Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pfsense embedded with snort and squid

    Scheduled Pinned Locked Moved pfSense Packages
    4 Posts 4 Posters 3.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • 3
      3n1gm4
      last edited by

      I'm using an embedded Pfsense build with the following setup:

      Alix2d13 board
      CPU: 500 MHz AMD Geode LX800
      DRAM: 256 MB DDR DRAM
      3 Ethernet ports
      1 miniPCI expansion slot
      2 USB
      2 GB CF

      I want to experiment with Snort and Squid. Are these packages possible on embedded systems?  If so, can you give me some tips or link me to a guide/documentation that would assist me on this.

      Using a full blown install really isn't an option on a PC or VM isn't an option.

      1 Reply Last reply Reply Quote 0
      • M
        mwastart
        last edited by

        I can't answer your question (I run a full install… not embedded)... but I want to make a comment about your memory selection.  I run pfSense at home with only 3 users and squid + snort use consistently between 3 and 4 GB of memory.  I think you'll have a bad time with only 256 MB of memory.

        1 Reply Last reply Reply Quote 0
        • C
          costasppc
          last edited by

          Snort and Squid are not recommended in embedded installations. You will have memory hogs. Also Squid needs disk space for caching, which is not much in CF card installations.

          Best regards

          Kostas

          1 Reply Last reply Reply Quote 0
          • bmeeksB
            bmeeks
            last edited by

            @costasppc:

            Snort and Squid are not recommended in embedded installations. You will have memory hogs. Also Squid needs disk space for caching, which is not much in CF card installations.

            Best regards

            Kostas

            I agree for Snort.  It can easily consume more than 1 GB of RAM just by itself with a moderate rule set.  I've had some 1 GB RAM virtual machines used in my Snort testing start swapping out to disk with Snort and a full set of rules running.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.