F5F Stay Refreshed Power Users Networks Create a PFSense installation.

Create a PFSense installation.

Create a PFSense installation.

Pages (3): Previous 1 2 3 Next
C
ChloeET
Senior Member
Find
736
01-24-2018, 08:11 PM
#11
You should prioritize hardware with AES-NI support. Consider newer models beyond the 775 socket, as they’ll accommodate future pfSense releases. While the 775 works for 200M connections, VPN performance may suffer with Site-to-Site or inbound mobile VPNs. Modern CPUs using AES-NI can handle encryption/decryption faster on the chip itself. I’ve used similar boards before; the Intel 82562G PCI adapter is ideal for pfSense setups, especially if you had a 150/30 connection. Avoid older PCI expansion boards—they cause noticeable interruptions when pushing 200M. If budget allows, a newer 775 with Intel PCI is better than a cheaper alternative. What’s your budget? What usage and features are important to you?
Reply
Reply
C
ChloeET
01-24-2018, 08:11 PM #11

You should prioritize hardware with AES-NI support. Consider newer models beyond the 775 socket, as they’ll accommodate future pfSense releases. While the 775 works for 200M connections, VPN performance may suffer with Site-to-Site or inbound mobile VPNs. Modern CPUs using AES-NI can handle encryption/decryption faster on the chip itself. I’ve used similar boards before; the Intel 82562G PCI adapter is ideal for pfSense setups, especially if you had a 150/30 connection. Avoid older PCI expansion boards—they cause noticeable interruptions when pushing 200M. If budget allows, a newer 775 with Intel PCI is better than a cheaper alternative. What’s your budget? What usage and features are important to you?

Reply
Reply
E
Eyden75
Junior Member
Find
9
02-01-2018, 03:36 PM
#12
About $150, I’m looking for a decent router with strong protection against unwanted attacks. I won’t be using it for a VPN directly, but I’d like to route my VPN connection through it to my VPS. I expect only a few devices online at once. If 2.5 is significantly better, I feel confident spending on an updated board.
Reply
Reply
E
Eyden75
02-01-2018, 03:36 PM #12

About $150, I’m looking for a decent router with strong protection against unwanted attacks. I won’t be using it for a VPN directly, but I’d like to route my VPN connection through it to my VPS. I expect only a few devices online at once. If 2.5 is significantly better, I feel confident spending on an updated board.

Reply
Reply
H
ha0ch3ng
Junior Member
Find
12
02-01-2018, 05:31 PM
#13
I’d choose the 775 board and install a PCI Intel card. Just let me know your info and I’ll send it over.
Reply
Reply
H
ha0ch3ng
02-01-2018, 05:31 PM #13

I’d choose the 775 board and install a PCI Intel card. Just let me know your info and I’ll send it over.

Reply
Reply
G
GodAxes
Junior Member
Find
5
02-08-2018, 01:58 PM
#14
I secured the dual gigabit Intel NIC recommended for PFSS and believe it functions properly. I may return later with any concerns about configuration. Can you confirm if PFSS supports using a connected hard drive as a local file share server?
Reply
Reply
G
GodAxes
02-08-2018, 01:58 PM #14

I secured the dual gigabit Intel NIC recommended for PFSS and believe it functions properly. I may return later with any concerns about configuration. Can you confirm if PFSS supports using a connected hard drive as a local file share server?

Reply
Reply
T
Timke
Member
Find
67
02-12-2018, 04:17 AM
#15
Use the PCI-Express adapter built into the WAN port and select one of the Dual Intel nic ports for LAN or several LAN connections. The dual PCI cards often experience significant interruptions when handling high data rates. I’m here to assist you in improving performance, but this issue was a key factor in why the board was marked as problematic due to high latency during busy operations.
Reply
Reply
T
Timke
02-12-2018, 04:17 AM #15

Use the PCI-Express adapter built into the WAN port and select one of the Dual Intel nic ports for LAN or several LAN connections. The dual PCI cards often experience significant interruptions when handling high data rates. I’m here to assist you in improving performance, but this issue was a key factor in why the board was marked as problematic due to high latency during busy operations.

Reply
Reply
J
Jacob9storm
Junior Member
Find
42
02-12-2018, 06:17 AM
#16
Great!
Reply
Reply
J
Jacob9storm
02-12-2018, 06:17 AM #16

Great!

Reply
Reply
S
sthub046
Junior Member
Find
6
02-12-2018, 12:29 PM
#17
I would connect the two PCI LAN ports using a bridge and switch the bridge interface to that port. Even with the interrupt problems, it provides an extra port for future use when you need something less demanding. I’m placing my printer on the slowest port in the box since it’s only used briefly during print jobs, ensuring it won’t affect performance. I expect others to notice any clear improvements or changes when pfSense 2.5 is released. Most updates will likely remove unnecessary features until security patches stop coming. This should give you a year or more to think about upgrades.
Reply
Reply
S
sthub046
02-12-2018, 12:29 PM #17

I would connect the two PCI LAN ports using a bridge and switch the bridge interface to that port. Even with the interrupt problems, it provides an extra port for future use when you need something less demanding. I’m placing my printer on the slowest port in the box since it’s only used briefly during print jobs, ensuring it won’t affect performance. I expect others to notice any clear improvements or changes when pfSense 2.5 is released. Most updates will likely remove unnecessary features until security patches stop coming. This should give you a year or more to think about upgrades.

Reply
Reply
W
Wouterman1079
Member
Find
193
02-12-2018, 04:14 PM
#18
Did you check out similar boards? The link provided looks promising. @MysticalGnome suggested it and it seems to work well. Downloading at maximum speed (100Mb/s) using only the torrent client put about 45% CPU usage, with snort active on both local and remote connections.
Reply
Reply
W
Wouterman1079
02-12-2018, 04:14 PM #18

Did you check out similar boards? The link provided looks promising. @MysticalGnome suggested it and it seems to work well. Downloading at maximum speed (100Mb/s) using only the torrent client put about 45% CPU usage, with snort active on both local and remote connections.

Reply
Reply
D
DOLPHlN
Junior Member
Find
13
02-28-2018, 11:12 PM
#19
The 45% figure seems quite steep, but it makes sense since someone designing a pfSense router would aim for longevity. Turning on QoS could really strain the device.
Reply
Reply
D
DOLPHlN
02-28-2018, 11:12 PM #19

The 45% figure seems quite steep, but it makes sense since someone designing a pfSense router would aim for longevity. Turning on QoS could really strain the device.

Reply
Reply
N
NukeGamerYT
Member
Find
77
02-28-2018, 11:46 PM
#20
Consider the ongoing snort activity across both interfaces, noting it consumes significant resources. The current PRIQ traffic control and limiting mechanisms are quite simple. /EDIT Also this was just a demonstration.
Reply
Reply
N
NukeGamerYT
02-28-2018, 11:46 PM #20

Consider the ongoing snort activity across both interfaces, noting it consumes significant resources. The current PRIQ traffic control and limiting mechanisms are quite simple. /EDIT Also this was just a demonstration.

Reply
Reply
Pages (3): Previous 1 2 3 Next