build your own passthrough device capable of PIA openVPN AES 256 SHA 256 RSA-4096

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
How about an AMD 5150 (Quad running at 1.6GHz) - 25W chip and MSI ITX board for $39.99 after rebate?

Has PCIe X16 (size) slot running at X4 speed (plenty for dual Intel NIC).

5150 has built in AES-NI and will run above 1Gbps in AES-NI tests.

http://www.frys.com/product/8337457?

Edit: Seems Fry's screwed the rebate amount up as it is only showing $5. Unless they fix it, the combo is $44.00 after rebate and not $39. If it were me buying this (tempting), I would fight them for the advertised $39 price that's on their AD and the webpage.
 
Last edited:
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
Engineer said:
How about an AMD 5150 (Quad running at 1.6GHz) - 25W chip and MSI ITX board for $39.99 after rebate?

Has PCIe X16 (size) slot running at X4 speed (plenty for dual Intel NIC).

5150 has built in AES-NI and will run above 1Gbps in AES-NI tests.

http://www.frys.com/product/8337457?
Click to expand...

Just pick up a 2 u server like I did :awe:

Where are youfinding the AES-NI perf numbers?
 
Last edited:
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
When my ex and I were married I stayed the night at her father's house and he had some drinking buddies over and they were talking about "jobs" where they hacked into people's computers, port sniffers, getting nfo from "jobs". I couldn't understand all of it but they did this for a living- I overheard all of this because the baby monitor was on and the receiver was in the room I was staying. I know that there is a lot of files that I have on my ex that she would want deleted or disrupted or just gotten rid of-shredded somehow. I have managed to keep the files on encrypted hard drives (several copies as I have found them gone from my computer before more than once after we divorced) and I know that she would really stop at nothing to get rid of those files if she could and just want as much protection as I can get to keep these files so that when my daughter is old enough say 21 or so she can learn just how sick her mother really was(I never speak of it to her as I think that she should learn about it when she is older). Anyway I am convinced that I have been hacked several times and even resorted to digging up(literally) hard drives to restore them to my computer(not only were the files deleted/shredded from my computer but hard drives came up missing and my computers' passwords had all been reset a few times when I got back from being out of town.
I have several copies encrypted and hidden in various places where they can not find them all.
I can't really do anything about the break ins(both over the internet and the actual stealing of hard drives) because they work for the government.
so I must keep several copies at all times and it hasen't been a problem since I started using PIA(at least on the network) but I would not put it past them to get together and hack me.
 
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
sdifox said:
Just pick up a 2 u server like I did :awe:

Where are youfinding the AES-NI perf numbers?
Click to expand...

Sorry, I quoted 5350 numbers by mistake (which is 1.2Gbps). Should be still around or over 1Gbs for the 5150.

http://us.hardware.info/reviews/533...latforms-benchmarks-truecrypt-71-aes-+-aes-ni

Notice it eats the J1900 Celeron for breakfast? I switched to the N3700 (at more cost) just to future-proof my new system because of this. Tempted to get the Atom system with AES-NI and Intel QuickAssist (N3700 doesn't have QA) because of even more possible speed in the future.

The AMD Athlon 5350 supports AES-NI, and the Celeron J1900 does not. As a result, AMD's processor is over four times as fast as Intel's.
Click to expand...

It was also quoted in the pfsense blog that processors with AES-NI have pushed well over 2Gbps in AES-NI testing. QuickAssist processors have the ability to push 40Gbps (per same blog).
 
