Hardware recomendations
-
@stephenw10
At the moment 500Mps download and 50Mbps upload without VPN. Previously I was using Netgear XR500 under dd-wrt with the OpenVPN client and the speed was terrible, that is why I started to look for something else. Unifi looks cool but the functionality of their gateways is far from 2021(have switches and APs from Unifi). -
Both are fine even to me. If they run in a quiet environment (i.e. not in a dedicated room) consider the noise aspect. I had to replace all fans with noctuas in order to be compliant with my environment requirements.
-
@psp
Thank you for your reply. Noice is not an issue for me as everything is in the attic at the moment, but want to move everything in the garage under the house because it could be quite hot in the attic during summertime. -
The OpenVPN performance will be much better on the 9D. You will hit a limit on the C3558 at less that 500Mbps over OpenVPN as it's single threaded.
Both will easily carry 500Mbps just firewall & NAT.Steve
-
@stephenw10 could you elaborate more on this, what max speed over OpenVPN could be handled by C3558 approximately?
Encryption Cipher: AES-256-CBC
Hash Algorithm: SHA-512 -
found this nice review of SG-5100 speed over VPN with different ciphers.
Looks like the answer to my last question is ~200Mbps
While my intel nuc with i5-4250U CPU manages ~285Mbps
That is strange indeed.
I guess IKEv2/IPSec should be faster -
Yes, IPSec is faster as is WireGuard. Bother are less flexible that OpenVPN but if you have a sute-to-site tunnel that doesn't matter too much.
Steve
-
Small update. I decided to buy this 5019S-L
and Intel Xeon Processor E3-1220V6
It is not as expensive as mentioned earlier products, but more powerful :) -
-
Small update. Bought 5019C-FL, installed xcp-ng, and pfsense. Having pfBlockerNg, nordvpn for some vlans and VPN server. Everything runs as expected. I'm overexcited with pfSense after dd-wrt:)