Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Migrating from Fortigate

    Scheduled Pinned Locked Moved Official Netgate® Hardware
    14 Posts 3 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      froussy
      last edited by froussy

      Should be fine for a while with what I mention I want to do (300-500mbits, ipsec, ips..) ?

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Yes, I would not expect any issues at <500Mbps.

        Steve

        1 Reply Last reply Reply Quote 0
        • F
          froussy
          last edited by

          Ok for the XG-7100.. should I have store or memory ?

          What will be the advantage of doing so ?

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            If you're planing to use Squid for wen caching and Snort as IDS the additional RAM and storage would eliminate any concerns. Both can use a lot. Snort in particular can use a lot of RAM.
            It's certainly possible to run both in the default config though. You would just have to watch the RAM use and tune it if it gets too high.

            Steve

            1 Reply Last reply Reply Quote 0
            • F
              froussy
              last edited by

              So to be save, 24gb ram and 256gb m2 ?

              1 Reply Last reply Reply Quote 0
              • stephenw10S
                stephenw10 Netgate Administrator
                last edited by

                An XG-7100 with that specification will no problem at 500Mbps running with Snort.

                Re-reading this though I see you have stated:

                In a normal day, I have around 3000 sessions

                What exactly do you mean by that? 3000 connections? 3000 clients?

                Thousands of clients behind Squid can be an issue.

                Steve

                1 Reply Last reply Reply Quote 0
                • F
                  froussy
                  last edited by

                  no. there is about 50 client behind the firewall (at the main office) and about 10-15 externally connecting by vpn/ipsec

                  By sessions, i mean: (from my fortigate)
                  Capture.PNG

                  I wont run squid.. but just snort (dhcp,dns etc etc)

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S
                    stephenw10 Netgate Administrator
                    last edited by

                    Ah, that should be no problem, with or without Squid.

                    Steve

                    1 Reply Last reply Reply Quote 0
                    • F
                      froussy
                      last edited by

                      Thanks a lot!

                      just placed an order for:
                      XG-7100 1U pfSense® Security Gateway Appliance
                      Crucial 16GB DDR4 SODIMM Additional Memory = 24GB Total
                      256GB M.2 SATA SSD

                      R 1 Reply Last reply Reply Quote 1
                      • R
                        raboud @froussy
                        last edited by

                        @froussy What Crucial memory did you buy and how did it work out? Did you get the SATA ssd from crucial also?

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.