Last edited:
dave_the_nerd

dave_the_nerd

Lifer
Feb 25, 2011
16,992
1,621
126
BirdDad said:
When my ex and I were married I stayed the night at her father's house and he had some drinking buddies over and they were talking about "jobs" where they hacked into people's computers, port sniffers, getting nfo from "jobs". I couldn't understand all of it but they did this for a living- I overheard all of this because the baby monitor was on and the receiver was in the room I was staying. I know that there is a lot of files that I have on my ex that she would want deleted or disrupted or just gotten rid of-shredded somehow. I have managed to keep the files on encrypted hard drives (several copies as I have found them gone from my computer before more than once after we divorced) and I know that she would really stop at nothing to get rid of those files if she could and just want as much protection as I can get to keep these files so that when my daughter is old enough say 21 or so she can learn just how sick her mother really was(I never speak of it to her as I think that she should learn about it when she is older). Anyway I am convinced that I have been hacked several times and even resorted to digging up(literally) hard drives to restore them to my computer(not only were the files deleted/shredded from my computer but hard drives came up missing and my computers' passwords had all been reset a few times when I got back from being out of town.
I have several copies encrypted and hidden in various places where they can not find them all.
I can't really do anything about the break ins(both over the internet and the actual stealing of hard drives) because they work for the government.
so I must keep several copies at all times and it hasen't been a problem since I started using PIA(at least on the network) but I would not put it past them to get together and hack me.
Click to expand...

Have you considered printing stuff out and putting it in a safe deposit box or something?
 
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
What a story. Why not install an alarm system? Guess that's the only way to stop them breaking in.
 
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
I do have an alarm system.
does pfsense allow more than one VPN and if so does it automatically use the second in case the first one won't connect?
Is there any way to install software like antivirus or something like malwarebytes on it so that my home will be protected even though I will be running the programs on my PCs and Macs anyway?
Is there a way to run a USB 3.0 hard drive from the box with it's own password without having to expose my router password/login unlike the ASUS routers?
Thanks
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
BirdDad said:
When my ex and I were married I stayed the night at her father's house and he had some drinking buddies over and they were talking about "jobs" where they hacked into people's computers, port sniffers, getting nfo from "jobs". I couldn't understand all of it but they did this for a living- I overheard all of this because the baby monitor was on and the receiver was in the room I was staying. I know that there is a lot of files that I have on my ex that she would want deleted or disrupted or just gotten rid of-shredded somehow. I have managed to keep the files on encrypted hard drives (several copies as I have found them gone from my computer before more than once after we divorced) and I know that she would really stop at nothing to get rid of those files if she could and just want as much protection as I can get to keep these files so that when my daughter is old enough say 21 or so she can learn just how sick her mother really was(I never speak of it to her as I think that she should learn about it when she is older). Anyway I am convinced that I have been hacked several times and even resorted to digging up(literally) hard drives to restore them to my computer(not only were the files deleted/shredded from my computer but hard drives came up missing and my computers' passwords had all been reset a few times when I got back from being out of town.
I have several copies encrypted and hidden in various places where they can not find them all.
I can't really do anything about the break ins(both over the internet and the actual stealing of hard drives) because they work for the government.
so I must keep several copies at all times and it hasen't been a problem since I started using PIA(at least on the network) but I would not put it past them to get together and hack me.
Click to expand...

Err a few USB sticks and safety deposit boxes are going to be a better solution to this problem.
 
MongGrel

MongGrel

Lifer
Dec 3, 2013
38,466
3,067
121
BirdDad said:
When my ex and I were married I stayed the night at her father's house and he had some drinking buddies over and they were talking about "jobs" where they hacked into people's computers, port sniffers, getting nfo from "jobs". I couldn't understand all of it but they did this for a living- I overheard all of this because the baby monitor was on and the receiver was in the room I was staying. I know that there is a lot of files that I have on my ex that she would want deleted or disrupted or just gotten rid of-shredded somehow. I have managed to keep the files on encrypted hard drives (several copies as I have found them gone from my computer before more than once after we divorced) and I know that she would really stop at nothing to get rid of those files if she could and just want as much protection as I can get to keep these files so that when my daughter is old enough say 21 or so she can learn just how sick her mother really was(I never speak of it to her as I think that she should learn about it when she is older). Anyway I am convinced that I have been hacked several times and even resorted to digging up(literally) hard drives to restore them to my computer(not only were the files deleted/shredded from my computer but hard drives came up missing and my computers' passwords had all been reset a few times when I got back from being out of town.
I have several copies encrypted and hidden in various places where they can not find them all.
I can't really do anything about the break ins(both over the internet and the actual stealing of hard drives) because they work for the government.
so I must keep several copies at all times and it hasen't been a problem since I started using PIA(at least on the network) but I would not put it past them to get together and hack me.
Click to expand...

