this post was submitted on 28 Dec 2024
7 points (88.9% liked)
OPNsense
535 readers
2 users here now
All discussions about the open source, FreeBSD-based firewall called OPNsense.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
https://docs.opnsense.org/manual/hardware.html
Depends on what features you want to enable and how many devices are using the network but a relatively recent quad core above 2ghz is probably plenty. If you want to do packet inspection or such, more Is probably better but you're not going to need a 32 core or anything. Is there a specific reason you want a 5gb local network, or just want the fastest network you can afford?
I was targeting the 2.5 gb/s local network, as I am starting to have equipment with 2.5 gig ports, so I might as well make use of them.
Consider buying dedicated firewall hardware - check out "DEC677 – OPNsense Desktop Security Appliance". I don't have experience with opnsense hardware but I use similar for a different os. The idea is that you won't run into compatibility issues since opnsense will test all updates on their own hardware before releasing them and should be optimised, etc.
Thanks for the redommendation, those look quite nice, but are quite pricey too.
Well…yes, but you only but once in about 5-7 years I guess (maybe your device lasts even langer).
So - either you go with opnsense hardware or get a protectli I’d recommend. No love for cheap Chinese computers from my side here, you may want to be quite sure to have reliable hardware as your main firewall (if you do not want to cluster?).
I ended up going with the protectli. It has been good.