USB Nics
-
Read Several topics on USB Nics..
http://forum.pfsense.org/index.php/topic,32885.0.html
being the last one..Was wondering if anyone has found a "reliable" USB NIC lately..
I bought a couple of these
http://www.smc.com/index.cfm?event=viewProduct&cid=9&scid=51&localeCode=EN_USA&pid=285
which work with PfSense 2.0 … but they have the same issue as others have stated
drops etc..The atom based Dell FX160 only has 1 nic, hence my continued search..
rk
-
Instead of using USB NICs i think is better if you go for a managed switch and vlans….
-
@ptt:
Instead of using USB NICs i think is better if you go for a managed switch and vlans….
So I can run my pfsense firewall with only 1 NIC..?
I am game, hate USB Nics..so.. for home use.. what is suggested switch.. ?
also, some links to get me started on the VLAN part..thx
rkEdit:
I found this inexpensive switch…
http://www.wlanparts.com/product/RB250GS/Mikrotik-RB250GS-5-Port-Gigabit-Switch.html
http://gregsowell.com/?p=2063 -
Yes you can have, a firewall with just one NIC, using pfSense 2.0 version
I have done some tests with RB250GS, and seems to works fine…
after finish the pfSense install, when you assign the interfaces, you can create the VLANs.
Lets say pfSense detects your NIC as "bge0" and you will create 4 VLANs ( 100, 200, 300, 400 ).
When prompted "Do you want to set up VLANs now [yes:no]?"
answer yes ( y ), and create the 4 VLANs
at "Enter the parent interface name for the new VLAN ( or nothing if finished )"
set "bge0" ( or your detected NIC driver name )
then set the VLAN tag : 100
repeat the process 4 times till get the 4 VLANs created with the "bge0" as the parent interface for all VLANs
once you finish this, you must asign the interfaces, you will prompted to asign WAN :
here you must select the VLAN that you want:
lets say VLAN 100
bge0_vlan100
after that you will prompted to asign LAN:
lets say VLAN 200
bge0_vlan200
after that you will prompted to asign OPT interfaces:
lets say OPT1 –> VLAN 300 & OPT2 --> VLAN 400
bge0_vlan300
bge0_vlan400
Once you finish, you have:
WAN -> bge0_vlan100
LAN -> bge0_vlan200
OPT1 -> bge0_vlan300
OPT2 -> bge0_vlan400Now you must configure the RB250GS, you need 4 acces ports ( one for each VLAN ) and 1 trunk port ( that connects to the Dell FX160 NIC ).
and "voila", you have a 4 interfaces Firewall
-
I know this will help others..
Thank you.. for sharing.. :)
-
ok.. finally got some time to work on this..
It does work and passes traffic but it is so slow..
I configured the switch based on this example
http://wiki.mikrotik.com/wiki/SwOS/Router-On-A-StickI used only 2 vlans
bge_vlan100 - WAN
bge_vlan200 - LANPort 1 - Trunk
Port 2 - 100
Port 3 - 200
Port 4 - 200
Port 5 - unconfiguredThe performance is unacceptable, but I figure it is a simple config issue that
I am not familiar with…I realize this may now be in the 'wrong' section but I just wanted to follow up here
rk
-
I'm curious how "slow" it is. Do you have any numbers for throughput?
For what it's worth, I am in the same situation looking at a system that only has one NIC. I'm thinking of a USB to gigabit ethernet adapter based on the AX88178 chipset.
In the reviews of this device, once user reports a positive experience using it with pfSense 2.0.
http://www.newegg.com/Product/Product.aspx?Item=N82E16833114046
Considering the relative cost and lack of complexity, (plus news of your slow switch) I'm thinking of at least trying it out.Here you can see my post where I confirm that the FreeBSD drivers for this device are updated in pfSense 2.0.
http://forum.pfsense.org/index.php/topic,42872.0.html -
I'm curious how "slow" it is. Do you have any numbers for throughput?
I will hook it up again.. and post some numbers..
Plan on posting on the MikroTik forum.. I really hope this is just a 'simple mistake'..For what it's worth, I am in the same situation looking at a system that only has one NIC. I'm thinking of a USB to gigabit ethernet adapter based on the AX88178 chipset.
In the reviews of this device, once user reports a positive experience using it with pfSense 2.0.
http://www.newegg.com/Product/Product.aspx?Item=N82E16833114046
Considering the relative cost and lack of complexity, (plus news of your slow switch) I'm thinking of at least trying it out.If you do.. Please post back..
Thx
rk -
ok.. finally got some time to work on this..
It does work and passes traffic but it is so slow..
I configured the switch based on this example
http://wiki.mikrotik.com/wiki/SwOS/Router-On-A-StickI used only 2 vlans
bge_vlan100 - WAN
bge_vlan200 - LANPort 1 - Trunk
Port 2 - 100
Port 3 - 200
Port 4 - 200
Port 5 - unconfiguredThe performance is unacceptable, but I figure it is a simple config issue that
I am not familiar with…I realize this may now be in the 'wrong' section but I just wanted to follow up here
rk
Are you using any other features like Bandwidth limiting and ACLs?
The host processor on the RB250GS is extremely anaemic (50MHz) and connects to the switch module via Fast Ethernet (100Mbit/s). If you activate any of the features that requires processing, then your throughput will obviously drop to fast ethernet in total.
-
Are you using any other features like Bandwidth limiting and ACLs?
The host processor on the RB250GS is extremely anemic (50MHz) and connects to the switch module via Fast Ethernet (100Mbit/s). If you activate any of the features that requires processing, then your throughput will obviously drop to fast Ethernet in total.
I don't believe so…
I left all the other factory settings.. I will double check on this and post back..
Thx
tk
