Choosing an appropriate system for a VPN and firewall



  • I'm looking to get up pfSense box and just to make things simple I was planning on buying one from the pfSense store. I was looking at most likely getting the second box , will that be plenty powerful enough for my needs? I assume these are good choices seeing as they're being built by the guys who made pfSense. I was planning on running a VPN as well as a firewall on my pfSense box to both route traffic through PIA when I am torrenting and for remote access to my server. What is a good way of deciding how powerful a box needs to be ? I have a gigabit network so I would like something that doesn't slow me down . Would I be better off going elsewhere or is one of the boxes from the pfsense store an appropriate choice?



  • Would I be better off going elsewhere or is one of the boxes from the pfsense store an appropriate choice?

    Owed to your named and planned art of usage it might be, that all of this boxes would be matching
    your criteria. I personally would be aware of the SG-2220, but starting with the SG-2240 all of them
    would be matching and fitting your needs. It is more related to the Internet connection speed you
    have and what you want to install or run on top of this, likes Squid & SquidGuard, Snort, ClamAV
    or HAVP and so on. So the main question might be; "How fast is your Internet connection".



  • Well I have 1GB internet so I guess I should get something that matches that. You don't need much CPU to use to VPN right? Any of the pfSense boxes should be plenty powerful enough to be a firewall and VPN without worry of it slowing down my connection right?



  • Well I have 1GB internet so I guess I should get something that matches that.

    That is right.

    You don't need much CPU to use to VPN right?

    But this is related than more on the used CPU and the awaited throughput that you want to
    get over VPN. Today´s a CPU with AES-NI and Intel QuickAssist might be the best choice to
    be future proof. That can be a Intel Core i3 or Core i5, an Intel Atom C27x8 (Rangeley) series
    or a Intel Xeon, pending on what you want to run and install. At this time the WAN and VPN
    part is only single core managed, but in the near future we should see more multicore usage
    of pfSense. So it could be useful to get a multicore CPU that is strong enough in both disciplines
    single and multicore usage.

    Any of the pfSense boxes should be plenty powerful enough to be a firewall and VPN without
    worry of it slowing down my connection right?

    Not any, but the SG-2240, SG-4860, SG-8860 and the XG-1540 would be all powerful enough.



  • The 2220 says it has GbE, does it not support a gigabit network?



  • @Atreides:

    The 2220 says it has GbE, does it not support a gigabit network?

    Where it says that? Here at the official homepage all hardware is shown and under each stands
    that they have "gigabit throughput", but not under the SG-2220. Link


Log in to reply