TNSR + pfSense?!
-
Hi all sorry for the noob question.
I have a home pfSense install on a ESXi 6.7.
Basically this install serves my home network and my ESXi VMs (Apache server, Plex, FreeNAS storage, ...)
It’s a supermicro x10srh with Xeon 2699 v4 and 128 GB RAM with a Intel X710 quad nic + chelsio T540-SOThe problem is that I can’t get 10gb switching with it. I assume this is because pfSense is a kernel service and unable to get 10gb with non dedicated gear.
So what I want to accomplish is try to migrate this pfSense to TNSR as my NICs support dpdk+vpp.
As far as I understand I can learn how to get the switching part done with TNSR with a much higher speed and get to 10gb switching.
The only additional service I have in my pfSense box is Haproxy that I use to split inbound connections to my 3 web servers based on website name and also I have ssl offload.
Is there a way to accomplish this same use case with TNSR + any additional software? Or maybe combine TNSR to pfSense so one can deal switching and the other the reverse proxy and ssl offload?
Any suggestions are appreciated.
Kind regards
-
@gelcom Kind of curious why you don't use a switch if what you want is a switch. tnsr is a router not a switch. Yes it can move packets much faster than pfSense on the same hardware but it is still not a switch.
-
@derelict : I once tried using a MIKROTIK CRS 317 to the job but one of the networks I need to bridge is my local IPTV network and MIKROTIK refuses to switch it correctly. The only device I got it working was pfSense with option “Allow packets with defined IP options to pass”.
Now I have all networks working 100% on pfSense and this includes a bridge with IPTV.
-
@gelcom You can certainly create bridged interfaces in tnsr:
https://docs.netgate.com/tnsr/en/latest/interfaces/types-bridge.html
I do not believe I have seen any reports of trying to make IPTV work in that manner, however.
Please report how it goes for you if you try it.
