Need advice on a pfsense box
-
The hp servers are good, more so if you can get cash back offers on them and pick them up cheaply…
Still a good set of hardware is good and future proof. I don't think I can go with intel cpus their low end to mid end cpus don't support AES which is important to my pfsense build I have in mind, I need something future proof to work with VPNs
well for the moment i think i will go with the haswell build any i3 CPUs or the hp server looks like a total overkill for what i need and i also imagine the server makes loud fan noise which could turn out to be anoying.
i just dont wanna mess up and get equipment that will keep crashing because it's not made for 24/7 stable running (server equipment)The AES support is for:
Sandy bridge: all from i5 up
Ivy bridge: all from i5 up and some i3
Haswell: all except Pentium and Celeronso if you plan to do a haswell build you can just get an i3.
-
And didn't people have problems with SSDs because they started dying after a few months?
Some people have these problems.
The ones who use cheap & crappy consumer SSD.
Very few do have any problems with reliable SSD from reputable manufacturers (think: Intel, Samsung).
Again: Don't choose their bleeding edge consumer series, and don't let yourself fooled by maximum transfer rates
SSD wear is a very overrated problem.well i prefer WD HDDs and i chose the wd red because it's designed for 24/7 operation and 1tb is the smallest they got.
Mechanical hard drives are way more likely to fail than a reliable SSD, in my experience.
I'd believe there might be a greater variance amongst SSD models / manufacturers.
While some bad SSD might be more prone to fail than mechanical HDD, good SSD tend to have lower failure/return rates (than any mechanical HDD). -
well i prefer WD HDDs and i chose the wd red because it's designed for 24/7 operation and 1tb is the smallest they got.
Mechanical hard drives are way more likely to fail than a reliable SSD, in my experience.
I'd believe there might be a greater variance amongst SSD models / manufacturers.
While some bad SSD might be more prone to fail than mechanical HDD, good SSD tend to have lower failure/return rates (than any mechanical HDD).i don't know there are a lot of topics here on how SSD disks have failed, i still think a NAS HDD will last longer since it's designed for that type of use + for the price of a quality SSD i can get 2 HDDs.
-
i don't know there are a lot of topics here on how SSD disks have failed, i still think a NAS HDD will last longer since it's designed for that type of use + for the price of a quality SSD i can get 2 HDDs.
I beg to differ. ;)
From my own job experience.
And from any sane stats that I can find on the internet.well i prefer WD HDDs and i chose the wd red because it's designed for 24/7 operation and 1tb is the smallest they got.
The 3.5" is the smallest 3.5" they got (there's a 750GB 2.5").
By the way, if you're hell-bent on getting mechanical HD from Western Digital ;) and the 1TB is just "the smallest they got", maybe you'd like to consider the WD Re series?
The 250GB Re should be about the same price as the Red - though it is slightly louder at up to 30dba and seems to use a little bit more power, it is advertised as having better reliability - and has the longer warranty to boot:Target market:
WD Red: "Designed and tested for small scale RAID environments / Personal/Small Office Home Office"
WD Re: "Durable capacity storage for high-availability deployments / Medium-Large scale Enterprises"MTBF (hours):
WD Red: 1,000,000
WD Re: 1,200,000Non-recoverable read errors per bits read:
WD Red: <1 in 10^14
WD Re: <10 in 10^16Warranty:
WD Red: 3 years
WD Re: 5 yearsWD Red: http://www.wdc.com/wdproducts/library/SpecSheet/ENG/2879-771442.pdf
WD Re: http://www.wdc.com/wdproducts/library/SpecSheet/ENG/2879-771444.pdf -
i don't know there are a lot of topics here on how SSD disks have failed, i still think a NAS HDD will last longer since it's designed for that type of use + for the price of a quality SSD i can get 2 HDDs.
I beg to differ. ;)
From my own job experience.
And from any sane stats that I can find on the internet.well i prefer WD HDDs and i chose the wd red because it's designed for 24/7 operation and 1tb is the smallest they got.
