Watchguard Firebox M400/M500
-
pfsensefirebox
^I used the freedosbios2 on here, opened the image and extracted the m400 bios and afudos to the image then flashed to the CF. FreeDos boots now. Time to see if it flash.
Edit: I deleted the bios for other watchguard boxes that came with freedosbios2 image and added the m400.rom/afudos, it worked this time. -
All good! Can't thank you all enough. -
Nice. Does it reboot correctly with that CPU? Some do not and there seem to be no clear pattern.
Did you enable powerd/speedstep? That 'T' CPU probably has a bunch of frequency levels.
Steve
-
@stephenw10 I dont think it reboots properly, it halts the system and just get stuck and i have to press the power button to fully shut it off then power on again. I did enable speedstep but i feel like i should just keep it stock for the low tdp.
-
@cakuma said in Watchguard Firebox M400/M500:
@stephenw10 I dont think it reboots properly, it halts the system and just get stuck
Bah. Yeah that's what the others do. Wish I knew why....
Without speedstep enabled in the BIOS and powerd in pfSense the CPU runs at full speed all the time. Though with the available C states it has the actual power/heat savings available are minimal.
Steve
-
@stephenw10 O Thanks for the info, will definitely check bios to see.
-
If that was my BIOS you wrote onto there I'm pretty sure I enabled it by default since it was not unlocked. Only the defaults were changes.
You can see the est lines in the boot messages if it's not enabled:est0: <Enhanced SpeedStep Frequency Control> on cpu0 est: CPU supports Enhanced Speedstep, but is not recognized. est: cpu_vendor GenuineIntel, msr 1fb100001b00 device_attach: est0 attach returned 6 est: CPU supports Enhanced Speedstep, but is not recognized. est: cpu_vendor GenuineIntel, msr 1fb100001b00 device_attach: est1 attach returned 6That's the standard G1820 in the M400.
-
@stephenw10 yep it's enabled.
-
Ah well maybe run some tests with and without powerd enabled and see if it makes any difference. Personally I just like seeing it enabled.
-
I have read everysingle post in this thread (and few hundred in the other watchguard thread).
Based upon Sept 2021 dollars, it looks like to get into a M400 + maybe a memory/cpu upgrade at least $300. How does a pfsense/unlocked bios stock M400 compare with the netgate 3100? I only have 4-5 users in the office (plus about 4-5 cell phones connected too) I love the technical modifications of messing with the M400, but seems like the 3100 is more than enough for me.
Please talk me out of the M400 and to just buy the 3100 :) Thanks!
-
The 3100 is fanless, consumes less power, comes with warranty and is tested on extensively on every pfSense release.
What WAN speed do you have? Might that get an upgrade in the near future?
Steve
-
@stephenw10 said in Watchguard Firebox M400/M500:
What WAN speed do you have? Might that get an upgrade in the near future?
This is the big question for sure in helping to size netgate appliance - with 4-5 users and their toys (cell phones).. Prob a 2100 would be fine as well?
-
I do have 3 Voip devices too. My ISP is only 75 Mbps, my wan is 100Mbps. Sounds like 3100 is plenty. Is the 3100 locked down anywhere? Any proprietary stuff?
-
At those speeds I would look at the 2100 too. It isn't as fast as the 3100 but is arm64 (the 3100 is 32bit) and has 4GB RAM.
Both are ARM devices which means they only run Plus, you can't run CE on them.Steve
-
I am confident about formatting/bootable cf cards, storing bios/flashing bios, adding ssd drives etc.
Other than the 1-2 hours to setup the M400. What are the downsides of me going with the M400? -
@pfsense1921 said in Watchguard Firebox M400/M500:
I am confident about formatting/bootable cf cards, storing bios/flashing bios, adding ssd drives etc.
Other than the 1-2 hours to setup the M400. What are the downsides of me going with the M400?-Power consumption
-Noise
-Heat -
@pfsense1921 said in Watchguard Firebox M400/M500:
What are the downsides of me going with the M400?
Its huge compared to a 3100 or 2100 ;) Sucks way more power that is for sure - and take noisy compared to either the 3100 or 2100 which are fanless.
Since the M400 has been eol for quite some time - I doubt there is any sort of warranty, and while you can prob get pfsense to work on - are you sure there not going to be any issues? With netgate your sure it 100% works..
Nor does the m400 support netgate/pfsense in any way shape or form..
-
@johnpoz said in Watchguard Firebox M400/M500:
I doubt there is any sort of warranty
I guaranty there isn't once you've put pfSense on there.
Of course that's part of the fun.... -
Thanks everyone.
What are the benefits of going with the M400?
-
@pfsense1921 Can not think of 1 to be honest. Other than the tinker factor.. If had it laying around free - ok.. But if yoru going to spend the same amount of money as getting a new netgate appliance anyway.. I would never in a million years go that route.
