F5F Stay Refreshed Power Users Networks The router seems overly capable.

The router seems overly capable.

The router seems overly capable.

S
sunemoonsong
Senior Member
Find
380
06-06-2016, 11:26 AM
#1
My machine runs Dell PowerEdge r210 II with an Intel Xeon E3-1240 v2 processor, 8GB ECC memory, and a 120GB SSD. PfSense is the operating system installed. For my use case as a home user, I find the features too many and confusing. CPU usage rarely exceeds 5%, which makes me feel like I’m not using the server efficiently. The only adjustments I need to make are updating DNS settings for Cloudflare and configuring QoS for potential VoIP calls. I considered Ubiquiti USG or USG-Pro, but they limit performance when enabling security features like IDS/IPS. With a 200Mb/s connection, those devices would slow things down. Switching to Verizon with a 1Gb/s plan could be better for future needs. Would I need to turn on these advanced settings or should I stick with something simpler like a Dream Machine?
Reply
Reply
S
sunemoonsong
06-06-2016, 11:26 AM #1

My machine runs Dell PowerEdge r210 II with an Intel Xeon E3-1240 v2 processor, 8GB ECC memory, and a 120GB SSD. PfSense is the operating system installed. For my use case as a home user, I find the features too many and confusing. CPU usage rarely exceeds 5%, which makes me feel like I’m not using the server efficiently. The only adjustments I need to make are updating DNS settings for Cloudflare and configuring QoS for potential VoIP calls. I considered Ubiquiti USG or USG-Pro, but they limit performance when enabling security features like IDS/IPS. With a 200Mb/s connection, those devices would slow things down. Switching to Verizon with a 1Gb/s plan could be better for future needs. Would I need to turn on these advanced settings or should I stick with something simpler like a Dream Machine?

Reply
Reply
T
TheCakeMan1
Member
Find
54
06-06-2016, 12:37 PM
#2
It's a vintage CPU, but for home use it still outperforms most modern consumer routers in power consumption. My main worry is its power draw. The old LGA1155 design wasn't very efficient. I can't discuss the impact of VLANs here, but others will likely have insights. If you're skilled enough to configure PFense, it should manage a 1Gb connection well and handle VLANs. It appears to struggle with routing 10Gb, though—something to consider if you plan to scale further in the future.
Reply
Reply
T
TheCakeMan1
06-06-2016, 12:37 PM #2

It's a vintage CPU, but for home use it still outperforms most modern consumer routers in power consumption. My main worry is its power draw. The old LGA1155 design wasn't very efficient. I can't discuss the impact of VLANs here, but others will likely have insights. If you're skilled enough to configure PFense, it should manage a 1Gb connection well and handle VLANs. It appears to struggle with routing 10Gb, though—something to consider if you plan to scale further in the future.

Reply
Reply
S
ShadehaterHD
Member
Find
91
06-06-2016, 06:05 PM
#3
You might find several solid offers on eBay for Ubiquiti EdgeRouters. While they may include extra features you won’t need, you could expect lower power consumption and a mobile app. It sounds like a good option to consider.
Reply
Reply
S
ShadehaterHD
06-06-2016, 06:05 PM #3

You might find several solid offers on eBay for Ubiquiti EdgeRouters. While they may include extra features you won’t need, you could expect lower power consumption and a mobile app. It sounds like a good option to consider.

Reply
Reply
T
TheWarlord23
Member
Find
194
06-07-2016, 12:01 AM
#4
I appreciate Ubiquiti as a prosumer brand offering premium networking gear without full enterprise pricing. For your specific needs, such as IPS or IDS, I’d need to review performance data to confirm if an EdgeRouter meets your speed requirements. I’m not familiar with the details off the top of my head, but if VLAN support and cost are right, I’d consider it.
Reply
Reply
T
TheWarlord23
06-07-2016, 12:01 AM #4

I appreciate Ubiquiti as a prosumer brand offering premium networking gear without full enterprise pricing. For your specific needs, such as IPS or IDS, I’d need to review performance data to confirm if an EdgeRouter meets your speed requirements. I’m not familiar with the details off the top of my head, but if VLAN support and cost are right, I’d consider it.

Reply
Reply
K
Kaine13
Member
Find
100
06-25-2016, 03:33 AM
#5
Many users don't require IDS or IPS unless you're overly concerned about online safety. A solid firewall usually suffices. When needed, keep in mind that turning these on adds extra processing demand to your network device's CPU. With Ubiquiti's USG (and similar UniFi equipment that can serve as a gateway or firewall/router), this shifts CPU power from basic firewall and routing duties to handling more demanding IDS or IPS tasks, which can significantly impact overall network speed. Even though the capability exists in the UniFi controller, you shouldn't rely on it. In my view, if you truly need these protections, your existing pfSense setup might perform better than a USG! I’m not certain I’ve encountered IDS or IPS in Ubiquiti’s EdgeRouter line (a separate product), but that doesn’t rule out its presence. It just suggests the feature may need manual activation via CLI, which is what sets this Ubiquiti line apart from others in UniFi. If it’s available, testing hardware offloading—turning it on or off through the CLI—could be worthwhile.
Reply
Reply
K
Kaine13
06-25-2016, 03:33 AM #5

Many users don't require IDS or IPS unless you're overly concerned about online safety. A solid firewall usually suffices. When needed, keep in mind that turning these on adds extra processing demand to your network device's CPU. With Ubiquiti's USG (and similar UniFi equipment that can serve as a gateway or firewall/router), this shifts CPU power from basic firewall and routing duties to handling more demanding IDS or IPS tasks, which can significantly impact overall network speed. Even though the capability exists in the UniFi controller, you shouldn't rely on it. In my view, if you truly need these protections, your existing pfSense setup might perform better than a USG! I’m not certain I’ve encountered IDS or IPS in Ubiquiti’s EdgeRouter line (a separate product), but that doesn’t rule out its presence. It just suggests the feature may need manual activation via CLI, which is what sets this Ubiquiti line apart from others in UniFi. If it’s available, testing hardware offloading—turning it on or off through the CLI—could be worthwhile.

Reply
Reply
B
BooBoo88888
Junior Member
Find
18
06-27-2016, 02:12 AM
#6
I'll review all the Ubiquiti options carefully before deciding. Appreciate your patience!
Reply
Reply
B
BooBoo88888
06-27-2016, 02:12 AM #6

I'll review all the Ubiquiti options carefully before deciding. Appreciate your patience!

Reply
Reply
V
VitoSEXY
Posting Freak
Find
797
06-27-2016, 10:41 AM
#7
I discovered the Ubiquiti EdgeRouter 12 works best for me. Appreciate the feedback from everyone!
Reply
Reply
V
VitoSEXY
06-27-2016, 10:41 AM #7

I discovered the Ubiquiti EdgeRouter 12 works best for me. Appreciate the feedback from everyone!

Reply
Reply
K
KongOrm
Junior Member
Find
17
07-04-2016, 10:55 AM
#8
I believe this will be important to highlight in upcoming projects. The reason Ubiquiti offers advanced capabilities at a lower cost compared to companies like CISCO lies in the use of less powerful processors. While most users don’t require high performance, intensive network analysis demands a stronger CPU for optimal speed. In such cases, pfSense becomes a highly affordable choice. As Falcon1986 noted, a firewall should handle these tasks effectively even when using Ubiquiti routers.
Reply
Reply
K
KongOrm
07-04-2016, 10:55 AM #8

I believe this will be important to highlight in upcoming projects. The reason Ubiquiti offers advanced capabilities at a lower cost compared to companies like CISCO lies in the use of less powerful processors. While most users don’t require high performance, intensive network analysis demands a stronger CPU for optimal speed. In such cases, pfSense becomes a highly affordable choice. As Falcon1986 noted, a firewall should handle these tasks effectively even when using Ubiquiti routers.

Reply
Reply
S
senbonzakura13
Senior Member
Find
372
07-04-2016, 12:21 PM
#9
I’m using a PFSense router with an older external access point. The router is a barebones Supermicro 1U SuperServer: Intel Atom C2758 processor (8 cores/8 threads) at 2.40 GHz, 32GB ECC RAM, 1600MHz DDR3, plus a 120GB SSD and 7x 1GB RJ45 ports. I’m not impressed with Ubiquiti yet—I’ve swapped all my networking equipment for Ruckus gear (ICX 6430-48P and ICX 6450-48P switches, Zoneflex AP). It’s not cheap, but it’s widely available in good condition on eBay, especially now with a strong demand for durable industrial switches. I bought the Ruckus AP for $35 and it seemed brand new. If you’re okay staying a generation or two behind, you can find reliable, long-lasting hardware that just works.
Reply
Reply
S
senbonzakura13
07-04-2016, 12:21 PM #9

I’m using a PFSense router with an older external access point. The router is a barebones Supermicro 1U SuperServer: Intel Atom C2758 processor (8 cores/8 threads) at 2.40 GHz, 32GB ECC RAM, 1600MHz DDR3, plus a 120GB SSD and 7x 1GB RJ45 ports. I’m not impressed with Ubiquiti yet—I’ve swapped all my networking equipment for Ruckus gear (ICX 6430-48P and ICX 6450-48P switches, Zoneflex AP). It’s not cheap, but it’s widely available in good condition on eBay, especially now with a strong demand for durable industrial switches. I bought the Ruckus AP for $35 and it seemed brand new. If you’re okay staying a generation or two behind, you can find reliable, long-lasting hardware that just works.

Reply
Reply