The 3.5" is the smallest 3.5" they got (there's a 750GB 2.5").
By the way, if you're hell-bent on getting mechanical HD from Western Digital, and the 1TB i just "the smallest they got", maybe you'd consider the WD Re series?Target market:
WD Red: "Designed and tested for small scale RAID environments / Personal/Small Office Home Office"
WD Re: "Durable capacity storage for high-availability deployments / Medium-Large scale Enterprises"MTBF (hours):
WD Red: 1,000,000
WD Re: 1,200,000Non-recoverable read errors per bits read:
WD Red: <1 in 10^14
WD Re: <10 in 10^16Warranty:
WD Red: 3 years
WD Re: 5 yearsWD Red: http://www.wdc.com/wdproducts/library/SpecSheet/ENG/2879-771442.pdf
WD Re: http://www.wdc.com/wdproducts/library/SpecSheet/ENG/2879-771444.pdfThe 250GB Re should be about the same price as the Red - though the first is a bit louder at 30dba and seems to use a little bit more power.
Hmm..weird, didn't look at the MTBF for the HDD-s but it seems low, in that you are right the samsung 840 ssd claims to have MTBF of 1.5 million.
I don't have much experience with SSD disks but i have HDDs that were used a lot and are over 10 years old and they still work without a problem, but they are loud when the head is moving :P
-
i have HDDs that were used a lot and are over 10 years old
So your 10+ year old HDDs have been alive and kicking for longer than SSDs have even been on the market at all?
Well, these sure don't make for a good comparison. ;D
(PS: Just saying… I don't mean this as an argument for or against anything)
-
i have HDDs that were used a lot and are over 10 years old
So your 10+ year old HDDs have been alive and kicking for longer than SSDs have even been on the market at all?
Well, these sure don't make for a good comparison. ;D
(PS: Just saying… I don't mean this as an argument for or against anything)
I probably should of said that They were used in a pc system, so they weren't running heavy 24/7, if they were they would die years ago :)
-
I was thinking of getting the Corsair http://www.corsair.com/cmx8gx3m2a1333c9.html or kingston value http://www.kingston.com/dataSheets/KVR13N9S8K2_8.pdf.
are those any good or should i get a different brand?
-
Regarding my haswell choice and core i3, I think its too costly and not worth myself going down intel route.
An AMD build I can literally pick up the mobo +cpu for under £100 even and can't argue with a 4ghz (65watt) cpu (dual core) with AES Support and 1xpci express 4x and 16x slot. An 364 hp intel quad Nic for £40-50 can be had also from ebay. I will custom build it so its using a large silent heatsink + fan and a silent 92% energy efficient p/s.
Regarding the SSDs, agree with other poster who mentioned intel or Samsung for reliability factor…. many people on forums still selling there ones after 3-4 years.
We can assume in 3-4 years also technology will be so small and energy efficient to the point our current Pc builds require binning ;)
It is tricky to get the hardware right to strike a balance between energy efficiency and price.
One could look at this new haswell/dual nic/100% silent and 35watt build that came out today:
http://www.atlastsolutions.com/fanless-thin-mini-itx-pc-core-i7-haswell-8gb-128gb-ssd-asus-q87t/
But then who knows if pfsense will support those nics, most likely realtek anyhow so best to avoid.
You have this also:
https://www.amazon.co.uk/Shuttle-DS61-Barebone-Socket-SODIMM/dp/B00BFOFA78pfsense works and supports these nics, but then the cpu needs to be put in separate some guys use a celeron low power or xeon but this adds to the cost.
Guess the pfsense builds are endless you just need one and once set up hide it away, you see people on here using p3 and p4 high electricity builds just running 24/7, but they not fussed you get reliability and all the features and support that puts even the best router on the market today to shame (apart from pfsense wireless side, routers still beat it for that)
-
whatever works out for you :)
Personaly i rather stay away from AMD CPUs + you can get a i3+mobo for only a bit over £100 -
You can but not with AES support ;)
I do actually have an core i5 3.2ghz/AES and micro ATX already which would be good for a pfsense build but that cpu is 95watts.
