Netgate SG-3100 for 100Mbit WAN

Started by mr.sarge, April 12, 2018, 11:51:00 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 12, 2018, 11:51:00 AM Last Edit: April 12, 2018, 01:26:10 PM by mr.sarge
Hi,

is someone using the new Netgate SG-3100 firewall with OPNsense? I'm interested to buy this model but I'm not sure if it is 100% working with OPNsense and with a >=100Mbit WAN connection

best regards,

Sarge
April 12, 2018, 02:23:50 PM #1
Hi,
the Netgate SG-3100 don't work with OPNsense! OPNsense right now only supports x86 32/64-Bit CPU's. The SG-3100 based on an ARM CPU.
You can use only pfsense delivered by Netgate for the SG-3100.

best regards
Dirk
April 19, 2018, 03:07:28 PM #2
Hi,

can the following firewall handle >= 100Mbit WAN connection (IDS etc) without performance problems?
I'm really struggling to find the right model at the moment  :-[ unfortunately the SG-2440 is end of sale

https://www.amazon.de/gp/product/B073F9GHKL

best regards,

Sarge


April 20, 2018, 07:50:08 AM #3 Last Edit: April 20, 2018, 08:08:08 AM by Alphakilo
What's your budget?  ;D

I'd recommend taking a look at Deciso's appliances:
https://www.applianceshop.eu/security-appliances/19-rack-appliances/opnsense-based.html

They will be working "100%" with OPNsense, since Decisio is maintaining this fork  ;)

For a lower budget, take a look at the Desktop appliances, although I wouldn't recommend any of the dual-cores (they are single threaded):
https://www.applianceshop.eu/security-appliances/security-appliances-desktop-and-wallmountable/opnsense-based-desktop-9.html

Edit:
I'm currently running an Intel Atom 2x 1,8GHz (4 threads), 3GB RAM and 2x 1 GbE. My "edge" is VDSL with 100Mbit downstream and 40 up.
Currently I'm actively using:

  • IDS only (IPS might be more taxing AFAIK)
  • OpenVPN
  • ZeroTier
  • DHCPv4/6
  • Squid
  • and the mp5d as PPPoE dial-in (which I'm not happy about)

Over the past weeks my load avg was never above 1.5 during normal operations. It hit's ~3 on the nightly suricata definition updates though.
I've had to disable the local Netflow. The disk (mSata SSD) was the bottleneck here, creating IOWAIT-situations.

November 08, 2019, 10:50:17 AM #4
Quote from: mr.sarge on April 12, 2018, 11:51:00 AM
Hi,

is someone using the new Netgate SG-3100 firewall with OPNsense? I'm interested to buy this model but I'm not sure if it is 100% working with OPNsense and with a >=100Mbit WAN connection

best regards,

Sarge

Hello Sarge,

I have good news for you.

I also own a SG3100 and wanted an OPNsense running there,
so I invested a lot of hours to port it there.

And i nearly finished that project.
Currently i have an image, which can be flashed to the mmc (or M2 SSD) and starts very well.

But it still has a lot of problems, after the image is booted, its not possible to use the serial console (still debugging this Problem)
Also the Marvell switch functionality is completely missing on opnsense.

You can watch the process here: https://github.com/opnsense/tools/issues/162

All the best,
René
July 26, 2021, 02:14:48 AM #5
Any updates to this? I have a SG-3100 and wish to build opnsense.
Print
Go Up Pages1
User actions