Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Shearching return of experience

    Scheduled Pinned Locked Moved General pfSense Questions
    14 Posts 4 Posters 4.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      billou
      last edited by

      Hi,
      I'm configuring pfsense on a wired network who, at last, may be have 2500 users.
      And I wonder on the fact that pfsense is able to support so much users.
      That's why I shall like knowing if somebody else has already configure pfsense with so much users or if it's not possible and if I'm obliged to foresee multiple servers.
      I shall like knowing also if someone can inform me about the architecture spécification of the server for this use or for an architecture that has been implemented and with which server's specifications.

      1 Reply Last reply Reply Quote 0
      • Y
        yoda715
        last edited by

        pfSense should not have any problems handling this amount of traffic, provided that you give it the appropriate hardware ;).

        1 Reply Last reply Reply Quote 0
        • B
          billou
          last edited by

          thanks for your response  :D :D
          Any idee of the hardware to use?? lot of memory ,of cpu I think but In what proportions?

          1 Reply Last reply Reply Quote 0
          • S
            sai
            last edited by

            whats the bandwidth you have?

            1 Reply Last reply Reply Quote 0
            • B
              billou
              last edited by

              I've 100mb/s of bandwidth …

              1 Reply Last reply Reply Quote 0
              • H
                hoba
                last edited by

                Get good nics (like intel) and a board with a fast PCI-Bus. Depending on encryption needs if you plan to run IPSEC tunnels you need a more or less Powerful CPU. 1 GB Ram should be more than enough (however that depends on the packages that you want to run additional to the base install).

                1 Reply Last reply Reply Quote 0
                • B
                  billou
                  last edited by

                  okey and you're sure that one own server can support 2500 users (Of which has little near 1000 at the same time) ??

                  1 Reply Last reply Reply Quote 0
                  • H
                    hoba
                    last edited by

                    I would think so unless you want to run additional packages on the firewall itself which might not be a good idea (depending on the package und usage).

                    1 Reply Last reply Reply Quote 0
                    • B
                      billou
                      last edited by

                      I'm just using squid to redirect my lan trafic to another proxy

                      1 Reply Last reply Reply Quote 0
                      • H
                        hoba
                        last edited by

                        You can do this by a simple portforward. Squid is not neccessary for this.

                        1 Reply Last reply Reply Quote 0
                        • B
                          billou
                          last edited by

                          maybe but I need squid access.log file to keep traces of my users navigation…

                          1 Reply Last reply Reply Quote 0
                          • Y
                            yoda715
                            last edited by

                            I would say that one server should be able to handle this load. Make sure to get a server with a 64bit pci, at least 1gb ram, possibly 2gb, and dual cpu's.

                            1 Reply Last reply Reply Quote 0
                            • B
                              billou
                              last edited by

                              I would like to know if using multiple pfsense servers don't raise any problem??I think to this architecture like a potential solution because I need to separate the differents sites of my network with proper's dhcp range…

                              1 Reply Last reply Reply Quote 0
                              • H
                                hoba
                                last edited by

                                Use one system for everything and add a failoversystem if needed. You can setup individual DHCPs for each interface and seperate networks by firewallrules where needed.

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.