Help on cheap build…
-
Okay… How about this build ?
http://pcpartpicker.com/user/Amendolaro/saved/tMsxFT
-
@BlueKobold:
My main reason for the build will be to run OpenVPN for the whole network. Everything that connects wi be under vpn. I would ultimately love for the box to be as small as possible. I have a 100mb/20 line and wants to max it out.
You want to max out the 100/20 MBit/s line but the pfSense hardware should be the tiniest you
can get hands on? Hm, as I see it right you can get a $30 used router and flash him with DD-WRT
or OpenWRT to get your OpenVPN running as I see it right there is nothing in the price comparison
that beats a set up like this, but if you want to go with pfSense and related to your Internet connection
speed I would be prefer to get a device that can also handling the Internet connection right.My main questions of course are:
What's the monthly/yearly cost of running these vs an actual router?
There are routers out there that are alsoi using much of electric power and often more
then a small self made appliance for sure and vice versa there are also many alliances
that needs many more power then a consumer great router like a Netgear or D-Link.But this is like viewing only with one eyes on the situation, owed to the circumstance
what pfSense is really able to serve and what a consumer router is able to do.I would at his day have a closer look on two devices, Alix APU based platforms if
VPN is not the entire goal and angle point in the game and a Intel Atom C2000 SoC
based device that is beating them all in VPN, speed and power consuming.
C2558 is <14 watt
C2758 is <20 wattBut both comes with AES-NI and intel QuickAssist.
What build do you recommend and how do I wireless to work? (Switch coming off 2nd nic connected to a home router in access point mode?)
Ok to be really truth I think you can get the most benefits from pfSense by;
- Intel CPU
- Intel NICs
- No WLAN
But this is no matter as you where telling you are using a WLAN AP or router in AP mode
this would be fine as I see it right and matching the Captive portal of pfSense really.The pfSense store offers also some nice boxes based on the above chips and brands
but they are also comming woth 3 miniPCIe slots + 1 SIM slot for mSATA, modem and
WLAN cards so it could be an ideal choice for many years.Existing routers with DD-WRT….I don't think there is any capable to handle 100M VPN speed.
ALIX, the Geode LX actually has hardware encryption so the VPN performance is not bad. -
I think that last CPU you listed should keep pace pretty well.
I'd not use the syba NIC though. I'd use a Intel chipset 1000 pro of some sort with PCIe interface and dual NIC ports.
-
okay was able to find the Intel pro 1000 dual port. If I'm using the on board nic do I need a dual nic on top of that? Sorry for the noob questions
-
Probably not but the Intel NICs are usually better.
-
I thought this was supposed to be a "cheap build". :-\
-
When you build a pfsense box, unless the goal is just to learn and play you should probably have a list of minimum specs in mind, otherwise it will cost you. You pay for internet service and certain speeds and if the minimum spec doesn't meet your requirements for something like openvpn then every month you are paying for bandwidth you can't utilize.
So price, while important shouldn't be all important.
-
Existing routers with DD-WRT….I don't think there is any capable to handle 100M VPN speed.
But cheap and OpenVPN is given.
ALIX, the Geode LX actually has hardware encryption so the VPN performance is not bad.
The chaepest complete Bundle I can get here is 158 €
- ALIX.2D13 Board
- Alix case and PSU
- 4 GB Industrial CFCard
And the cheapest offer for an Alix APU Bundle is at 187 €
- Alix APU 2 GB
- Case and PSU
- 16 GB mSATA
So then I would preffer to go with the Alix APU platform.
I thought this was supposed to be a "cheap build".
Me too! Cheap, OpenVPN, 100 MBit/s Internet line
When you build a pfsense box, unless the goal is just to learn and play you should probably have a list of minimum specs in mind, otherwise it will cost you.
Surely this is right, but then each Intel Atom platform in miniITX format for 80 € - 100 €
should do the job in my eyes. -
ALIX.2D13 Board is definitely not going to cut it for him.
