chip combination.
Speculation
1. Its a direction Intel is headed in and the problem may have to be solved by the Linux community.
2. Nic combination was never designed for Linux compatibility. If that's the case, from a IT perspective the board is unsuitable for IT use unless your running Windows based software. -
FreeBSD doesn't seem to have an issue though.
The 82574 is almost ubiquitous. It was the chip that had the 'packet of death' issue that turned out to be a badly programmed eeprom. Not Intel's fault and not a problem on their boards.
I'm open to be corrected on that.Steve
-
FreeBSD doesn't seem to have an issue though.
The 82574 is almost ubiquitous. It was the chip that had the 'packet of death' issue that turned out to be a badly programmed eeprom. Not Intel's fault and not a problem on their boards.
I'm open to be corrected on that.Steve
What about the Intel BOXDQ77KB board and Linux?
-
I don't know what you're asking. I haven't seen any confirmed reports of the 'packet of death' on any board other than the one described (but not named) here: http://www.kriskinc.com/intel-pod. I personally tried it on a few NICs without incident.
I was just pointing out that the reports of bad behavior on the review page are mostly concerning the Linux driver not FreeBSD.
Steve
-
I don't know what you're asking. I haven't seen any confirmed reports of the 'packet of death' on any board other than the one described (but not named) here: http://www.kriskinc.com/intel-pod. I personally tried it on a few NICs without incident.
I was just pointing out that the reports of bad behavior on the review page are mostly concerning the Linux driver not FreeBSD.
Steve
The reason I am making a issue of this, is because it is a issue. If you spend $600 to $800 on a powerful custom build for IT related uses, and you can't even run VMware ESXi or Linux it would be foolish.
A custom build will in most cases in its life span be used for a variety of IT purposes not just for Pfsense/FreeBSD.
They say nothing about Linux Compatibility
http://www.intel.com/support/motherboards/desktop/sb/cs-008326.htm
Older discontinued boards did, but not new production boards as listed in the link above.Only conclusion that can be made, is they did not design this board to be used for Linux or FreeBSD it is a generic windows desktop board.
Notes:
Its been a couple of years since I've been in the market for a motherboard… so just out of curiosity I went to Newegg to have a gander at Customer Reviews statistics which I have found to be very useful in the past and more accurate than not. There seems to be some problems with the Intel and SuperMicro boards ..... The Mini ITX may not be the best choice as your choices will be limited. I don't like big packages but a Mico or full ATX might be the best path to find quality.Browsing through some of the Intel Desktop motherboard it seem as though they just might have removed all support for Linux ..... Just a hunch ..... would have to dig into it more to confirm. But if you look at there out of production boards they are supporting Linux Fully or to a limited extent ..... New production boards they mention nothing of Linux ...... If this is true you may have to go to a Server classified board to get full Linux support.
This is not Good at all people, if this wild hunch is true and other manufacture follow suit ..... It might cost you more for a fully compatible Linux motherboard.
-
oh wow…. so this is something to really be cautious about...
so hold of on this build and look for a micro atx setup?
-
I would hold off ….. going on Vacation starting tomorrow so I wont have time to research all motherboard options for you.
There are many knowledgeable helpful people on the forum that can hook you up with a quality board that will be flexible and have minimum issues.
Keep in mind I'm very picky and don't like having to deal with poorly engineered hardware. Its enough of a headache having to deal with buggy open source software ..... add in incompatible/buggy hardware just complicates things even more and could prevent you from doing what needs to be accomplished.
Again, as I was snooping around Intel documents today I found out Intel has dropped all support for Linux on there current desktop motherboards.
Some will tell you O that's no big deal, Linux/FreeBSD runs fine on mine….I assure you Intel has a very good reason for not listing support for Linux on there current production boards.I just don't know enough about what all has changed on these new production boards for Intel to behave like this. So I cant truly judge the risk, so all I can say at the moment is advise you to avoid them all together.No motherboard manufactures wants to claim Linux support anymore >:(
-
Searching for support documents on other brands such as Asus, ASRock, MSI, GIGABYTE …. no one wants to comment to support for Linux any more it seems. Guess thing have changed a bit over the years for the motherboard manufactures.
Still doesn't change the possible Linux problems at hand with the dual nic issue with the (82579LM and 82574L) Worst case scenario most likely would be deactivating the on-board nics and use a PCI-E dual nic card, which would be a wasteful F'd up way to go.....
To make sure you have full compatibility with FreeBSD, VMware ESXi and Linux is to hunt down post in the forums over the web looking for issues.
Brands with Best odds for 99.5% Linux Compatibility
Intel
SuperMicro
TyanGood luck ghendi
Why in the heck are these board manufactures putting two different Ethernet chipsets onboard ???
-
Thanks Clear-Pixel for all your help and research. This was going to be my summer project but it seems like its going to be delayed a bit until more info can be found out. But all this means that it will affect the NAS I was about to start to build since I will be running FreeNAS… I have to find out what's going on. Going to be anxiously waiting for those Intel updates.
Although, maybe a server mobo mini-itx like: Intel DBS1200KPR Mini ITX Server Motherboard LGA 1155 Intel C206 (or Intel's website) and drop the Intel NIC and just use the dual gigabit on the board. That should save also about $150.Edit: It seems after opening up the product's specifications pdf, it has two separate ethernet controllers (82574L and 82579LM) so that would be an issue as well. Instead, it may seem like it's time to move up to the micro-atx boards and go with the SUPERMICRO MBD-X9SCL+-F, which has the same ethernet controllers for both ports. That should be alright with Linux systems, right?
Edit 2:
How about using the X9SCL+-F mobo with the Cooler Master Elite 100 Case for ~$70? That should power everything, keep a nice small footprint, and comes with (FSP150-50LE relabeled as RS-150-FSGA-J3) FSP 150w PSU. Know anything about this?Edit 3: Searched everywhere for the Coolermaster Elite 100, but none left in stock. Anyone know of a similar case, or knows somewhere that is selling it?
-
Whilst I agree that research is a good idea and knowing all you can before spending hundreds of dollars is certainly a good idea I think you might be making more of this than is necessary.
First of all, for anyone who didn't realise yet, FreeBSD is not Linux. I have not seen any reports of issues with FreeBSD and either of those NICs, other than 'packet of death' which is OS independent but doesn't apply here. So in the short to medium term you can be fairly confident of not having problems running either pfSense or FreeNAS.
Intel write their own drivers for FreeBSD and are considered the most compatible NICs to have.
The reason the NICs are different on the DQ77BK is that one supports Intel AMT, not a bad thing.
Steve
