N150 / N355 good fits?

Started by Billy2010, November 23, 2025, 06:59:34 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 23, 2025, 06:59:34 PM Last Edit: November 23, 2025, 07:46:09 PM by Billy2010
Soon we will make the swith to a 8,5G fiber connection.
The main switch is a Mikrotik 10G
Behind it are 2 more 1G switches.
Connected to the network that are :
2 servers (10G), 8 workstations (Mix of 10G, 2.5G, 1G), 6 mobile devices, 16 iot devices (1G,100M).
Split in 3 vlans.

I am now looking to run opnsense with zenarmor on a baremetal (I ran it on my PE homeserver but thats 100W) to sit between the modem and the main switch.
The main purpose is ofcourse FW/IDS.
But if its "capable" of having more bells and whistles then thats just better.

I have been browseing around and keep coming across these N150/N355 devices.
Most of these devices(CWWK/MNBOXCONET..) have 2x sfp+ and 2x2.5G connections.
But I also came across ROUAFWIT which seems to have 2x2SFP+ and 4x2.5G. I have seen these boxes with other hardware aswell.

I have listed these with 32Gb ram + 1T ssd:
N150 (+-450€)
N355 (+-560€)
N355 (+-704€) <- the one with 4x2.5G instead of 2x.
i5 1334U (850€) 4x2.5G, 20pci lanes vs 9.

Ofcourse I now have a few questions.

1. Are aforementioned devices capable of functioning as desired (throughput wise etc?
2. With the 4x2.5G one I would add 2 extra ports to my cabinet and I might move the 2 switches that are connected to the main swith to this device directly. Another would temporary serve for the current modem (copper) and one for admin.
3. Any advice with does and dont's?
4. Good alternate devices that are within given budgets with similar or better punch?

Ty.
November 23, 2025, 09:23:08 PM #1
IDK if zenarmor has finally made the jump to being multithreaded, there was a long ongoing discussion about that. If not, then an N355 will probably do nothing at all over an N150, because it only has more cores.

Any type of IDS/IPS will stress the CPU way more than pure routing. With an N150 and without IDS, you should get 10G routing throughput (or close to it, because most 82559-based devices cannot really reach full 10G speed.
Intel N100, 4* I226-V, 2* 82559, 16 GByte, 500 GByte NVME, ZTE F6005

1100 down / 800 up, Bufferbloat A+
November 23, 2025, 10:07:35 PM #2
That would be big news so I asume they don't.
But lets anticipate they eventually might do so.

I do want that IDS/IPS.

CWWK also has these other boards.
Based on a i5 1335u wich should run at 15W.
And a i7 155h at 28W. I find this a bit much but "maybe ok" it also has a 4x sfp+/4x 2.5G.

Pricewise that 155h starts to move up to that of a minisforum a2 but the latter draws 100W.

 
Print
Go Up Pages1
User actions