Dell poweredge 1950 and AES-NI

Calvin_baank

Hi all i would like to built a virtualized pfsense server. the poweredge server has a two intel xeno e5410(quad core 2.33ghz).

I would like to know if these cpu’s are compatible with AES-NI required for new 2.5 release and for openvpn.

Thank you

Rico

E5410 released in Nov 2007 so no AES-NI.
AES-NI is no requirement for 2.5 anyway: https://www.netgate.com/blog/pfsense-2-5-0-development-snapshots-now-available.html

-Rico

stephenw10

Yeah, it will run fine but also consume a lot of power and make a lot of noise.

Steve

KLX

@Rico it seems like it WILL be a requirement when 2.5 comes out, not sure if I want to buy a new mainboard and CPU just to run open source firewall..
https://www.netgate.com/blog/pfsense-2-5-and-aes-ni.html

Pippin

Did you look at the date?

KLX

@Pippin Yup as well as the update link at the bottom, still stated that 2.5 will require it, if you have a link stating that it will not be a requirement please share...

Pippin

The link you post is from may 2017
The link Rico post is from march 2019
.....

KLX

@Pippin awesome thanks sir will check it out...thanks.

stephenw10

It will not be required for 2.5 just to be clear.

Steve

Derelict

Dell 1950s are essentially turbine space heaters. Good luck.

JeGr

Can't understand why one would build a new VM server and then use those damn old boxes that suck energy like nothing good and are - as @Derelict correctly states - oversized space heaters. That's simply blowing your money away. Arguing about "not liking to buy a new MB for some OS firewall" but using drop dead old iron hardware with virtualization I'm at a loss of words. Must be fun with spectre and meltdown around those old bricks ;)

stephenw10

Sometimes you gotta use what have.

But I would certainly try to avoid those if I could.

Steve

JeGr

@stephenw10 said in Dell poweredge 1950 and AES-NI:

Sometimes you gotta use what have.

Sure...

But I would certainly try to avoid those if I could.

...but I couldn't agree more. Especially if I'd create a new setup I'd avoid unnecessary hardship - be it power, heat, cost, compatibility issues etc. And getting some "old" bricks, that can do virtualization, have AES support and don't melt your pipes with heating up aren't that hard to get, as many companies are into leasing nowadays and do that on a 3y or 5y cycle to just point out one source. But hey, to each his own :)

jdeloach

@JeGr said in Dell poweredge 1950 and AES-NI:

@stephenw10 said in Dell poweredge 1950 and AES-NI:

Sometimes you gotta use what have.

Sure...

But remember guys, everybody in the world is not making the big bucks like you guys that work for Netgate. They can't afford to buy new hardware every time a new CPU comes out or new build of pFsense to build a home firewall/router.
Looking at the prices Netgate sells it's over priced under powered hardware for, I understand why they pay you all the big bucks. As cheap as memory is and CPUs are, one would think that Netgate's hardware would be built to handle more than one of the addon packages with out overheating and dying prematurely. I, for one, would never buy their hardware because I can build a computer that is more powerful, (more memory, bigger CPU and storage) that is cheaper than buying their hardware whether it's old hardware or new.

stephenw10

I'm sorry you feel that way. If everyone felt like that there would be no project at all.

I fully understand that not everyone can buy new hardware all time. I'm one of those people. I'm lucky enough to have access to new hardware without having to pay for it.
Just be aware that whatever you save by using older hardware short term is going to cost you more longer term. That may or may not pay off.

Steve

dennis_s

I agree that most people do not want to or can’t afford to purchase new hardware as soon as it becomes available. The way technology advances, it just doesn’t make sense.

But I also wouldn’t say the Netgate HW is overpriced…take the SG-1100 for example:

V7 espresso.bin with 4Gb emmc is $79 - The SG-1100 has 8GB emmc
Add in case/heatsink/ps and total comes to ~$100 just in hardware.

Of course, Netgate is a business and needs a little profit on each appliance to make sure we can pay the engineers that advance pfSense and our newest software offering, TNSR. Plus we have to pay the employees to assemble, test, and then ship out each one. On top of that, we have our support engineers that are here to help our customers when they run into problems or offer their assistance for free on places like this forum or Reddit.

So I would say at $160 the SG-1100 is priced quite nicely and the same can be said for all of our other appliances.

Derelict

I don't buy new stuff every day either - but every purchase I make puts power consumption first and noise a close second. Of course it must also have enough power to do the necessary work.

My edge is an SG-4860 - purchased personally a couple years before netgate - probably 5-6 years old.

For people who need even cheaper, a used APU or an SG-1100 is hard to beat, as long as expectations are not unreasonable.

When you compare a new netgate device like the SG-5100 to the chinese stuff it actually holds up pretty well price-wise. Especially considering you are getting a C3000 instead of a celeron.

Haters gonna hate I guess.

jdeloach

@Derelict said in Dell poweredge 1950 and AES-NI:

I don't buy new stuff every day either - but every purchase I make puts power consumption first and noise a close second. Of course it must also have enough power to do the necessary work.

Guys I wasn't trying to start a verbal war about Netgate hardware when I made my comment about that I wouldn't ever purchase it, but come on, 4G of ram in a router now days. These units now days should come with a minimum of 8G for low end devices and the high end units should have 16G of ram. We're not talking big bucks for memory now days. 8G would maybe increase cost $5-10 per unit and 16G maybe $25 maximum in quantities for these units. I read numerous comments from you all that with 4G ram you are pushing it to run Squid and Snort on these units. Also it appears that all these units use passive cooling to cool CPU, etc and then when people use these units in a home environment the CPU runs around 70C plus temperature and you all comment that that is too high, In my opinion these unit should have a small fan like what is in laptop computers. There again only adds maybe $15 to the cost. It would fit perfectly in these units. Now you would have a unit that would not only run more than one package in addition to the core pFsense with out overheating and stressing the surrounding parts due to excessive heat.
From what I read here with folks using the low end devices, you can't run Squid, Snort, pfBlockerng, etc because there is not enough ram plus the unit would overheat and halt.
The person that started this thread was just talking about taking computers that companies were throwing out and putting them to use. Our landfills are full of this hardware now so if we can save some of it and make use of it, that's great.
I am off my soap box now and will NOT make any more comments about this subject. It's been beaten to death already.

stephenw10

I could bang on about low end stuff for weeks, check my first post here for example. But I'm not going to.

Everything has been said that needs to be here. Locking this now before someone says something they will regret.

Steve