UK box for home user?
-
-
Any UK chaps got a lead on a small box for a home pfsense for my customers? All the really decent ones seem to be US only (or need to be shipped from the US)
ThanksGet a qotom mini pc and small easy to set up.
-
-
Purchased mine from Amica :-
https://shop.amicatech.co.uk/product-category/hardware/pfsense/
-
Purchased mine from Amica :-
https://shop.amicatech.co.uk/product-category/hardware/pfsense/
Is it not cheaper to build your own or even order a mini pc from China?
-
If nobody bought our hardware there would be no money to pay the developers. Or me for that matter! ;)
Obviously not everyone will (or can) but by buying from us you're directly supporting the project. We appreciate that. :)
Steve
-
If you already have some hardware you can or towards a new build then building is probably cheaper. Otherwise it just depends on what you want to build vs what pre built stuff you are looking at. Generally speaking though you can build a very capable pfsense box for cheap.
-
If nobody bought our hardware there would be no money to pay the developers. Or me for that matter! ;)
Obviously not everyone will (or can) but by buying from us you're directly supporting the project. We appreciate that. :)
Steve
I have my own hardware, and when I first built it I took out a Gold subscription. I may be opening a can of worms, but I'd be quite happy to donate to the project on an annual basis; if everyone who ran thier own hardware did that then you may even get a pay rise! :o
-
If nobody bought our hardware there would be no money to pay the developers. Or me for that matter! ;)
Obviously not everyone will (or can) but by buying from us you're directly supporting the project. We appreciate that. :)
Steve
True, I really appreciate your software and I actively promote it at work.
-
Thanks: I had forgotten about the LinITX boards. What I cannot get my head around is how to assess what the hardware will handle. Is there an idiot's guide that will help me to work this out?
@marjohn56:
And of course the:
https://linitx.com/product/pc-engines-apu2-c4-system-board-with-4gb-ram/14822
-
Really depends on what you intend to do with it. How many users, what packages you might use and what your wan connection speed is. If.you only have 2 users and an adsl connection then an i7 would be an overkill, conversely I think the apu2c4 might struggle with 30 users and and a 300Mbps link.
I run mine for 2 users, there are probably 30+ devices on a vdsl 80Mbps link with pfblocker and.multiple wan IP, works perfectly and I've never seen my CPU load above 10%, that would be me downloading one thing whilst upping another.
-
WAN is 2 x VDSL @ ~50mbbps each (1: TalkTalk Biz and 2: Zen)
If I'm out of the Linitx realm, what would you guess is the next step up? An i3 quad core or something? It seems the costs go up exponentially as soon as you away from the celeron options -
WAN is 2 x VDSL @ ~50mbbps each (1: TalkTalk Biz and 2: Zen)
If I'm out of the Linitx realm, what would you guess is the next step up? An i3 quad core or something? It seems the costs go up exponentially as soon as you away from the celeron optionsGo to EBay, you will find a i3 mini tower for below £150. Get a Intel based dual NIC. That's it cheaper than building.
-
WAN is 2 x VDSL @ ~50mbbps each (1: TalkTalk Biz and 2: Zen)
If I'm out of the Linitx realm, what would you guess is the next step up? An i3 quad core or something? It seems the costs go up exponentially as soon as you away from the celeron optionsGo to EBay, you will find a i3 mini tower for below £150. Get a Intel based dual NIC. That's it cheaper than building.
And ten times the size and many times the energy consumption. Apu2c4 with a 30Gb SSD would cope fine with that
-
Cost and size yes. But at least the OP will not limit themselves if their Internet speed increased.
-
a modern i3 will pull <20W from the wall with that setup.
an apu2 will pull maybe 7-10w.
either one will do 2x50Mbps WAN just fine.
-
Like others have said, almost anything reasonably modern will be good for 100Mbps firewall/NAT.
What starts to be an issue is if you need to be able to fill that with VPN or run havy packages such as Snort or Squid. Even so you will be fine with relatively low end hardware. Unfortunately 100Mbps is pretty much what we're stuck with in UK unless you cough up a huge amount for FTTP. ::)
Steve
-
I definitely want to run squid (and possibly other packages that I am unaware of!) and there are 2 home workers who may well be on vpn all day, with others who may be vpn'ing in at weekends and evenings.
So: what is the next step up from the LinITX box? I don't want to run second hand gear for this customer. Would prefer it to be rackable.
(I need to find a league table of current cpu's, as I have no clue how Atoms, Celerons, AMDs etc stack up against each other - if anyone knows of one please point me)
-
As far as how much CPU you need, a Modern SoC Celeron will do 2x50Mbps WAN, with full time VPN and other packages.
J3355 or J3455 are the latest and greatest and are available in the UK.
You can get a J3355B-ITX SoC with a PCIe slot that will fit an i340-t4.
You'll need a microATX sized J3455 for PCIe slot to fit a multi-port NIC.
So as a baseline those CPUs will work for your needs of VPN, Squid and "other unknown packages", if you want to run an IDS/IPS @ 100Mbps and a VPN concurrently you'll need the J3455 and you'll need to use suricata, not snort for best performance. If you decide on something different keep in mind that modern matters. So don't think that looking back 5 years at a Celeron that has higher clocks/cores is comparable to it's modern day replacement.
-
Sorry - SoC? Soldered-on-chip?