If pfsense a suitable choice?

  • I have a client with a network connected to the Internet through an aging and flaky Cisco 3620.  It's a 50mb/s "burstable" link to the internet, with average sustained output to the internet of about 15-20mb/s (peaking around 40mb/s) and input from the internet of 3 to 10 mbs.  They mostly serve web pages.  They have 6 class C ranges and about 30 or so physical servers.  Currently the Cisco has a very small number of filters in place to block undesirable networks, but not a lot else.

    They're thinking of putting pfsense on a 2.8 GHz Intel box (single core 32 bit) with 4 gigs of RAM and a couple of Intel Pro/1000 cards (because that's what they have laying around).

    Does that sound reasonable to replace the Cisco?  Or should they use something beefier for hardware?


  • A pentium 3 could probably handle that kind or traffic. But that machine should. E able to handle that with ease.

  • Netgate Administrator

    Yes, for firewall/routing duties your suggested system will easily handle a 50Mbps connection. You haven't specified what cpu and there is obviously a big difference between a 2.8GHz P4 and a 2.8GHz i7 (though that isn't single core but you get my point!). However even the oldest 2.8GHz CPU will still be fine although power hungry.


  • After looking at it the BIOS reports the CPU as an Intel Pentium D 2.80 GHz with two cores.  Guess that's plenty.  Thanks for the replies guys.