Official total routing capacity numbers for pfSense in Netgate an other HW?



  • I'm looking for official numbers for total routing capacity for various HW environments, and how this depends on various settings in pfSense.

    I'm a total newbie, so please be patient.

    We're a condominium in Stockholm, of 348 users. We share a single delivery of network capacity, currently of 2Gbps, soon to go up to 10Gbps.

    We'd like to be able to trust that entire cap to be shared in a fair manner, and having that entire capacity available at all times.
    I e if 20 tenants start a download at the same time, the aggregated speeds should add up to fairly near 2Gbps.
    So, are there any official numbers for total routing cap?



  • Yes there are on the Netgate pages. Basically, it's almost never bandwidth that is the issue, but more packets per second, packet sizes and filtering options. If you have a very big fat chain of Snort / Suricata / NAT / pf / manipulation rules, that's going to have a serious impact.

    If you only do routing, or maybe just basic NAT, that's a totally different story.

    Take this thing for example: https://store.netgate.com/pfSense/XG-1541.aspx

    Maximum Active Connections: 16,000,000 (32,000,000 with 32 GB RAM)

    That means your 348 users can make about 90000 connections each. That's basically 90 PC's connected at the same time. Per user.


  • Galactic Empire Netgate

    @n3mmr:

    I'm looking for official numbers for total routing capacity for various HW environments, and how this depends on various settings in ofSendmse.

    I'm a total newbie, so please be patient.

    We're a condominium in Stockholm, of 348 users. We share a single delivery of network capacity, currently of 2Gbps, soon to go up to 10Gbps.

    We'd like to be able to trust that entire cap to be shared in a fair manner, and having that entire capacity available at all times.
    I e if 20 tenants start a download at the same time, the aggregated speeds should add up to fairly near 2Gbps.
    So, are there any official numbers for total routing cap?

    As johnkeates points out, those are the specifications we currently offer. We don't offer more detailed stats on our website because we feel it would not be correct. If you are interested in purchasing our device, our sales and support will ask for more information about the environment in which you intend to deploy our device, your requirements and make a recommendation based on that.

    Our own Jim Thompson has worked on Network Performance Analysis for FreeBSD along with George Neville-Neil, explaining how benchmarks are hard (unless you're a marketing department). I suggest you check it out https://youtu.be/LE4wMsP7zeA