I can't determine which computer this is, but the specs aren't listed.
[SOLVED] I am looking for an old computer to put build a firewall on, help with the right choice.
- Thread starter Solitario
- Start date
Solitario
Well-known member
That's more like it. Pretty old Tech, but should do what you want.
Solitario
Well-known member
Intel® Core™2 Quad Processor Q9400 (6M Cache, 2.66 GHz, 1333 MHz FSB) - Product Specifications | Intel
But this processor does not support AES-NI.
But this processor does not support AES-NI.
Solitario
Well-known member
for the same price of an old pc i can get a cisco Asa5505.
Have no idea what you're going to connect it to. Also, it can't be updated. It would offer security to the rest of your system, but it's not a server.
Solitario
Well-known member
Well, we'll see what Tekno Venus has to add, Thank you very much.
Solitario
Well-known member
What do you think @Tekno Venus ? Thank you very much in advance. Best regards.
I can't really recommend a specific machine for you, as what you choose really depends on what your priorities are. But some more general suggestions...
Looking at the PFSense requirements again, they seem to have relaxed the requirement for AES-NI, although it is still strongly recommended So you can now install PFSense on a CPU without AES-NI support. That said, they did make it a requirement at one point, so I suspect they might bring the requirement back in the future.
OPNSense is the same - not required but strongly recommended. It's less likely OPNSense will force AES-NI, but it is possible.
So that Q9400 machine will almost certainly work, but you might not get great performance and it will consume quite a lot of electricity. But out of all th e
Don't forget you will likely want more than one NIC in the machine - one to connect to the WAN side of the network and the other for LAN. So as a bare minimum you need a PCI-E slot for a second network card. On that topic, an Intel NIC is recommended over Broadcom or Realtek due to better driver support in PFSense. Often you can find these branded as Dell or HP NICs since they're often removed from those brand servers.
My general recommendation is to look for old business machines - businesses are often clearing out old computers. Dell Optiplex and HP ProDesk machines are often fairly easy to find second hand.
This video does a great job of outlining some of these details
The ASA5505 is not a bad machine, but it's also getting very old nowadays being released in 2006. They only have 10/100 ethernet ports, so you'll never be able to do speeds over 100mbps (whether that's an issue for you, I don't know). You also won't officially be able to update to the latest firmware without a Cisco support contract. I'm not aware of a way to install any other OS on an ASA. Remember also the ASA is a firewall, not a router. It can do many of the tasks of a router, but that's not what it was built for.
My other recommendation for cheap routers (depending if they are available in your country) is MikroTik. The MikroTik HEX is a surprisingly powerful, compact and relatively cheap router with a very customisable and feature rich OS: MikroTik. The HEX Lite and HEX S are also good options.
Looking at the PFSense requirements again, they seem to have relaxed the requirement for AES-NI, although it is still strongly recommended So you can now install PFSense on a CPU without AES-NI support. That said, they did make it a requirement at one point, so I suspect they might bring the requirement back in the future.
OPNSense is the same - not required but strongly recommended. It's less likely OPNSense will force AES-NI, but it is possible.
So that Q9400 machine will almost certainly work, but you might not get great performance and it will consume quite a lot of electricity. But out of all th e
Don't forget you will likely want more than one NIC in the machine - one to connect to the WAN side of the network and the other for LAN. So as a bare minimum you need a PCI-E slot for a second network card. On that topic, an Intel NIC is recommended over Broadcom or Realtek due to better driver support in PFSense. Often you can find these branded as Dell or HP NICs since they're often removed from those brand servers.
My general recommendation is to look for old business machines - businesses are often clearing out old computers. Dell Optiplex and HP ProDesk machines are often fairly easy to find second hand.
This video does a great job of outlining some of these details
The ASA5505 is not a bad machine, but it's also getting very old nowadays being released in 2006. They only have 10/100 ethernet ports, so you'll never be able to do speeds over 100mbps (whether that's an issue for you, I don't know). You also won't officially be able to update to the latest firmware without a Cisco support contract. I'm not aware of a way to install any other OS on an ASA. Remember also the ASA is a firewall, not a router. It can do many of the tasks of a router, but that's not what it was built for.
My other recommendation for cheap routers (depending if they are available in your country) is MikroTik. The MikroTik HEX is a surprisingly powerful, compact and relatively cheap router with a very customisable and feature rich OS: MikroTik. The HEX Lite and HEX S are also good options.
Solitario
Well-known member
What do you think of the D-Link Model DFL-860E? I can't find much information about this device. I don't know if it is discontinued or not. Thank you very much. Best regards.
Unavailable currently at places I would trust.
Solitario
Well-known member
As I understand it, these devices need a license for proper operation, is this true?
I'm not aware of this, but possibly a requirement in Argentina.
Solitario
Well-known member
What I don't know is if it is discontinued.
Do you mean no longer manufactured?
Solitario
Well-known member
I mean, is that if it already reached the eol. Best regards.
EOL ended 5/1/2016
Solitario
Well-known member
I finally bought a second hand computer with amd 215, 8gb ram and installed Sophos XG Firewall on it. Thank you all very much. Best regards.