So, you're Mr Robot ?

:colbert:

sdifox said:
Err a few USB sticks and safety deposit boxes are going to be a better solution to this problem.
Click to expand...

Yep, but really.
 
Last edited:
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
BirdDad said:
I do have an alarm system.
does pfsense allow more than one VPN and if so does it automatically use the second in case the first one won't connect?
Is there any way to install software like antivirus or something like malwarebytes on it so that my home will be protected even though I will be running the programs on my PCs and Macs anyway?
Is there a way to run a USB 3.0 hard drive from the box with it's own password without having to expose my router password/login unlike the ASUS routers?
Thanks
Click to expand...
It runs on free bsd so you really shouldn't have to worry about virus too much.
why do you have a hard drive with sensitive information on the network at all?

pretty sure you can do multi Wan fail over.
 
Last edited:
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
no you misunderstand, the hard drive on the network is not filled with sensitive nfo, it is for like drivers and files that I want to share between computers without having to carry a usb stick from one to all of them, it doesn't really matter if they get that hard drive or whats on it, it is just for common files
Like photos so that I can scan from one computer and load them up in paint shop pro in another
I meant can it scan incoming traffic so a virus doesn't spread to my computers
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
BirdDad said:
no you misunderstand, the hard drive on the network is not filled with sensitive nfo, it is for like drivers and files that I want to share between computers without having to carry a usb stick from one to all of them, it doesn't really matter if they get that hard drive or whats on it, it is just for common files
Like photos so that I can scan from one computer and load them up in paint shop pro in another
I meant can it scan incoming traffic so a virus doesn't spread to my computers
Click to expand...

HAVP
 
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
pfSense does have antivirus module that you can load. it will slow down the download speed since it will scan a tons of files.
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
BirdDad said:
no you misunderstand, the hard drive on the network is not filled with sensitive nfo, it is for like drivers and files that I want to share between computers without having to carry a usb stick from one to all of them, it doesn't really matter if they get that hard drive or whats on it, it is just for common files
Like photos so that I can scan from one computer and load them up in paint shop pro in another
I meant can it scan incoming traffic so a virus doesn't spread to my computers
Click to expand...

HAVP package does http://virus scanning but I have not used it so could not tell you about it
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,262
17,901
126
PS I hate auto correct

I am not certain NFS made it into pfsense since it runs a minimal freeBSD.
 
Last edited:
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
nevermind that then, I don't want anything except encryption slowing my downloads/uploads
Thanks you all for the great information
 
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
Does pfsense allow the full 64 character password? Or is it like Merlin or dd-WRT only allowing 32?
Do you need a dedicated monitor for it or are you able to adjust the settings from a computer on the network?
 
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
BirdDad said:
Does pfsense allow the full 64 character password? Or is it like Merlin or dd-WRT only allowing 32?
Do you need a dedicated monitor for it or are you able to adjust the settings from a computer on the network?
Click to expand...

After initial setup (probably best with monitor), you can just log in like any other router and manage settings.

When you say password, are you talking about administration password? Googling seems to indicate it has a 128 max length.
 
Last edited:
S

SwiftWind

Platinum Member
Sep 27, 2004
2,588
22
91
Not sure how you plan to use OpenVPN to mask your ip addresses. Are you using a proxy elsewhere? Or just using it for remote access? Also, if you really want to protect your data, just keep it locked up and off the network. The type of media you store it in won't matter then.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom