F5F Stay Refreshed Power Users Networks Tips for OPNSense box setup Optimize performance and security with these recommendations.

Tips for OPNSense box setup Optimize performance and security with these recommendations.

Tips for OPNSense box setup Optimize performance and security with these recommendations.

P
PaigePlays
Member
Find
173
06-15-2024, 10:08 AM
#1
I needed a firewall for my home lab and decided on OPNsense. I acquired a Dell recovery PC from work—4 NICs, 12GB RAM, two Six Core E5-2620 processors, and a 300GB HDD. Initially thought it would fit as the OPNsense host, but now I’m questioning whether it’s too much power consumption. I’m seeking advice. I was planning to purchase an appliance, but everyone suggests building something more efficient for the same budget. I’ve been checking Newegg, but I’m unsure what components I need for my goals. If this were a typical server build, I could design it myself, but it’s not straightforward. I’d like to focus on gigabit throughput for traffic and NAT, plus IPS capabilities—having IPS active should still deliver speeds of 100–200 Mbps for IPSEC VPN. This would make it easier for friends and me to access my NAS and other resources. Some PFSense models priced around $400–600 claim gigabit routing; I’ve seen Xeon options in the 200–250 range on Newegg. I’m really unsure what’s necessary. I’ve assembled many desktops from Newegg before, but never tackled something like this. Any guidance would be greatly appreciated! Thanks ahead.
Reply
Reply
P
PaigePlays
06-15-2024, 10:08 AM #1

I needed a firewall for my home lab and decided on OPNsense. I acquired a Dell recovery PC from work—4 NICs, 12GB RAM, two Six Core E5-2620 processors, and a 300GB HDD. Initially thought it would fit as the OPNsense host, but now I’m questioning whether it’s too much power consumption. I’m seeking advice. I was planning to purchase an appliance, but everyone suggests building something more efficient for the same budget. I’ve been checking Newegg, but I’m unsure what components I need for my goals. If this were a typical server build, I could design it myself, but it’s not straightforward. I’d like to focus on gigabit throughput for traffic and NAT, plus IPS capabilities—having IPS active should still deliver speeds of 100–200 Mbps for IPSEC VPN. This would make it easier for friends and me to access my NAS and other resources. Some PFSense models priced around $400–600 claim gigabit routing; I’ve seen Xeon options in the 200–250 range on Newegg. I’m really unsure what’s necessary. I’ve assembled many desktops from Newegg before, but never tackled something like this. Any guidance would be greatly appreciated! Thanks ahead.

Reply
Reply
X
Xephtor
Member
Find
192
06-15-2024, 10:08 AM
#2
Do you already have a server setup? I might prefer to launch it inside a VM on an existing machine, using the dual Xeon box you possess. Do you have a rack available? I’d likely choose Dell R2X0 for rack-mount options. Avoid that Xeon line if you’re not getting a current-gen model. Otherwise, opt for a refurbished business desktop with at least four CPUs, such as an Optiplex 7020.
Reply
Reply
X
Xephtor
06-15-2024, 10:08 AM #2

Do you already have a server setup? I might prefer to launch it inside a VM on an existing machine, using the dual Xeon box you possess. Do you have a rack available? I’d likely choose Dell R2X0 for rack-mount options. Avoid that Xeon line if you’re not getting a current-gen model. Otherwise, opt for a refurbished business desktop with at least four CPUs, such as an Optiplex 7020.

Reply
Reply
T
Trickster2000
Junior Member
Find
4
06-15-2024, 10:08 AM
#3
I own a compact rack packed with my Cisco gear. I’ve turned an old desktop into a server, handling FTP, XMPP, and a few virtual machines. It’s an i7 6700k running at 4 GHz with 16 GB RAM, an SSD, and a mechanical drive. The main NIC is the only one here, but I’d prefer to isolate my firewall in a separate enclosure. That unit already works well, and it’s been around four years now—reliability matters. I want to avoid putting everything on a VM, since virtual interfaces can complicate things. Instead, I’d like a dedicated box with a physical NIC for better stability.
Reply
Reply
T
Trickster2000
06-15-2024, 10:08 AM #3

I own a compact rack packed with my Cisco gear. I’ve turned an old desktop into a server, handling FTP, XMPP, and a few virtual machines. It’s an i7 6700k running at 4 GHz with 16 GB RAM, an SSD, and a mechanical drive. The main NIC is the only one here, but I’d prefer to isolate my firewall in a separate enclosure. That unit already works well, and it’s been around four years now—reliability matters. I want to avoid putting everything on a VM, since virtual interfaces can complicate things. Instead, I’d like a dedicated box with a physical NIC for better stability.

Reply
Reply
M
malbaz72
Junior Member
Find
44
06-15-2024, 10:08 AM
#4
Received an item from the provided Amazon link.
Reply
Reply
M
malbaz72
06-15-2024, 10:08 AM #4

Received an item from the provided Amazon link.

Reply
Reply