Watchguard XTM510 bandwidth max?
-
The 1st generation XTM5 (505, 510, 520 and 530) are all identical in hardware terms and use a single core Celeron 440 CPU. You can very easily upgrade that CPU with almost anything that's up to 65W TDP and socket 775. So that's many Core2Duos some C2Q and even some Xeons.
Even with the original CPU it will easily manage a 100/100 connection of firewall/NAT.
It will run pfSense simply by replacing the CF card. Nothing else is required in terms of bios flashing but it is locked down by default so if you want to tweak anything you would need to flash it.
Do you mean like stacking switches?Have a look through the XTM5 thread and the wiki page if you haven't already.
Steve
-
I mean is there a way to make a switch out of the 6 ports that would LAN designated?
I'm guess that would be a bridge interface?
-
Oh Ok. Yes you can do that with, as you say, a bridge interface.
It's generally accepted wisdom here that it's a bad idea to create a switch out of multiple interfaces. That's because it's usually much cheaper and much faster to use a real switch.
Do you need filtering between the ports?Steve
-
Not really, what I need is a way to protect my iLO interface from public facing internet.
Then I need ports for my server to get general internet access that is all.
Having a separate firewall ruleset for the iLO interface would be good.
-
Your iLO interface is in the same subnet as the server NICs? Does it have to be?
I would put it in a separate subnet on a different interface to isolate it properly and then only allow traffic you need.Steve
-
Do all of the watchguards XTMs come with Cavnium PCI card?
Also is it PCIe or PCI. I want to replace it with a Soekris card or something else if I can find one.
-
I think so, my 505 did so I assume the models higher up the range do also.
It's PCIe BUT the plug-socket arrangement is reversed. The socket is on the card and the motherboard has the 'golden fingers' edge connector which makes it impossible to use without some sort of adapter.Steve
-
Wha?
So the connector for the card is backwards? Its not a little "clip" gizmo.
-
Nope it's not removable. It's like this:
https://forum.pfsense.org/index.php?topic=75417.msg446389#msg446389The card looks like this:
Steve
-
Why Watchguard? Why do you do this to us!
I still have another idea I looking into so I can use that port. I cannot really tell in the picture but that kind of looks like an 8x PCIe bus. Confirm?
-
Don't blame Watchguard it's Lanner's board. :)
Yes it's PCIe 8x. You should be able to use it with a gender changer or some type of riser but I've yet to find one. Which is odd because this arrangement seems common on embedded boards.Steve
