From owner-freebsd-stable@FreeBSD.ORG Sat Jun 14 04:06:02 2014 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 2186B740 for ; Sat, 14 Jun 2014 04:06:02 +0000 (UTC) Received: from mail-oa0-x22c.google.com (mail-oa0-x22c.google.com [IPv6:2607:f8b0:4003:c02::22c]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id E254F26B2 for ; Sat, 14 Jun 2014 04:06:01 +0000 (UTC) Received: by mail-oa0-f44.google.com with SMTP id i7so3776560oag.17 for ; Fri, 13 Jun 2014 21:06:01 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=kHOMVXNymahXAjbANoKGDyUcReVBwBgT3uoKXcnkUoU=; b=D8EPB0vCwSG01jSAr4ZHkrEl7bt1YMOdgvqoCLZ/H+H7JV9Cwd5NDDD/WNXf8UeXFo 47O8nWwFBe3JLlNrfnfORYavNLK578GXhpkTMUGJ02hZciatLRhdRA5oRXprLl+1+fit fzzvbiqkr2Lk/T8qrsgPB+ITr8NQX7PP0ojxd8zkhjz4zCdl8EKyGsYeF/5JgxwdR1Cu cAeBDxol5FpcyfK+Q0lBeEpJQO7fUFpfcEwmiWRrPyBv3N7zhR8kRJnPNkzYTM522luc h8X0tkRxO1PgjNt6gRCJ1ckn4sXhJulSvNkmQvJhJQkCM5g39FXzX4scqhHhVWURRvcQ bVlA== MIME-Version: 1.0 X-Received: by 10.60.70.200 with SMTP id o8mr6715779oeu.55.1402718761147; Fri, 13 Jun 2014 21:06:01 -0700 (PDT) Sender: artemb@gmail.com Received: by 10.76.35.129 with HTTP; Fri, 13 Jun 2014 21:06:01 -0700 (PDT) In-Reply-To: <20140613121732.GA61092@behemoth> References: <20140613121732.GA61092@behemoth> Date: Fri, 13 Jun 2014 21:06:01 -0700 X-Google-Sender-Auth: vz3zWegjU9yGAsVVKwpWgZ0Czv4 Message-ID: Subject: Re: Suggestions for low-power gigE firewall? From: Artem Belevich To: FreeBSD stable Content-Type: text/plain; charset=UTF-8 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Jun 2014 04:06:02 -0000 On Fri, Jun 13, 2014 at 5:17 AM, Chris Nehren wrote: > Speaking of Soekris elsethread, I'm presently interested in > picking up a small device to use as a router + firewall for my > home network. I initially looked at what Soekris has to offer, > of course, but they only have 4xgigE products (the net650x line). > I don't need that many ports, but they don't offer anything that > has just 2xgigE. I'd like something smaller than the net650x > line[0], preferably similarly low power. > > The box will run pf, some form of local name resolution for the > network, a RADIUS server for my wifi AP, and openvpn. It'd be > helpful if the NICs and drivers support VLANs. > > Any suggestions? ALIX apu1c may be an alternative: http://www.pcengines.ch/apu.htm The board is a bit cheaper - $145/$160, according to http://www.pcengines.ch/order1.php?c=4 The downside is that it's got Realtek RTL8111E NICs. Or you can try Ubiquiti EdgeRouter Lite -- http://www.ubnt.com/edgemax#edge-router-lite The downside is that it's not a Tier-1 platform (mips). The hardware under the hood is capable of a lot more than you could achieve on any other box at that price point. If you can live with stock software or willing to deal with rough edges of a new platform, this may work, too. --Artem > > [0]: If I was going to spend 400+ USD on a machine, I may as well > pick up a used Dell or something and toss some em(4)s in it. > > -- > Chris Nehren