Need advise for buiding a performant openvpn client dual wan router
-
Hello Everybody,
I would like to build a dual wan router with openvpn client capability.
My choice as far as software is concerned will be pfsense.
I have a 100 mbs download cable connection (6 Mbs upload).
I would like to know if there is a soekris based configuration suitable for my needs.
i tested previously a WNDR3700 (cpu 680 MHz / RAM 64MO) with dd-wrt with openvpn client but i cannot do better than 2MO/s (16 mbs).
If i use a MiniPC with coreI3, it will be able to reach 9.5 MO/s.
I am interrested to know if for exemple a Soekris + PFSENSE should be able to reach the level of throughput.
Any Hw/Sw configuration experience and feedback is welcome.
i hesitate between the new net6501 and net5501 + vpn1411 + pfsense.Thx in advance for your feedback,
Jean
-
For about 100 Mb/s the sizing guide says:
51-200 Mbps - No less than 1.0 GHz CPU
If you want to run packages you'll need a more powerful system, particularly if you want to use OpenVPN.
-
@Cry:
For about 100 Mb/s the sizing guide says:
51-200 Mbps - No less than 1.0 GHz CPU
If you want to run packages you'll need a more powerful system, particularly if you want to use OpenVPN.
I agree. Any advise on the Hw i could use (small factor) if possible ?
Jean.
-
That somewhat depends on where you are in the world and what your budget is, and what other packages you want to use. Also depends on whether you want to buy off the shelf, or build it yourself…
-
@Cry:
That somewhat depends on where you are in the world and what your budget is, and what other packages you want to use. Also depends on whether you want to buy off the shelf, or build it yourself…
It would be a typical dual wan router with basic firewall fonction.
budget is around 500$. I want performance with openvpn client. I have a NAS already acting as OPENVPN server.
i dont want to build my self. I want eith buy a product with PFsense already installed or take a hardware like a Soekris box for example and install PFsense.Jean.
-
I assume that since you didn't mention the country you are from, but used the dollar sign, that you're in the USA?
-
@Cry:
I assume that since you didn't mention the country you are from, but used the dollar sign, that you're in the USA?
Sorry i am in France. Any proposition for a product ?
Jean.
-
See, if I'd made suggestions on what to buy based on what's easy to get in the USA it wouldn't have helped you much ;)
The FabiaTech range is easy to get in Europe, but you won't get the kind of performance you're looking for under €400/$500. Take a look here for some options.
-
@Cry:
See, if I'd made suggestions on what to buy based on what's easy to get in the USA it wouldn't have helped you much ;)
The FabiaTech range is easy to get in Europe, but you won't get the kind of performance you're looking for under €400/$500. Take a look here for some options.
Nice site. Thank you. many choice however i agree, it should not be enough, even probably the FX5622.
In fact ideally, the only way to be sure is to have a feedback from somebody who has already setup the hw + pfsense and can confirm the performance i expect.
i am not going to spend 500 euros if i am not sure it will have the performance i expect.Jean.
-
Then I can highly recommend you take the time to search the forum, you'll find many threads on what hardware people have used and what speeds they have reached. You may even want to ask on the OpenVPN mailing lists, since there you'll get people who can tell you what you need to achieve the bandwidths you want.
-
@Cry:
Then I can highly recommend you take the time to search the forum, you'll find many threads on what hardware people have used and what speeds they have reached. You may even want to ask on the OpenVPN mailing lists, since there you'll get people who can tell you what you need to achieve the bandwidths you want.
I will. thx for your feedback.
Jean. -
I dont know about prices etc in France, but a year ago I built two boxes for a client with the express purpose of a 100mbit site-to-site VPN, for around $500.
I just did a custom build with AMD Phenom X3 processors, and they did just fine– it was probably overkill, as I wanted to be sure they could handle the traffic, and they did very easily. Any modern AMD or intel processor should handle it easily.
-
I dont know about prices etc in France, but a year ago I built two boxes for a client with the express purpose of a 100mbit site-to-site VPN, for around $500.
I just did a custom build with AMD Phenom X3 processors, and they did just fine– it was probably overkill, as I wanted to be sure they could handle the traffic, and they did very easily. Any modern AMD or intel processor should handle it easily.
Thx for your feedback. We have about the same prices in france.
At home i have a CoreI3 and it can do it without anyproblem (asrock vision 3D). However, i want a better solution and not leave the PC on 24/24.
What kind of enclosure/case did you use ?Thx in advance,
Jean.
