• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

2020 home build or buy?

Hardware
newbie home build
9
22
7.1k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    stephenw10 Netgate Administrator
    last edited by Feb 16, 2020, 3:47 PM

    Ok, at those sorts of bandwidth anything capable of running pfSense 2.4.4 will have no problems even with OpenVPN. Our own SG-1100 would have no problems with that.

    You are not being paranoid IMO. There is no need to open services like that up to general internet probing. Much better to use a VPN.

    Steve

    U 1 Reply Last reply Feb 16, 2020, 9:47 PM Reply Quote 0
    • P
      provels @uSER_717
      last edited by provels Feb 16, 2020, 8:05 PM Feb 16, 2020, 6:37 PM

      @uSER_717 Then just install pfSense on an old PC you have and get a feel for it. And introduce yourself to virtualization. It doesn't have to be an overnight 100% turn-key solution. See the specs of my pfSense in my sig, and that's running on a 10 year-old 12 year-old quad core host on my main workstation. As far as the chicken/egg deal, I see no reason you can't run static addresses, DHCP with static mappings or a mix. Setup your host to power itself up after power outages and set pfSense to auto start. And use a UPS anyway.

      Peder

      MAIN - pfSense+ 24.11-RELEASE - Adlink MXE-5401, i7, 16 GB RAM, 64 GB SSD. 500 GB HDD for SyslogNG
      BACKUP - pfSense+ 23.01-RELEASE - Hyper-V Virtual Machine, Gen 1, 2 v-CPUs, 3 GB RAM, 8GB VHDX (Dynamic)

      U 1 Reply Last reply Feb 16, 2020, 9:29 PM Reply Quote 0
      • U
        uSER_717 @provels
        last edited by Feb 16, 2020, 9:29 PM

        @provels using an old PC for learning is an excellent suggestion. However, i failed to mention i don't really have one. I have an old 32 bit HP compaq tower with pentium 4 in it. My best guess is that i can re purpose a psu (365w max),a couple of hard drives (800 gb), atx case, and maybe an oem cooler/fan. If all that was reusable would a ATX motherboard/cpu combo and NIC card have me set? This would still bring me back to my original question of what i need vs. power consumption (if im going to start buying stuff). you and i already give the power co too much $$$ as it is.

        i mentioned the idea of an old optiplex due to my lack of equipment (buying one that is)...

        1 Reply Last reply Reply Quote 0
        • U
          uSER_717 @stephenw10
          last edited by Feb 16, 2020, 9:47 PM

          @stephenw10 thanks for the piece of mind. do these units have up-gradable network cards etc...?

          while it sounds great to plug and play, i feel as though its not future proof (and i could be wrong). needs may still evolve. everything I've been reading/youtubing point to higher speeds in the near future. Heck, my internet speeds are exponential of what they were about 2 yrs ago. I do like the power saving ARM it includes if it will handle everything as you suggest; and it does appear to have some sort of on-board crypto security features i see...

          1 Reply Last reply Reply Quote 0
          • S
            stephenw10 Netgate Administrator
            last edited by Feb 16, 2020, 11:01 PM

            The SG-1100 has minimal upgrade options. You can't swap out the NICs or add RAM etc. It's designed to be as small as possible. That also makes it cheaper.

            Steve

            1 Reply Last reply Reply Quote 0
            • P
              provels
              last edited by Feb 17, 2020, 1:34 AM

              FWIW, my puny VM handles 300/20 (nominal, 360/25 actual) w/o issue. Get a donor machine from a friend or a thrift shop. They don't all go to the landfill.

              Peder

              MAIN - pfSense+ 24.11-RELEASE - Adlink MXE-5401, i7, 16 GB RAM, 64 GB SSD. 500 GB HDD for SyslogNG
              BACKUP - pfSense+ 23.01-RELEASE - Hyper-V Virtual Machine, Gen 1, 2 v-CPUs, 3 GB RAM, 8GB VHDX (Dynamic)

              1 Reply Last reply Reply Quote 0
              • A
                akuma1x
                last edited by Feb 17, 2020, 2:27 AM

                Agreed, thrift shop, goodwill, Savers, etc. Maybe check at a local computer shop for some refurbished stuff. There’s gotta be something available close to you.

                Jeff

                1 Reply Last reply Reply Quote 0
                • V
                  Vidmo
                  last edited by Feb 17, 2020, 3:14 PM

                  @uSER_717 I hope you have enough horsepower to run Blue Iris. I would worry less about pfSense than I would Blue Iris depending on how many cams you'll be serving.

                  As everyone here has already stated most any hardware will be fine for pfSense, but you have not really stated in detail how you will be using Blue Iris yet, so its hard to know how much you'll need.

                  1. Will you be constantly streaming video from Blue Iris to an outside site? Or will you just need to check into the Blue Iris system from the outside once in a while? Will you be using VPN or not?
                  2. Same question for Plex, will it be streaming to the outside constantly or not?

                  I run both Blue Iris (w/8 HD cams) and Emby on a dedicated bare metal Windows file server, but I only occasionally need to access them from the outside. So my router needs are not that great. I run pfSense on a Supermicro A2SDi-8C-HLN4F based system with a internet connection of 600/25 and its probably overkill for my needs, but gives me some headroom for the future.

                  U 1 Reply Last reply Feb 17, 2020, 5:39 PM Reply Quote 0
                  • U
                    uSER_717 @Vidmo
                    last edited by Feb 17, 2020, 5:39 PM

                    @Vidmo

                    As for BI, I will be using pc specs based on their website (going to deal with that later) . I figure 4 cams @ 3mp max to start, until I get my dream home lol. VPN is a yes. And from what I've read/seen I should be able to achieve this with bi and pfsense? I will only be streaming when alerted or if I can figure out how to integrate a doorbell cam (hopefully BI will have a legitimate option for this in future). I'm not a ring or nest fan at the moment. Oh and plex/emby would be a yr later if I get ambitious (the legatity of that is vague btw) , prob no streaming with that. I don't need my isp charging me more as well.

