Netgate SG-1000 microFirewall

Author Topic: (SOLVED)Replacing Ubiquiti Edge Router X with PFsense  (Read 874 times)

0 Members and 1 Guest are viewing this topic.

Offline tman904

  • Newbie
  • *
  • Posts: 9
  • Karma: +0/-0
    • View Profile
Re: Replacing Ubiquiti Edge Router X with PFsense
« Reply #15 on: December 20, 2017, 01:30:13 pm »
I've had some time to ponder and I happened to find this http://pcengines.ch/apu2.htm

It seems like a good compromise between the  performance of the SG-3100 and the SG-4860.

I'm saving more money then buying the SG-3100 or building one with the parts from the last post. It came out to $200.20 at the most seeing as the site states about $30-$40 shipping for one system.

For the apu2 4GB ram version with a case, power adapter and a 16GB mlc ssd it's $200.20

My main concern is if the ssd is reliable enough for all the logging of pfsense. As well as if in the future I want to install ntopng that it will keep up and not become a bottleneck.

I can save even more money by buying the 2GB ram version. Is the 2GB version enough to run most packages? I have about 20 users at most.

Finally with the money I saved I figure I can buy a $99 gold subscription and still be donating to the project.

Sorry to be long winded but what do you guys think?
« Last Edit: December 20, 2017, 07:40:27 pm by tman904 »

Offline GoldFish

  • Jr. Member
  • **
  • Posts: 54
  • Karma: +2/-0
    • View Profile
Re: Replacing Ubiquiti Edge Router X with PFsense
« Reply #16 on: December 21, 2017, 11:01:27 am »

Finally with the money I saved I figure I can buy a $99 gold subscription and still be donating to the project.


I would go for SG-1000 which is $50 extra and get a free gold subscription with it. So all in all the device would cost you 50+shipping. Then you can use this for lab, testing, etc
* pfSense Enthusiast *

Offline tman904

  • Newbie
  • *
  • Posts: 9
  • Karma: +0/-0
    • View Profile
Re: Replacing Ubiquiti Edge Router X with PFsense
« Reply #17 on: December 21, 2017, 11:54:10 am »
I am heavily leaning toward the sg-1000 but I have two problems with it.

1. It only has two ports whereas I need three subnets and I can't afford to buy a managed switch to implement vlans.

2. The specs state it has 512MB of ram, I'm not sure if I can run ntopng with that amount of ram.

My end goal is to move the edge router x out of production in favor of a device running pfsense.

Offline johnpoz

  • Hero Member
  • *****
  • Posts: 15193
  • Karma: +1414/-206
  • Not a pfSense employee, they cannot fire me...
    • View Profile
Re: Replacing Ubiquiti Edge Router X with PFsense
« Reply #18 on: December 21, 2017, 01:01:07 pm »
1. Because they are so expensive?

https://www.amazon.com/D-Link-EasySmart-Gigabit-Ethernet-DGS-1100-08P/dp/B008ABLU2I?th=1
$29

Or save a couple of bucks if you want and get the 5 port version for $25..

With a smart switch that does span ports you can run ntop on any box you want..  Doesn't have to be run on your router...

Here is the thing if your planning on moving into better network setup.. Your going to want a smart switch... While you can get them for cheap the above dlink 1100 for example works.. But its very feature starved.. For home budget I am a fan of the cisco sg300.. I picked up a 28 porter because was tired of being interface starved ;)  And wanted to be able to leverage the 6 interfaces on my 4860 to spread my vlans out, etc. Have ports to play with laggs if someone had an issue I was trying to duplicate to help them.. I personal see ZERO reason for a lagg setup in a home/lab setup - its a waste of ports for no real benefit..

So I have plenty ports now.. Moved the sg300-10 I had to my av cab and replaced the cheap netgear I had there.. I have 3 cheap switches that come up a lot here to be able to help.. The netgear, the dlink I linked to and the utter POS... Not worth the 20$ I got it for price tag tplink one -- you can not remove vlan 1 from any ports..

I would be willing to sell you any of them... But even if I sold them to you for $15 by time you paid for the shipping it would be just easier to order from amazon and have it in 2 days, etc.

The sg300-28 I show for 232, I had gotten it for 200.. The sg300-10 I show for 120... Well worth the price point... The money you save if you went with the sg-1000 would pay for the sg300-10..
« Last Edit: December 21, 2017, 01:13:35 pm by johnpoz »
- An intelligent man is sometimes forced to be drunk to spend time with his fools.
- Please don't PM me for personal help
- if you want to say thanks applaud or https://www.freebsdfoundation.org/donate/
1x SG-2440 2.4.2-RELEASE-p1 (work)
1x SG-4860 2.4.2-RELEASE-p1 (home)

Offline tman904

  • Newbie
  • *
  • Posts: 9
  • Karma: +0/-0
    • View Profile
Re: Replacing Ubiquiti Edge Router X with PFsense
« Reply #19 on: December 21, 2017, 01:19:17 pm »
Thanks for that johnpoz I wasn't aware d-link made 8 port managed switches.

Well with that here is what I'll do.

I'll buy the SG-1000 along with the d-link 8 port smart switch.

Instead of having
port 1 LAN-192.168.0.0/24
port 2 DMZ-192.168.200.0/24
port 3 WAN-0.0.0.0/0

I'll do this

port 1 vlan 2-LAN-192.168.0.0/24
port 1 vlan 3-DMZ-192.168.200.0/24
port 2 WAN-0.0.0.0/0

Thanks for everyones help.