What hardware?

[Solid-Profession]

nobody has a problem with pfsense over here, only the other way around, you get banned in the forums for mentioning OPNsense. ;-)

Qotom is also a non-topic there. There are not a few people here rather than there as a result of their behavior.

Worth checking out Fitlet2 with J3455 at https://fit-iot.com/web/products/fitlet2/fitlet2-specifications/.
Fanless and low power but not sure it meets all the requirements of OP. Same company has a new series of devices coming out called Tensor-PC. Details are a bit sketchy at the moment but looks interesting.

pmhausen said that a low power Apu board wouldnt cut it because

"The PCengines box will get you 512 Mbit/s throughput but not with additional services. Most people want IDS/IPS for ingress ;)"

Would I not run into the same problems here?

[Solid-Profession]

nobody has a problem with pfsense over here, only the other way around, you get banned in the forums for mentioning OPNsense. ;-) (or even for asking heretical questions)

I still have to use one install of this piece of software, as I want to use IPS on a PPPoE WAN interface. Not a problem, really.

Fully support your "old hardware rulez", but the young guys always have a look at the electricity bill. But on the other hand: what you spent for electricity you safe for the warming of the house in winter time :-D

Electricity costs AND a lack of space lol. If the old hardware consumed less AND was as small then that'd be fantastic

[chemlud]

An Optiplex SFF is not really "big". And if you have old hardware lying around, you safe some 100 bucks that you can invest in electricity...

[Solid-Profession]

An Optiplex SFF is not really "big". And if you have old hardware lying around, you safe some 100 bucks that you can invest in electricity...

Perhaps but I've only got a small rack. Also tbh I've always been a fan of "small" The smaller something is the better for me. It's an aesthetic thing. I slowly want to replace my NAS with something that's tiny too

[chemlud]

NAS? I built some in mini-ITX enclosures with an odroid xu4 and 2x 2.5" SSDs/HDDs...

[Solid-Profession]

NAS? I built some in mini-ITX enclosures with an odroid xu4 and 2x 2.5" SSDs/HDDs...

I'll probably replace that with something raspberry pi... sized but not quite pi

[chemlud]

The odroid xu4 is pi-sized, but with GBit ethernet, 2x USB3, fast processors and solid OS support. :-D

[Solid-Profession]

The odroid xu4 is pi-sized, but with GBit ethernet, 2x USB3, fast processors and solid OS support. :-D

Someone told me to go with the nanopi instead. Is the odroid better?

[chemlud]

What is "better"? :-D

Have only raspberries (10-20) and some XU4. NAS is stable and performant...

[Solid-Profession]

What is "better"? :-D

Have only raspberries (10-20) and some XU4. NAS is stable and performant...
[/quote
Faster, easier to use, has real boards?

[qarkhs]

pmhausen said that a low power Apu board wouldnt cut it because

"The PCengines box will get you 512 Mbit/s throughput but not with additional services. Most people want IDS/IPS for ingress ;)"

Would I not run into the same problems here?

I don't know as I am not running IDS/IPS on mine at the moment but see https://bbs.io-tech.fi/threads/palomuuri-1gbit-kuituliittymaelle.74958/#post-2855744 and other discussion on the same board. You will need to use Google translate unless you read Finnish.

[Solid-Profession]

pmhausen said that a low power Apu board wouldnt cut it because

"The PCengines box will get you 512 Mbit/s throughput but not with additional services. Most people want IDS/IPS for ingress ;)"

Would I not run into the same problems here?

I don't know as I am not running IDS/IPS on mine at the moment but see https://bbs.io-tech.fi/threads/palomuuri-1gbit-kuituliittymaelle.74958/#post-2855744 and other discussion on the same board. You will need to use Google translate unless you read Finnish.

Thanks. I guess the other issue is that it uses i211 Intel stuff, which means that if I want to move to Sophos, I'd have to buy new hardware?

[Solid-Profession]

pmhausen said that a low power Apu board wouldnt cut it because

"The PCengines box will get you 512 Mbit/s throughput but not with additional services. Most people want IDS/IPS for ingress ;)"

Would I not run into the same problems here?

I don't know as I am not running IDS/IPS on mine at the moment but see https://bbs.io-tech.fi/threads/palomuuri-1gbit-kuituliittymaelle.74958/#post-2855744 and other discussion on the same board. You will need to use Google translate unless you read Finnish.

So near 1 gigabit for opnsense? I dunno if it supports AES-NI too? Sure it might not be needed now, but may be required in the future

Should I get this?

Atom x7-E3950 [CE3950

8 GB [D8]

M.2 SATA 64 GB [M64S]

No OS

Which Facet card?
FC-OPLN 1x SFP+ Gbit Ethernet optical [FOPLN]?

I don't know about the interfaces, given that I honestly want it to last. If I have 10Gb infrastructure in the future I'd want this firewall to handle that too. Ideally both WAN and LAN could be SFPs? So I could stick in a module that connects to another device?

And leave everything else as standard?

You can customise the order here
https://fit-iot.com/web/product/fitlet2-build-to-order/

[marjohn56]

nobody has a problem with pfsense over here, only the other way around, you get banned in the forums for mentioning OPNsense. ;-)

Qotom is also a non-topic there. There are not a few people here rather than there as a result of their behavior.
eets all the requirements of OP. Same company has a new series of devices coming out called Tensor-PC. Details are a bit sketchy at the moment but looks interesting.

And I am one of them... jumped ship before they could ban me!


I have Two Qotom's ( one for dev/test ) and never had an issue with them. First one I got I originally installed ESXi on with Opnsense as a VM, it worked perfectly fine except I was getting no thermal info from the CPU; great little devices.

[lar.hed]

While we are on the subject of Qotom - does anyone know if there is a 8-port ethernet version around? I have the 6-port version, and would not say no to a 8-port version....