Opinions Needed SSD vs HD vs CF
-
Thanks. How do you monitor the swap file? Also, would i need to SSH or be at the console to enable trim?
Try 'status –> dashboard', there's a nice bar chart for swap and memory in the 'system info' widget.
Yes, you need a shell prompt for the console commands. And of course, the re-boots in steps 5 and 11 still needed too; I shouldn't have implied you could skip them.
-
thanks so much
-
I'm one of the pfSense users who has had a couple of SSD failures… Pretty sure it wad due to buying cheap SSD's though. I haven't had a problem since I put in a quality SSD (Intel). Likewise, TRIM support in 2.1 will help
-
Would you recommend CF nano install over SSD? Or did you ever go back to HDD?
-
CF is great if you have a CF slot already in your box, it's cheap and easy. But… I would only ever run the Nano variant from CF.
There are people running a full install from a flash drive but I personally don't think it's worth the risk.Steve
-
I have been running the nanobsd install for months with a limited snort rule set and it appears to be fine? any thoughts? the nanobsd install is read only correct?
-
Probably good to go then. ;)
As I said it's been a while since I had that trouble (it couldn't fetch new signitures as I recall).
NanoBSD is mounted read-only, correct.Steve
-
I just want snort mainly for the port scanning blocking at WAN. Is anyone else hesitant to do the 2.1 upgrade for nano given the apinger issue? Doesn't seem like it's been resolved either. I can't use openvpn with 2.1 nano.
-
I am running 2.1 Nano on all my boxes. I have not seen any problems with apinger, I am using OpenVPN on at least one box.
Steve
-
Do they have static IPs for WAN? Both boxes I did the 2.1 upgrade via the dashboard and openvpn crashes out frequently. I read somewhere it has to do with apinger. not sure, regardless I can't see to get 2.1 nano to work with openvpn and dhcp.
-
PPPoE and DHCP. Neither box running OpenVPN sees much traffic but I've not seen any errors nonetheless.
Steve
-
Did you do the in place upgrade or install from scratch? Is it the VGA nano version?
-
Mostly upgrades but some fresh images. They are all standard Nanobsd using the serial console.
Steve
-
mine are all vga. can you install a serial console version, if you assign one of the interfaces as a serial port? probably not right? are you using the alix board? i just did a fresh install of 2.1 vga and vpn / apinger is working fine now. i'll keep you posted to see how it goes.
-
No the serial port has to be a real serial port, it's hardcoded into Nano when it's built.
I'm using all re-purposed Watchguard boxes.Steve