Its that balance once again….
-
One could look at this new haswell/dual nic/100% silent and 35watt build that came out today:
http://www.atlastsolutions.com/fanless-thin-mini-itx-pc-core-i7-haswell-8gb-128gb-ssd-asus-q87t/
But then who knows if pfsense will support those nics, most likely realtek anyhow so best to avoid.
One of those is an Intel i217 and the other is a Realtek 8111G. Neither are going to work with pfSense until it moves to FreeBSD 10.
Do yourself a favor and stick with Ivy Bridge. The slightly lower idle power consumption and slightly better performance per clock of Haswell isn't worth the hassle of compatibility problems.
-
One could look at this new haswell/dual nic/100% silent and 35watt build that came out today:
http://www.atlastsolutions.com/fanless-thin-mini-itx-pc-core-i7-haswell-8gb-128gb-ssd-asus-q87t/
But then who knows if pfsense will support those nics, most likely realtek anyhow so best to avoid.
One of those is an Intel i217 and the other is a Realtek 8111G. Neither are going to work with pfSense until it moves to FreeBSD 10.
Do yourself a favor and stick with Ivy Bridge. The slightly lower idle power consumption and slightly better performance per clock of Haswell isn't worth the hassle of compatibility problems.
or you can just buy seperate nic cards and you don't have to use the onboard one, speaking of which will a pcie x1 nic work in a pcie x16 (graphics card) slot?
-
yes it will work
http://forums.anandtech.com/showthread.php?t=2218693
looking at some benchies the amd cpu I liked is pretty poor performer, so you were right to suggest intel cpus.
May just stick with my core i5 sandy set and transplant to a micro atx case after all :)
Good info on the ivy cpus was not aware of that….
-
well i will go with the pentium, 1150, 8gig corsair 1333 and a ssd, it's more then enough for what i need :)
As for the i5, i don't think it uses a lot when it's not under load.
-
yeah was concerned with the power, but they do not use that much thanks to the speed step and power efficiency :)
Pentium/1150/8gig and ssd sounds great.
-
Sorry to resurrect an old thread but did you has well build work for you? I was looking at building something similar but with an i3 4330t because its 35w with aes-ni.
I'm afraid a haswell board is going to have problems working with pfsense 2.1. it looks like it may be a while before v2.2 comes out.
-
Sorry to resurrect an old thread but did you has well build work for you? I was looking at building something similar but with an i3 4330t because its 35w with aes-ni.
I'm afraid a haswell board is going to have problems working with pfsense 2.1. it looks like it may be a while before v2.2 comes out.
The newer Intel NIC drivers that were included in 2.1.1 have been pulled because they were flaky as hell. I wouldn't buy a Haswell system at this point unless you intend to use only add-in NICs which use an older chip.
-
I would be fine if the onboard NIC is not supported as long as a quad port NIC in a PCI slot would work fine?
As long as a Haswell CPU (preferrably the i3-4330t) would work, along with the board itself, im fine.
Am i wasting my time/looking in the wrong place going the Haswell/i3 4330T route if im not worried about the onboard NIC?
Thanks for your reply.
-
I would be fine if the onboard NIC is not supported as long as a quad port NIC in a PCI slot would work fine?
As long as a Haswell CPU (preferrably the i3-4330t) would work, along with the board itself, im fine.
Am i wasting my time/looking in the wrong place going the Haswell/i3 4330T route if im not worried about the onboard NIC?
Thanks for your reply.
I've setup 2 sets on Haswell using pfSense 2.1. One using the Gigabyte H87M-D3H & one using the Asrock H87M-Pro4.
The Realtek NIC on the Gigabyte works fine in pfSense 2.1.
The latter does have some caveats:
1) Disable AHCI mode on the SATA port or GEOM won't find the disk (I didn't try playing with loading AHCI module).
2) The onboard NIC is an i210 which isn't supported in 2.1.