Pfsense

what's the use of such a secure OS if the processor / components around it are tracking you botnet-style anyway?

Why are you here?
>ARM is everywhere
So is MIPS, especially in networking devices.

Where exactly should have I heard of it? What kind of articles?
Where is it present? Where is it discussed?
What distros can it run? What OSs?
Does it have its version of raspberry pi?

why should anyone care?

summer seems to come earlier these days

>Where exactly should have I heard of it?
When you found out there were more architectures than ARM and x86
>Where is it present?
Old workstations and servers, set top boxes, SBCs, microcontrollers, routers, etc.
>What distros can it run?
Debian, Gentoo, Angström, Arch, just off the top of my head
>OSs
Linux, OpenBSD, FreeBSD, NetBSD, IRIX, a few others

They are just being pedantic for the sake of it. Don't worry.

>pfSense is not for you unless you want to do that to practice routing and firewall rules for a larger company
>you might be looking for openwrt

You should have said pfsense is not for you unless you want to do things the right way.

No we aren't.

>why should anyone care?

They want to understand how the world works beyond "muh cellfooone and muh rapsberry pie".

>guys, I didn't know green was a color. What does it matter? What can it do that red or blue can't? Why should I care?

Being pedantic is all Sup Forums does every time. Either because they are self absorbed autists or just to fit in.

nah

Many home/consumer wifi router runs on MIPS, because it's cheap.

lets say they just announced the support for MIPS architercture 3 minutes ago
What will you do now with this good news?

You haven't been here long enough then.

Think neat, now I can use pfsense

In your Leemote Yeeloong autismbox?

Sadly I haven't gotten my hands on any Lemote hardware yet. Anyway why would I run pfsense on a laptop?

>Anyway why would I run pfsense on a laptop?
You could use it as a Stallman-approved router

No shit, but it's a laptop, if I had one I wouldn't be using it as a fucking router.

Question:

Did you buy a computer and throw a bunch of nic in it? or did you install this to a current router?

Then what the fuck do you want pfsense on MIPS for? Any decent router has an ARM processor.

MIPS exists outside of Lemote hardware.

You keep avoiding the question.

Actually alot of new MIPS hardware came out like the creator ci20 or some boards from NXP, they are preferable because the licenses are less locked down

No I don't, I answered it posts ago, it's not my fault you're asking again.

Not everyone has gigabit service user.

>Any decent router has an ARM processor.
No 'decent' router has ARM period.

Some cheaper but passable routers are MIPS.

wiki.openwrt.org/toh/views/toh_dev_instructionset?dataflt[0]=instruction set_=MIPS32
Pretty much anything below 32MB RAM runs on MIPS.

lots of SOHO routers use MIPS, i've personally only seen MIPS in them

mine;
# cat /proc/cpuinfo
system type : Atheros AR7161 rev 2
machine : NETGEAR WNDR3700/WNDR3800/WNDRMAC
processor : 0
cpu model : MIPS 24Kc V7.4
BogoMIPS : 452.19

mine has 128M ram

it might barely run pfsense, if a MIPS version was available, the ROM is obviously too small, but this router has a usb port, which would fix that issue

# cat /proc/meminfo
MemTotal: 126148 kB

Support for more routers.

Given that openwrt support about 1000 MIPS device compared to around 150 ARM device, i'm pretty sure MIPS are majority in consumer routers.

Yet how many enterprise routers use ARM?
I've not seen any.

I'd wager there isn't any...

i'd imagine they're targeting ARM due to the increasing popularity of ARM single-board computers (like the rpi series)

though it'd be nice to see perhaps a slimmed-down/modular version for common MIPS soho routers, as a competitor to openwrt

Question:
Will a dual-core Bobcat APU cut it as a pfsense router that needs to handle 4 1 Gbps connections and run a VPN?

The problem is none of those single board computers have dual ethernet.

RasPI is easily the worst too, with USB ethernet from the get go.

Probably not.
You'd be better off looking at AM1 or even some cheap CherryTrail-T system.

you realize relatively few people have internet access that fast, right?
even the rpi could handle my internet connection

as far as cheap/small single-board computers go, the odroid-xu4 is probably the best for high-speed networking, it has two usb3 host controllers, one internally connected to an ethernet controller/connector, just add another usb3>GbE adapter and that should theoretically do gigabit routing

it's onboard ethernet is gigabit also, to clarify

What about a dual-core Avoton C2358? Do I really need a quad core C2558 for handling 4+ 1Gbps connections with port teaming and VPN?

And what about 2 10Gbps connections? I think the Avotons have enough PCIe lanes to support a dual 10Gig NIC.
>what do you even need 10Gigs for
Transferring massive files between two rendering stations and a NAS to back them all up

Dual USB ethernet is going to add latency, even if the CPU can handle the throughput.

It doesn't need to be dual gig-e (although for futureproof that might be nice) dual 100/100 is fine.
Fuck USB ethernet though, at that point you'd be better off buying an old MIPS router and forgetting ARM like most of us have already said.

ARM is a generally a bad choice for routers, simply because of what's available.
If more ARM boards with dual (or more!) ethernet were available on the cheap, we'd be having a different thread right now.

TODAY IS A GOOD DAY.

why do you need that on your router? use a switch

Avoton doesn't need PCI-e for dual 10gbps, I'm pretty sure it has that anyway(MAC) (OEM just has to put the appropriate PHY)

Also, anything Avoton should be fine for purpose - unless the OEM actually went out of their way to fuck shit up with a realtek pci-e nic, you're going to have at least 2x Intel NICs with full offloading.
The CPU has AES extensions so providing your VPN uses AES for encryption, you don't even need to spend CPU cycles there either.