                    You have 600Mb/s download? I've never heard of that if so.

                    1 Reply Last reply Reply Quote 0
                    • C
                      cyberattackmaps
                      last edited by Feb 19, 2020, 9:00 AM

                      I'm running this 1 (Topton N3160 64GB SSD 4GB RAM) for over a year and I didn't regret it for a moment. Home environment but with a lot of features enabled, including VPN, VLANs, Squid... and I had a streaming server uploading 2Mb/s to youtube 24/7. Had a compatible wifi adapter through the USB connected and that worked as access point. The builtin wifi didn't have the AP feature. But it's recommended to have a seperate AP anyway. Price is still the same, didn't go down. It's not an Intel NIC however. Also no camera's for me.

                      https://www.aliexpress.com/item/32796699099.html?spm=a2g0s.12269583.0.0.552d3932WG7nwF

                      165$, imo not worth to try setup an old laptop or VMware environment to host that. Running an old server or desktop over a year costs me more in electricity.

                      1 Reply Last reply Reply Quote 0
                      • V
                        valnar
                        last edited by Feb 19, 2020, 7:18 PM

                        I have a 200/10Mb cable circuit and run pfSense on a PCEngines APU2C4 (new one is APU2E4). It's more than powerful enough and barely sips electricity. I run Plex through it just fine. It can handle 500Mb+

                        I also have Blue Iris installed on a home server and use the STunnel package to forward/NAT the firewall to it. It works great with the iPhone app. No VPN needed. As far as I can tell, it's secure and I have not been hacked. Just use a very complex password as your phone App will save it.

                        J 1 Reply Last reply Mar 1, 2020, 6:01 PM Reply Quote 1
                        • A
                          akuma1x
                          last edited by Feb 19, 2020, 10:56 PM

                          If we're still talking about hardware, and you're still looking to buy, the HP T730 and the T610 Plus are frequently mentioned as being good pfsense DIY boxes.

                          You have to add network cards to both of them, I believe they only come with 1 stock network port.

                          Jeff

                          U 1 Reply Last reply Feb 25, 2020, 3:47 AM Reply Quote 0
                          • M
                            messerchmidt @uSER_717
                            last edited by Feb 24, 2020, 6:20 AM

                            @uSER_717 I am a DIY build guy. A used PC is fine. Might just have to add a 120gb ssd and some Intel lan cards. For lower spec internet connections, even a p4 or core 2 is fine. Vm works too. You may run pi hole,etc in there as well.

                            U 1 Reply Last reply Feb 25, 2020, 3:58 AM Reply Quote 0
                            • U
                              uSER_717 @akuma1x
                              last edited by Feb 25, 2020, 3:47 AM

                              @akuma1x I think this was the winner for me. I found something similiar to the models u described. Cost more than what I wanted but comes with 4 port INTEL NIC. Based what everyone has been saying I think it should suite my needs and is still mildly upgradeable.

                              1 Reply Last reply Reply Quote 0
                              • U
                                uSER_717 @messerchmidt
                                last edited by Feb 25, 2020, 3:58 AM

                                @messerchmidt I will Consider the pi hole. That is an Interesting tool that I didn't know about.

                                1 Reply Last reply Reply Quote 0
                                • J
                                  johnsonmagnus @valnar
                                  last edited by johnsonmagnus Mar 1, 2020, 6:16 PM Mar 1, 2020, 6:01 PM

                                  @valnar said in 2020 home build or buy?:

                                  I have a 200/10Mb cable circuit and run pfSense on a PCEngines APU2C4 (new one is APU2E4). It's more than powerful enough and barely sips electricity. I run Plex through it just fine. It can handle 500Mb+

                                  Concur. I just installed pfSense on a PC Engines APU2E4. I don't have gigabit fiber WAN yet (currently just 25 Mbps ADSL) but there are plenty of credible reports that the APU2E4 will push 500 Mbps (unencrypted) without optimization, and 950-1000 Mbps with a couple of minor tweaks.

                                  The APU2E4 has a few specs that make it especially pfSense-friendly:
                                  AMD Embedded G series GX-412TC, 1 GHz quad-core CPU WITH AES-NI support.
                                  4 GB of ECC RAM
                                  Up to 120GB internal mSATA (not CF card) storage
                                  3 Intel i210AT ethernet ports. (The i210AT has double the number of transmit/receive queues vs the closely-related-and-more-common i211AT.)
                                  DB9 / RS232 serial console port
                                  2 x USB 3.0 ports
                                  Completely fanless, and very low power draw, around ~6 watts idle ~10W max. Compare that to using a random old desktop or server PC which could draw easily 30W-40W idle, maybe much more depending on configuration.)
                                  Very compact (about 6" x 6" x 1" thick)
                                  Very competitive price point

                                  If you enjoy spending hours to days messing around with random old hardware, trying to figure out whether the ethernet interfaces in it are a) compatible with BSD b) reliable in general c) performant enough to allow pfSense to shine as it should, and mucking around with BIOS-related boot quirks, etc, by all means, dig around in your closet or go to Goodwill or a flea-market.

                                  If you want a smoother, easier pathway to a decent-performing and reliable pfSense community-edition install, go with a well-known hardware vendor with recent good compatibility reports.

                                  1 Reply Last reply Reply Quote 1
                                  16 out of 22
                                  • First post
                                    16/22
                                    Last post
                                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.