It would make a good Client + Firewall to his machine but not the server with his bandwidth wants/needs.
-
Well if $200 is too much in your eyes what do you all recommend part wise?
-
Its your thread. You are the one who decides whats too expensive or not.
-
Looking around I fell into another thread that linked me to
http://m.newegg.com/Product/index?itemnumber=N82E16856205007
Barebones, I have a hdd so I just need some ram. Any insight?
If you think this is fast enough would u say 2gb or 4gb ? Again only used for routing and openvpn -
This one won't cut it. The last one I said was probably ok is probably ok. (-:
-
Okay I reconfigured it to be all from Amazon so I can have it shipped in 2 days for free via prime… Can you check me one last time :) also, I'm a little concerned if the dual nic will fit with this mobo/case
http://pcpartpicker.com/user/Amendolaro/saved/mMzj4D
-
Disk controller JMicron JMF661 - :'(
Have you seen anyone have successful install with the mobo you have chosen?
-
I honestly didn't think it mattered.. Sorry.. What should I shoot for ? Use same mobo from the original build I made ?
-
Not a fan of A-Data
First USB flash drive I ever bought was one of their 16 GB devices. It only lasted a couple of months. RMA'd and the replacement lasted only a few months as well. Both where light usage (back up of music and documents). Very little writing. Those are the only two USB flash drives I've had die unexpectedly. The only other one was a PNY running pfSense. It lasted about a year with doing a beta upgrade or two a month. So that one was expected.
Personally I will not buy any A-Data products (unless forced to by no other choices).
-
Thanks! I will change that now. Better performance going ssd than hdd for just pfsense?
-
I actually just Checked the first buildand it's the same mobo.. If you don't like that controller what do u recommend ?
-
What about this board?
Has built in Celeron quad j1900 with dual nics
http://m.newegg.com/Product/index?itemnumber=N82E16813128698
-
What about this board?
Has built in Celeron quad j1900 with dual nics
http://m.newegg.com/Product/index?itemnumber=N82E16813128698
Read the reviews. J1900 boards seem to often have BIOS issues. This was one of the prominent ones.
-
Yea just read some, was coming back to modify my post before u replied lol… Agh this is a pain lol
-
What you can do is read through the ratings and customer feedback for whatever mobo you are considering and see if those customers had an easy, pleasant and reliable pfsense install. I have a j1900 and its abit buggy when it comes to boot disk selection. It often likes to switch on you if you plug anything new into it.
-
Looking now but a lot of talk about people considering using but can't find any confirmation … Still looking
-
Well if $200 is too much in your eyes what do you all recommend part wise?
http://www.ebay.com/itm/Igel-5-4-4210LX-Winestra-Running-Untangle-10-2-Firewall-Router-/141458051424?pt=LH_DefaultDomain_0&hash=item20ef8e9160
It also runs pfSense pretty solid, plus has hw crypto acceleration which really boosts OpenVPN (tested: https://forum.pfsense.org/index.php?topic=45430.0 with pfSense 2.2-release: https://forum.pfsense.org/index.php?topic=45430.msg481353#msg481353). -
good thread, amendolaro. have you made a final decision yet?
kejianski: thanks for being so helpful
-
Well if $200 is too much in your eyes what do you all recommend part wise?
http://www.ebay.com/itm/Igel-5-4-4210LX-Winestra-Running-Untangle-10-2-Firewall-Router-/141458051424?pt=LH_DefaultDomain_0&hash=item20ef8e9160
It also runs pfSense pretty solid, plus has hw crypto acceleration which really boosts OpenVPN (tested: https://forum.pfsense.org/index.php?topic=45430.0 with pfSense 2.2-release: https://forum.pfsense.org/index.php?topic=45430.msg481353#msg481353).robi: is this meant to be an "as cheap as possible" alternative?
-
yes.
If somebody doesn't have/need for higher bandwidths than what's benchmarked in my linked post, it's a rock solid piece of hardware.