Home Office Build Suggestions
-
All,
I currently have PFsense virtualized on an VMWare ESXi box, but I would like to move it over to its own hardware.
My current VMWare ESXi server consists of:
-
SUPERMICRO MBD-X9SCL+-F Micro ATX Server Motherboard LGA 1155 Intel C202 DDR3 1333
-
Intel Xeon E3-1230 Sandy Bridge 3.2 GHz 4 x 256KB L2 Cache 8MB L3 Cache LGA 1155 80W
-
Kingston 16GB (4 x 4GB) 240-Pin DDR3 SDRAM ECC Unbuffered DDR3 1333 (PC3 10600)
-
Quad Port Intel Gigabit NIC
-
Supermicro 1U Case
I could either buy new hardware for the router, or use what I currently have as my pfSense box and use the new hardware for the ESXi box.
I am leaning towards a Supermicro c2758 build (5018-FTN 4) or a PC Engines apu2c4.
Here is my situation.
-
My home connection is 60/10
-
I would like to be able to use OpenVPN and AirVPN/PIA for all of my outgoing connections
-
I know almost any hardware can saturate a 60/10 line even with OpenVPN. However, I would like this to be running for at least 5 years and I assume my connection will grow significantly over that time. (Or I just buy cheaper hardware for now and upgrade later?)
-
Snort/Suricata, pfblocker, moderate VLAN routing, etc.
-
I really like a 1U case, but I could use another case on a 1U shelf provided it is pretty thin
-
I really like IPMI on my Supermicro board, but it is not a need
-
My rack is mounted in a closet near the master bedroom so I would like it to be quiet and run cool since the ventilation isn't great in the closet.
Is the c2758 is serious overkill? The apu2c4 seems like a really good value. I could use the C2558, but it seems silly not to spend the money for the extra cores. It also seems silly to not get something that supports AES-NI and QuickAssist if it is just a little more. Or should I just use the new hardware for ESXi and the old hardware for pfSense?
I have reached analysis paralysis and could use some help.
-
-
I suggest: Get the APU2C4, save the extra bucks then maybe after 2 years later you can get another cheap & decent hardware as an upgrade to your existing firewall
-
Get the APU2C4 for pfSense and a Cisco SG300-10 for the VLAN routing and QoS on top!
-
@BlueKobold:
Get the APU2C4 for pfSense and a Cisco SG300-10 for the VLAN routing and QoS on top!
Do you know what throughout I can get on the APU2C4 using OpenVPN? I saw the thread you posted at https://forum.pfsense.org/index.php?topic=106444.0 but I didn't know if any numbers were available.
I have a Netgear 728TPP. I haven't been real pleased but I need at about 18 ports and several of them are POE. I would love to get a SG300-28P, but they are pretty pricey.
-
If you have the money, I would recommend you go for the C2758. It will definitely last you 5+ years given the WAN speed remains under 1 gigabit.
-
I have a Netgear 728TPP.
Can you please link me to that switch model from Netgear I couldn´t find it over Google.de
If you have the money, I would recommend you go for the C2758. It will definitely last you 5+ years given the WAN speed remains under 1 gigabit.
On one side this might be right, but in another thread here in the forum there was talked about
the really poor inter VLAN routing speed or power of that board too. And if this may be important
for him, because he owns not a real Layer3 switch what is able to route between the VLANs with
nearly wire speed, its worth to talk about. -
@BlueKobold:
I have a Netgear 728TPP.
Can you please link me to that switch model from Netgear I couldn´t find it over Google.de
http://www.netgear.com/business/products/switches/smart/GS728TPP.aspx
It is a L2, L3 "Lite" switch that I believe does support VLAN routing. The Web GUI is awful and if you click on certain options I get locked out and have to to back to the initial login screen to navigate. It also gets very warm and is the loudest thing in my rack. But it does support 24 gigabit ports, POE, and 1U configuration.@BlueKobold:
If you have the money, I would recommend you go for the C2758. It will definitely last you 5+ years given the WAN speed remains under 1 gigabit.
On one side this might be right, but in another thread here in the forum there was talked about
the really poor inter VLAN routing speed or power of that board too. And if this may be important
for him, because he owns not a real Layer3 switch what is able to route between the VLANs with
nearly wire speed, its worth to talk about.My home is just my wife, our toddler, and I. I don't think I would be doing heavy VLAN routing with the exception of maybe video. I plan on setting up IP cameras and a NVR. In the NVR I could use two NICs in the NVR so that one is on the VLAN of the storage server and the other is on the VLAN where the cameras are located. That would negate the routing from the pfSense router or the L3 switch. We also watch movies, but really no more than one movies at a time. The toddler doesn't get screen time yet.
-
@BlueKobold:
I have a Netgear 728TPP.
Can you please link me to that switch model from Netgear I couldn´t find it over Google.de
http://www.netgear.com/business/products/switches/smart/GS728TPP.aspx
It is a L2, L3 "Lite" switch that I believe does support VLAN routing. The Web GUI is awful and if you click on certain options I get locked out and have to to back to the initial login screen to navigate. It also gets very warm and is the loudest thing in my rack. But it does support 24 gigabit ports, POE, and 1U configuration.@BlueKobold:
If you have the money, I would recommend you go for the C2758. It will definitely last you 5+ years given the WAN speed remains under 1 gigabit.
On one side this might be right, but in another thread here in the forum there was talked about
the really poor inter VLAN routing speed or power of that board too. And if this may be important
for him, because he owns not a real Layer3 switch what is able to route between the VLANs with
nearly wire speed, its worth to talk about.My home is just my wife, our toddler, and I. I don't think I would be doing heavy VLAN routing with the exception of maybe video. I plan on setting up IP cameras and a NVR. In the NVR I could use two NICs in the NVR so that one is on the VLAN of the storage server and the other is on the VLAN where the cameras are located. That would negate the routing from the pfSense router or the L3 switch. We also watch movies, but really no more than one movies at a time. The toddler doesn't get screen time yet.
Cool Switch (GS728TPP) from Netgear, then I would let it routing the VLANs it selfs and you can also go with
the smaller APU2C4 for that WAN Speed.I am leaning towards a Supermicro c2758 build (5018-FTN 4) or a PC Engines apu2c4.
But if oyu want to install more packets and you will need more horse power for the entire system (pfSense)
you should also be fine with the Supermicro C2758 variant. Its small, power saving and fast on top.