Stuff it full of RAM and off you go.

I have a router for handling internet connections, but I need a machine that hosts a VPN that I can access outside of my home office, but also needs to serve as a separate switch for both of the workstation computers and the NAS backing them up. And the closest OTS router that can do that for me will cost upwards $600.

>Avoton doesn't need PCI-e for dual 10gbps
It does, because there are no Avoton boards that have dual 10Gig NICs built in. You need to buy an add-in board for that.

just get a router you can run openvpn if your current one can't. openwrt at least can be configured as an openvpn server
and just use a switch for lan transfers

I don't want all of the computers in my network to be connected to that VPN, I just need the workstations and the NAS. That's why I'm separating the network into two segments, with the new router serving as the primary switch/VPN host for the second network.

i don't have much experience with VPN's, but i imagine you can just as easily segment the network logically, rather than doing it physically

ooh interesting, might well look into that

I'd do it with VLANs, except that it's not physically possible in my house (thank you, 50's built-for-nuclear-blasts construction). That's why I'm resorting to a physical router/VPN to make the second half of the network.

oh well, sounds like you're sure of what you need, i wish you luck finding what you need

Is that the HERD logo?

But no one's answered if the dual core Avoton is strong enough to handle dual 10Gbps connections along with 4 1Gbps connections without reducing bandwidth on any of those ports.

Yes Alex I'll take what is a vlan for 1000

>pfSense
>not opnSense
it's like you hate yourself or something

I can't make holes in my walls to circumvent the need to have 100+ ft cables going from my basement (which is the only place the cable company put their connection), up my stairs, down a hallway, and into my office. Whoever design my house either wanted to fuck with me or had a severe lack of foresight.
Trust me, I'd rather do it with VLANs, but it's not physically possible in my home.

you can either do that or get one of those specialized embedded computers like a soekris or something

> what distros can it run ?
Seriously GTFO normie, you dont have a clue what the fuck people here is talking about

.1q encapsulation support is built-in already. If you have 50Mbps service or less, you should be able to do wire speed with a pi.

Unless you also have multiple subnets set up and no l3 ''''''''''''switches''''''''''''''. Ya no, this is just retarted

Affordable ($69) ARM SBC for router use coming through.

damn this looks cool. specs? link?

mqmaker.com/product/witi-board/

2x Gigabit WAN ports
4x Gigabit LAN ports

It has a Mediakek SoC though.

fuck, could've been something great, mediatek tends to be a locked down piece of shit

Thanks, but i'll keep using my x86 (K6 system) Gentoo router for the next ten years also.

I think ODROID has a board coming soon with two Gigabit ports and SoC that actually has proper Linux drivers.

You'd need a separate switch, but it'd work fine as a router.

Serious question: at the hardware level, is there any fundamental difference between WAN and LAN ports or are all the differences at the OS configuration level. What stops me from making IP tables that route differently from the default wan/lan config?

If only I could install a SATA controller card, that will be my next router/NAS

Yeah seems like ARM support is a waste considering very few single board computers are built with multiple Ethernet ports. Meanwhile a fuck ton of routers are MIPS based.

It has a SATA port.

Can you actually put the boot partition on a SATA drive or is it silly like AllWinner ARM SoCs?

idk, probably not

Yeah but I need at least 4.
If supports port multiplier, I'm happy.

IT only has two.

Your router.
Any distro you can compile for it, which is every distro.

my router
root@GL-MT300A:/# cat /proc/cpuinfo
system type : MediaTek MT7620A ver:2 eco:6
machine : GL-MT300A
processor : 0
cpu model : MIPS 24KEc V5.0
BogoMIPS : 385.84
wait instruction : yes
microsecond timers : yes
tlb_entries : 32
extra interrupt vector : yes
hardware watchpoint : yes, count: 4, address/irw mask: [0x0ffc, 0x0ffc, 0x0ffb, 0x0ffb]
isa : mips1 mips2 mips32r1 mips32r2
ASEs implemented : mips16 dsp
shadow register sets : 1
kscratch registers : 0
package : 0
core : 0
VCED exceptions : not available
VCEI exceptions : not available

>lets say they just announced the support for MIPS architercture 3 minutes ago
>What will you do now with this good news?

Run pfSense on $30 networking devices that work really fucking well.

>Question:
>Will a dual-core Bobcat APU cut it as a pfsense router that needs to handle 4 1 Gbps connections and run a VPN?

If you expect to push data through a vpn tunnel near 1Gbps you're going to need a modern XEON or encryption accelerated hardware, plus a lot of tuning in pfSense.

Retard.

pfsense recommend 1GB RAM (minimum 256MB) and 1GB disk space to run, so most cheap network device are already out.

Trash BSDRP is better.

Stallman never approved pfsense, pfsense is also clunky as fuck.
If you want to learn start with FreeBSD + BIRD or bsdrp and DN42 is pretty cool if you find a BGP buddy

>>pfSense
>>not opnSense
>it's like you hate yourself or something

Fuck off, Stallman.

what

both use a freebsd base

actually what i would like to see is an openbsd spinoff in the style of pfsense, because openbsd actually has the better pf

will see if something comes out that can beat Ubiquiti ER-X
>5 interfaces
>$50

they sure have no chance in hell beating their commercials
youtube.com/watch?v=v2OL5uLEclk

>never heard of x
>don't know anything about the subject
>hurrrdurrr who even needs it I've never seen it durr

What the fuck kinda logic is that man.

>mediatek

Goes in the trash!

>purchasing a shitty prosumer router because of the commercials.

No one wants your shitty routers, stop trying to shill them every thread.

Just buy a Netgate your poor fucker