New Netgate Appliance for IPS/IDS
-
@stephenw10 said in New Netgate Appliance for IPS/IDS:
The 1100 is where you should really avoid heavy drive writes because it can only boot from eMMC.
On everything else you can install an SSD and recover should you have a drive failure.
The actual number of drive failures we see is far lower than you might expect from calculations like that though. Actual writes to the flash are significantly lower than the write data to the drive it would seem.
Steve
That's good to know - I was wondering if one could expect the box to continue to work if the eMMC was dead. That does make it less catastrophic (unless you are a SG-1100 owner)
-
@keyser said in New Netgate Appliance for IPS/IDS:
assumptions
I double checked and it turns out that router booted a couple hours ago, so it may not be great to extrapolate. Sorry about not noticing that.
The other 3100 (40%) is 3 days 7 hours uptime and:
device r/s w/s kr/s kw/s ms/r ms/w ms/o ms/t qlen %b flash/sp 0 0 0.0 0.0 7 0 0 7 0 0 mmcsd0 0 0 0.5 29.1 2 7 0 7 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 md0 0 0 0.0 0.0 0 0 0 0 0 0Probably would be better to wait a few weeks and do the math. :)
-
@steveits said in New Netgate Appliance for IPS/IDS:
@keyser said in New Netgate Appliance for IPS/IDS:
assumptions
I double checked and it turns out that router booted a couple hours ago, so it may not be great to extrapolate. Sorry about not noticing that.
The other 3100 (40%) is 3 days 7 hours uptime and:
device r/s w/s kr/s kw/s ms/r ms/w ms/o ms/t qlen %b flash/sp 0 0 0.0 0.0 7 0 0 7 0 0 mmcsd0 0 0 0.5 29.1 2 7 0 7 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 md0 0 0 0.0 0.0 0 0 0 0 0 0Probably would be better to wait a few weeks and do the math. :)
Yes, a long uptime would be much better. Those numbers posted with this box is more in line with the 11 - 12Tb Write endurance I guesstimated for the 8GB eMMC.
-
Thanks, everyone, for all the information. It appears things would be much easier to use a VM or PC to run pfsense. Is there an advantage of using an appliance besides support?
-
@blaytrail The appliances would usually use way less power than a hardware PC. For a VM it probably won't add much to power usage on the server, but VMs are more complex to set up and isolate the different interfaces.
@keyser I'm going to take our conversation to that eMMC thread.
-
Everything seems to be fine here with 22.01 in a SG-3100, pfblockerng running.
extended device statistics device r/s w/s kr/s kw/s ms/r ms/w ms/o ms/t qlen %b flash/sp 0 0 0.0 0.0 8 0 0 8 0 0 mmcsd0 0 2 1.9 46.1 1 5 0 4 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 mmcsd0bo 0 0 0.0 0.0 0 0 0 0 0 0 -
@mcury And what does the mmc program tell you for the life? Might be best to reply in that other thread as I feel we're digressing a bit off this one...? I don't want to hijack the original question.
-
@steveits said in New Netgate Appliance for IPS/IDS:
@mcury And what does the mmc program tell you for the life?
You mean mmc-utils package - pkg install mmc-utils ?
I'll check then update the other topicMight be best to reply in that other thread as I feel we're digressing a bit off this one...? I don't want to hijack the original question.
You are right... Won't polute this anymore :)
