New Install + Hardware Review
-
Friends,
At the beginning stages of new install and hardware review for my pfSense router. I have googled and searched the forum and had a few basic questions.
PC was given to me - here are specs (not bad)
https://support.hp.com/us-en/document/c05408601HP Pavilion Desktop - 570-p014
AMD A10-9700 (Bristol Ridge) -CPU speed: 3.5 GHz -CPU cores: 4Memory
8GB 1Rx8 PC4-2400t-UA2-11 -Amount: 8 GB - Speed: PC4-19200 MB/sSilicon Power 256GB SSD 3D NAND A55 SLC Cache Performance Boost SATA III
So where my questions are:
Trying to decide if I should go with the following:
PCI-E WIFI 6 CARD or Access Point?
1000gb pci-e nic card or 5 port switch connected to pc mobo?Lastly, what advantages / disadvantages would it be to install pfSense to SSD drive vs. partitioning?
Please advise and Thank You
Dave
-
@tvos said in New Install + Hardware Review:
Trying to decide if I should go with the following:
PCI-E WIFI 6 CARD or Access Point?
1000gb pci-e nic card or 5 port switch connected to pc mobo?
Lastly, what advantages / disadvantages would it be to install pfSense to SSD drive vs. partitioning?Hi Dave,
shortly:
- definitely AP(s), (because the FreeBSD / pfSense wifi driver question is,.......... sometimes it is hard)
2 .this does not work, because pfSense needs a minimum of 2 eth. ports on NIC (WAN / LAN)
(proposal: Intel I340, I350, I210, I211)
minimum storage capacity required only: 16GB, 32GB or 64GB SSD is more than enough and the installer will partition the mass storage
+++edit:
the "iron" is a powerhouse for pfSense anyway, but it will come in handy for: Snort / Suricata, pfBlockerNG-devel and/or for lots of OpenVPN connectionsBTW:
@tvos "install and hardware review for my pfSense router."this is more called NGFW, it is also a router
but that is the correct terminology
- definitely AP(s), (because the FreeBSD / pfSense wifi driver question is,.......... sometimes it is hard)
-
Hello Sir,
definitely AP(s), (because the FreeBSD / pfSense wifi driver question is,.......... sometimes it is hard)
Figured, this would be a better method as that I was reading many people were having difficulties with pci-e wifi adapters vs. AP.
Question - what about Mesh network with pfSense vs. AP?
2 .this does not work, because pfSense needs a minimum of 2 eth. ports on NIC (WAN / LAN)
So I take it that the two ports on the NIC card is reserved for the WAN/LAN (router/cable modem connection)? The other two ports pc, ip printer, etc.. If I wanted to extend the the ports, then need to add a network switch that would connect to the available port from the nic?
Your proposal for NIC card
(proposal: Intel I340, I350, I210, I211)
PCI-E wireless card I purchased: Ziyituod Gigabit Ethernet Card, 4-Port PCI-E Network Interface Card (NIC), PCI Express LAN Adapter Converter, 10/100/1000Mbps RJ45 PCIe
minimum storage capacity required only: 16GB, 32GB or 64GB SSD is more than enough and the installer will partition the mass storage
the "iron" is a powerhouse for pfSense anyway, but it will come in handy for: Snort / Suricata, pfBlockerNG-devel and/or for lots of OpenVPN connections
This is for my home hence, not business platform. In my home where are 30 wireless devices and six static hard line rj-45 connections in the home. I want to utilize VPN, snort, and other packages which attracts me to pfSense. I have been using open source router packages with my tp-link AKA: DD-WRT, Open Tomato and it is time for change.
BTW:
@tvos "install and hardware review for my pfSense router."
this is more called NGFW, it is also a router
but that is the correct terminologyI understand that pfSense can be used as a firewall and router. Wasn't sure how to word my topic but too late to edit.
Thank You for your help and quick response.
tvos
-
@tvos said in New Install + Hardware Review:
Question - what about Mesh network with pfSense vs. AP?
The UBNT mesh system it works beautifully behind my pfSense in bridge mode and affordable.
@tvos "So I take it that the two ports on the NIC card is reserved for the WAN/LAN (router/cable modem connection)?"
You add as many interfaces to pfSense as you want, the minimum is two (WAN,LAN), the rest by default OPT1, 2, 3, 4, etc. called, but you can rename it...(DMZ, WLAN, IoT, etc)
I usually use a 4 ports (with RJ-45 eth.) NIC and use a 4-ports SFP NIC, this is already 8 interfaces, but this is network and segmentation dependent...@tvos " I purchased: Ziyituod Gigabit Ethernet Card"
this was a bad idea as this NIC contains a Realtek ethernet controller and the latter quality of Realtek is poor and not recommended in a firewall...
the forum is full of why not use Realtek based NICs, I wrote above which does not cause headaches and that is Intel based NICs
(I'm not even talking about Realtek driver problems anymore)@tvos "I understand that pfSense can be used as a firewall and router."
It's more like the two together
@tvos "I have been using open source router packages with my tp-link AKA: DD-WRT, Open Tomato and it is time for change."
BTW:
this is very true
these are very important before you enter this world (pfSense)
https://docs.netgate.com/manuals/pfsense/en/latest/the-pfsense-book.pdfhttps://www.youtube.com/channel/UC3Cq2kjCWM8odzoIzftS04A
-
Hello DaddyGo,
I usually use a 4 ports (with RJ-45 eth.) NIC and use a 4-ports SFP NIC, this is already 8 interfaces, but this is network and segmentation dependent...
I'd like to have four rj45 ports reserved for my pc, usb mfc scanner, vivint dvr, and printer. More rj45 ports the better..; -)
So here is a question - I use the two available ports on the pci-e nic, the other two can be reserved for a switch etc or two ip devices if I decide. Is this correct logic?
With this PC that was donated to me, it only has one pci-e bus. So I am at the mercy...;-(
One of the reasons started to think about using m.2 wifi 6 to broadcast the SSID. But as I reviewed m.2 it appears that speed suffers. So I started to look at AP or Mesh.
Another option I have, I still have my tp-link router which I could use as an extender. But I want Wifi 6 and best I can do is Wifi 5 on the router.
Now, how does my motherboard onboard nic come into play? Can I use this connection into from my cable modem and then the pci-e nic for lan connections? And yes, the onboard NIC is realtek..;-)
@tvos " I purchased: Ziyituod Gigabit Ethernet Card"
this was a bad idea as this NIC contains a Realtek ethernet controller and the latter quality of Realtek is poor and not recommended in a firewall...
the forum is full of why not use Realtek based NICs, I wrote above which does not cause headaches and that is Intel based NICs
(I'm not even talking about Realtek driver problems anymore)I ditched this and returning - wouldn't even line it up correctly to the expansion slot...;-( I will definitely go Intel as recommended. Again, appreciate the insight.
Thank You for the links, I will definitely be spending time watching the vids and documentation.
All the best,
tvos
-
This post is deleted! -
This post is deleted!
