With a Chelsio T5 you might get some decent pure routing / NAT performance with the right card mod, but as soon as it goes into firewall/ACL/QoS etc, performance will tank drastically. On Apr 18, 2016 7:49 AM, "Micah Croff" <micahcroff@gmail.com> wrote:
I haven't tried to do 10Gb with it but pfSense isn't a horrible option. I've done 1G with left over computer parts and for the most part it works well.
For "free" software it is pretty feature rich.
Micah
On Fri, Apr 15, 2016 at 1:18 PM, David Sotnick <sotnickd-nanog@ddv.com> wrote:
Hello masters of the Internet,
I was recently asked to set up networking at a VIP's home where he has Comcast "Gigabit Pro" service, which is delivered on a 10G-SR MM port on a Comcast-supplied Juniper ACX-2100 router.
Which customer router would you suggest for such a setup? It needs to do IPv4 NAT, DHCP, IPv4+IPv6 routing and have a decent L4 firewall (that also supports IPv6).
The customer pays for "2Gb" service (Comcast caps this at 2G+10% = 2.2Gbps) and would like to get what he pays for (*cough*) by having the ability to stream two 1Gbps streams (or at least achieve > 1.0Gbps).
I'm tempted to get another ACX-2100 and do a 4x1Gb LACP port-channel to the customer switch, or replace the AV-integrator-installed Cisco SG300-52P (Cisco switch with e.g. an EX-3300 with 10Gb uplinks).
Thanks in advance for your suggestions.
-Dave