Can I use an HP t730 for 1Gb internet and OpenVPN routing?
I've researching a lot, and I ended up finding more questions than answers on the hardware to use for home router. I have come across opinions saying that desktop hardware waste a lot of power. The hardware is low power, but it you'll have problems routing 1Gb internet. If you want to use suricata, you need the fastest CPU you can get, that hardware is overkill, etc, etc. etc.
I want to build my first pfsense router to be power efficient (whenever possible), I want it to handle 1Gb internet and reasonable good VPN connection.
Initially, I was about to buy a used supermicro 5018A-FTN4, but then I found out that the Atom C2xxxx CPUs have a clock signal issue, so I walked away. I've been suggested to go AMD Epyc 3151, but it's too expensive.
So, then I came across the HPT730 thin client, and since it's a lower power processor, I wanted to know if this could be enough for 1Gb internet and OpenVPN routing without struggling. I also thought on getting an used HP pc with a Core i5 6500 or 7600.
Anyone can share their opinion to find out the best option?
reasonable good VPN connection
Depends what you mean by that. VPN is going to be the toughest requirement to meet there especially if it's OpenVPN.
How are you going to be using OpenVPN?
Just routing/firewall/NAT at 1Gbps doesn't require that much CPU. A C2D E4500 will do it for example.
the minimum requirement is two ethernet ports (LAN, WAN)
in this "iron" HP is just on motherboard offers one port eth. (I haven't even found what ethernet controller chip it uses)
with expandable optical connection NIC (Allied Telesis - M.2 f.faktor)
this addon (NIC) is not known to be supported by the version of FreeBSD used
USB network adapters I never use in an NGFW installation - I just note, because I don't see any other expandability for this HP unit
-HP uses rather grumpy, fixed hardware solutions (to protect the brand)
Looks like the HP is setup up with a Realtek NIC (RTL8111HSH-CG), go for Intel PCI NICs and use it for management only.
the forum is full of posts on why not do this:
- Realtek NIC (RTL8111HSH-CG),
this PCIe x8 slot seems pretty unreachable for normal low profile and full height expansion cards:
Ive got these units in several locations all tethered together quite happily using OpenVPN.. All of them with multiple subnets on site.
The one with a 1gig connection does full speed available from the connection as compared to a laptop direct to the modem.. But I use a 4 port card in all of them..
do you need to unmount the NIC front plate for this?
or can be inserted without modifications?
otherwise your "avatar" picture is nice
Do you deal with WISP?
Do you deal with WISP?
I do anything tower related. Though usually bigger antennas.
The card I linked to comes with a half space plate that can be changed out.
thanks for the answer...
I also like big antennas, especially UHF-FM and mobile sector radiating antennas
I built this about 15 years ago
@stephenw10 are you aware of any CPU able to push 1 Gbps OpenVPN traffic in a single session?
Ive been working these things for almost 30 years. Still love the view! We do mainly LMR but dive into most anything that someone needs to be put up. Cameras included..
Sorry for the hijack mhweb..
Ive been working these things for almost 30 years
áhhh, we can be almost the same age...
-I still have the great love of industrial climbing things in my life
no one and nothing can give back the feeling when you can only count on your feet and hands ... hahahha
there is no such....
AMD RX-427BB with AMD Radeon(tm) R7 Graphics
4 CPUs: 1 package(s) x 4 core(s)
AES-NI CPU Crypto: Yes (active)
This is one of mine in service..
@Rico Not anything I have access to.
There probably are things that have fast enough single thread performance to do it.
If we assume it scales we could probably guess at what is required...
I would expect to need a score there of at least 2200 to get close to 1Gbps using AES-GCM in ideal conditions. Which isn't too wild a requirement. More data needed!