Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Thoughts on this possible hardware purchases?

    Scheduled Pinned Locked Moved Hardware
    26 Posts 7 Posters 4.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      asterix
      last edited by

      That WAN throughput is a walk in the park for an Atom. Packages would run just fine on it. Just ensure you fine tune Squid and Snort to how you like them to behave and keep an eye on page loads and download times.

      Let us know how it all worked out ! :)

      1 Reply Last reply Reply Quote 0
      • D
        drew27c
        last edited by

        My internet connection is a measly 5/0.5 ADSL

        The business park we are in has oooooolllld infrastructure and there is literally zero other option for our connection.

        1 Reply Last reply Reply Quote 0
        • K
          kejianshi
          last edited by

          Have you considered transmitting wifi from a 4G phone to your pfsense.  It might be alot faster…  haha.

          (Kidding - You would no doubt eventually get throttled).

          Yeah - Any old dual core atom can handle this.

          1 Reply Last reply Reply Quote 0
          • C
            coolspot
            last edited by

            @arch113:

            @stephenw10:

            The board in that box, the Intel D2500CCE is well tested and written about here on the forum. You would have no issues running it but it probably won't like all those pakages. It depends on what bandwidth you are expecting it to handle. 2Mbps - no problem. 500Mbps with all those packages - not a chance.

            Steve

            What about the same packages with 6meg dsl connection (max they can go is 18meg), with 5-7 users?

            I think smallnetbuilder did a bechmark of the D525 with IDS features enabled, it was able to push around 230 - 250mbps on an Atom. For most small networks that is more than adequate. Also, with such small numbers if users, it is hard to saturate a connection continuously with such a speed anyways.

            But if you're worried about headroom, the G530 is a great choice or a low-end/low power i3. Price of all the hardware should be comparable.

            1 Reply Last reply Reply Quote 0
            • A
              asterix
              last edited by

              Yeah.. that was on v1.2.3 .. or whatever that old version was.. with snort barely having any major rules processing. A lot has changed since then with over 10 version changes on Snort. Plus no dans with clamd or pfBlocker. Those are CPU hoggers.

              1 Reply Last reply Reply Quote 0
              • L
                languy
                last edited by

                @drew27c:

                My internet connection is a measly 5/0.5 ADSL

                The business park we are in has oooooolllld infrastructure and there is literally zero other option for our connection.

                For this? I don't see the need for anything more than a Netgate 2D3. Add the HiFN crypto board if the IPSec brings you down. 15 users on a 5/.5? lets be real. That puts you at $300/site. Buy a third as a hot spare or buy 4 and go HA.

                Nothing was said about squid, snort, AV, etc.  I've seen the Alix board handle 90 mbits (no proxy, no snort)

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.