Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Mini-ITX pfSense Build

    Scheduled Pinned Locked Moved Hardware
    5 Posts 3 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • U
      unplugme71
      last edited by

      Looking to build a pfSense system to support firewall, routing, outbound load-balancing, and both site-to-site and client-to-server vpn. Also hoping for filtering websites and application access both internally and externally. The two WAN connections need to support gigabit speeds (Google Fiber/TWC).

      I'd like to maintain gigabit connectivity throughout the network. There will be multiple end-devices both connected wired and wireless through a 24 port switch and wireless access points around the house.

      At minimum I'll need 4 Gigabit ports.

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        That sort of budget and spec you need to make some hard definitions of what you need.

        So you have 2x1Gbps WAN connections so you need 2Gbps throughput? Or simultaneous up and down, 4Gbps throughput?
        If you want to filter http traffic, using the Squid proxy and Squidguard, that will increase the hardware requirements considerably if you still need the same throughput.
        What sort of throughput do you need for the VPN?

        You're going to be toward the top end of the hardware spectrum whatever you decide.  :)

        Steve

        1 Reply Last reply Reply Quote 0
        • U
          unplugme71
          last edited by

          @stephenw10:

          That sort of budget and spec you need to make some hard definitions of what you need.

          So you have 2x1Gbps WAN connections so you need 2Gbps throughput? Or simultaneous up and down, 4Gbps throughput?
          If you want to filter http traffic, using the Squid proxy and Squidguard, that will increase the hardware requirements considerably if you still need the same throughput.
          What sort of throughput do you need for the VPN?

          You're going to be toward the top end of the hardware spectrum whatever you decide.  :)

          Steve

          I updated my original post. TWC doesn't offer GB speeds yet. I'm on the 50Mb plan currently. It would mostly be used as a backup in case Google Fiber was down for some reason.

          VPN would like to get at least 20Mb/s per user. No more than 5 concurrent users.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            If you want to do 1Gbps with Squid/Squidguard for http filtering you are going to need something pretty powerful so that limits your options in mini-ITX terms. I would expect to need something like a high frequency i3 for example. However it's beyond anything I've speced out personally so have a look through the forum for example builds.
            Anything that can handle filtered 1Gbps will have no problem with 100Mbps VPN.

            Steve

            1 Reply Last reply Reply Quote 0
            • A
              asterix
              last edited by

              i3 with 4GB RAM should easily do it.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.