<div dir="auto">The open von on pfsense is easy to setup and if you don't load a couple plug-ins you can exports cert very easily, I use pfsense openvon with my phone, iPad, and three desktop. I am going to buy a cert. pfsense is great and the firewall works great too, give me proof on the person he kept trying to spy on me and I've been able to block out certain other agencies</div><div class="gmail_extra"><br><div class="gmail_quote">On Feb 10, 2017 12:46, "DJ-Pfulio" <<a href="mailto:DJPfulio@jdpfu.com">DJPfulio@jdpfu.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Don't use PPTP. It has been broken for years. This is well-know. Even<br>
MSFT says it shouldn't be used.<br>
<br>
Also, I'd be inclined to get a minimal number of ports on any router and<br>
use cheaper switches if more ports are needed.<br>
<br>
I have doubts that a Celeron can keep up with GigE a VPN. Most people<br>
seem happy to get 50-80Mbps over openvpn on lower-end hardware like<br>
this. I don't know of any VPN solutions which do much more and<br>
definitely NOT at those price points. Would love to hear/see people<br>
with facts getting better numbers for $300 equipment.<br>
<br>
Stick with Intel GigE NICs so offloading to the NIC can happen. Realtek<br>
and others just don't seem to work well, from the reading I've done.<br>
<br>
Know my $144 APU2 box only gets around 650Mbps in lab testing. Didn't<br>
test openvpn at the time, but other people with similar HW say 40Mbps.<br>
<a href="https://forum.pfsense.org/index.php?topic=108231.msg612643#msg612643" rel="noreferrer" target="_blank">https://forum.pfsense.org/<wbr>index.php?topic=108231.<wbr>msg612643#msg612643</a> has<br>
some benchmarks for different ciphers.<br>
<br>
<br>
<br>
On 02/10/2017 11:55 AM, Derek Atkins wrote:<br>
> Hi,<br>
><br>
> I got my fiber upgrade installed the other day and it looks like my poor<br>
> Mikrotik router just can't keep up. When I connect my laptop directly<br>
> to my AT&T router <a href="http://speedtest.net" rel="noreferrer" target="_blank">speedtest.net</a> gives me 500/950 (don't ask me why it's<br>
> only getting 500 down -- I plan to ask). However, when I connect<br>
> through my Mikrotik I get limited to about 150-200 up/down.<br>
><br>
> So I'm looking to replace the Mikrotik, but looking for suggestions.<br>
> The two options I'm considering at the moment are a Ubiquiti Edgerouter<br>
> Pro 8 [0] for $316, or pfSense installed on a 4x1Gb quad-core celeron[1]<br>
> with 8G RAM and 64G mSATA SSD for $310.<br>
><br>
> My requirements:<br>
><br>
> 1) sustained 1Gbps throughput, even via NAT, tunnels, or other routing<br>
> 2) GRE tunnel support (used to tunnel my class-C network)<br>
> 3) IPIP (protocol 41) tunnel support (used for HE's IPv6 tunnelbroker)<br>
> 4) Some VPN solution (IPsec/OpenVPN/PPTP, for when I travel)<br>
> 5) IPv4 policy based routing so I can route my class-C over the GRE<br>
> tunnel and my RC1918 network via NAT (I'm pretty sure everything<br>
> does this)<br>
> 6) IPv6 policy based routing so I can have some machines on the IPv6<br>
> tunnel and other hosts on an ISP-supplied IPv6 network and ensure<br>
> packets get routed out the correct method. (my mikrotik doesn't<br>
> support this!)<br>
> 7) Multiple IPs (both v4 and v6) on an interface (I run both my class-C<br>
> and RFC1918 networks on the same LAN)<br>
><br>
> What do you all think about these options? Which would be more likely<br>
> to support my requirements?<br>
><br>
> Thanks!<br>
><br>
> -derek<br>
><br>
> [0] <a href="https://www.amazon.com/Ubiquiti-Networks-Edgerouter-Router-ERPro-8/dp/B00IA5J8M8/ref=sr_1_1?s=pc&ie=UTF8&qid=1486741909&sr=1-1&keywords=edgerouter+pro" rel="noreferrer" target="_blank">https://www.amazon.com/<wbr>Ubiquiti-Networks-Edgerouter-<wbr>Router-ERPro-8/dp/B00IA5J8M8/<wbr>ref=sr_1_1?s=pc&ie=UTF8&qid=<wbr>1486741909&sr=1-1&keywords=<wbr>edgerouter+pro</a><br>
> [1] <a href="https://www.amazon.com/dp/B01MEGSMRZ?psc=1" rel="noreferrer" target="_blank">https://www.amazon.com/dp/<wbr>B01MEGSMRZ?psc=1</a><br>
><br>
______________________________<wbr>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/<wbr>listinfo</a><br>
</blockquote></div></div>