build your own passthrough device capable of PIA openVPN AES 256 SHA 256 RSA-4096

Page 4 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
I don't see how identity theft has anything to do with internet speed.
 
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
sdifox said:
he is trying to figure out the hardware muscle he needs to do seamless encryption.
Click to expand...


Based on the AES-NI testing chart, the J1900 can pump over 250Mbps even AES 256 without the AES-NI instruction set. Of course, future bumps to 1Gbps would be capped at that rate.

Still kicking myself for missing the $34.99 FRY's deal (by 5 minutes) for the AMD 5350 and MSI board that would have done AES-NI and probably run at around 20 Watts or less.
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,516
17,962
126
Engineer said:
Based on the AES-NI testing chart, the J1900 can pump over 250Mbps even AES 256 without the AES-NI instruction set. Of course, future bumps to 1Gbps would be capped at that rate.

Still kicking myself for missing the $34.99 FRY's deal (by 5 minutes) for the AMD 5350 and MSI board that would have done AES-NI and probably run at around 20 Watts or less.
Click to expand...

so tell him that, not me :p
 
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
sdifox said:
so tell him that, not me :p
Click to expand...

I did! :p (just indirectly)....

I also posted the AMD 5150 deal for $39.99 AR including MSI ITX board (dead now). That board would have pumped over 1Gbps with AES-NI and had an 8X PCIe slot for expansion (probably could have went to 10Gbps NIC's but don't think the CPU would have went that high - encrypted or not).

Edit: Damnit, I keep forgetting that OpenVPN isn't compatible with AES-NI yet but it's coming. Still need that, IMO, for the future.
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,516
17,962
126
Engineer said:
I did! :p (just indirectly)....

I also posted the AMD 5150 deal for $39.99 AR including MSI ITX board (dead now). That board would have pumped over 1Gbps with AES-NI and had an 8X PCIe slot for expansion (probably could have went to 10Gbps NIC's but don't think the CPU would have went that high - encrypted or not).

Edit: Damnit, I keep forgetting that OpenVPN isn't compatible with AES-NI yet but it's coming. Still need that, IMO, for the future.
Click to expand...

Dual Xeon L5640 here :whiste:
 
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
After Snowden incident, U.S. people are paranoid then ever, including my mom, who can't even start a PC.

spy-your-buddys-network-traffic-intro-wireshark-and-osi-model.w654.jpg
 
B

BirdDad

Golden Member
Nov 25, 2004
1,131
0
71
sdifox said:
he is trying to figure out the hardware muscle he needs to do seamless encryption.
Click to expand...

correct you are!
Right now I am trying to figure out if the Sempron 3850 would be enough to do it.
My rules are this:
1 must be able to do AES256,SHA256,RSA4096 all at the same time at at least 150Mbps in real time-no noticeable lag
2 must not overheat or be overexerted in any way while performing this task
3 must have a small form factor
4 must be able to go 24/7/365 constant
5 must be able to use very long password of 64 characters in the openVPN password place
 
Engineer

Engineer

Elite Member
Oct 9, 1999
39,230
701
126
sdifox said:
L is for low power duh :colbert:

Remember my pfsense is just one of the vms hosted on the poweredge R710 :awe:
Click to expand...

LOL! :p

Dual processors (so 12 cores and 24 thread)? http://ark.intel.com/products/47926/Intel-Xeon-Processor-L5640-12M-Cache-2_26-GHz-5_86-GTs-Intel-QPI

D:D:D:

I could see using a VM for that kind of stuff if I needed other things running too. I assume that pfsense runs well in a VM environment?

I don't need to host other VM's. Besides, I'm trying for a very small case (at least by my standards) using the Antec ISK-110 case. I could go smaller but I think I would have to buy a pre-built unit for that and I wanted to do the building. I'm also trying to push this down to 10W or lower.

As for BirdDad, I answered part of the questions about this project in the CPU forum (where he asked about AES instructions in CPU's).
 
Last edited:
R

rchunter

Senior member
Feb 26, 2015
933
72
91
If I felt the need to run everything through a vpn I would just do like fox does and run it as a vm on my file server (e3-1246v3). But beings how I live in BFE I will never have fast internet anyway. Hell a 400mhz router will take care of my openvpn needs. lol.
 
sdifox

sdifox

No Lifer
Sep 30, 2005
100,516
17,962
126
Engineer said:
LOL! :p

Dual processors (so 12 cores and 24 thread)? http://ark.intel.com/products/47926/Intel-Xeon-Processor-L5640-12M-Cache-2_26-GHz-5_86-GTs-Intel-QPI

D:D:D:

I could see using a VM for that kind of stuff if I needed other things running too. I assume that pfsense runs well in a VM environment?

I don't need to host other VM's. Besides, I'm trying for a very small case (at least by my standards) using the Antec ISK-110 case. I could go smaller but I think I would have to buy a pre-built unit for that and I wanted to do the building. I'm also trying to push this down to 10W or lower.

As for BirdDad, I answered part of the questions about this project in the CPU forum (where he asked about AES instructions in CPU's).
Click to expand...

It's my 2012 datacenter lulz hosting plex, pfsense, a win 10, and varius ubutu.
Thing is I only paid 640 for the R710 with 4GBx6 RDIMM. Cheaper than it would have cost me to get an i7 system together.
 
Last edited:
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
@OP

sdifox said:
Get intel chip nic.
Click to expand...
+1

Intel is always supported in any platform, Windows, Linux, OS X, or any bare metal virtual environment.

Realtek support in Windows is OK, but a bit spotty in Linux.

The TP-Link card uses a Realtek chip and have reports not supported in pfSense.

http://lists.freebsd.org/pipermail/freebsd-bugs/2014-June/056664.html

Spend a little more saves you tons of headache down the road.

======

If you run pfSense in a VM then no problem. Since pfSense VM will emulate virtual adapter as an Intel or AMD NIC (in VMware).
 
Last edited:
mxnerd

mxnerd

Diamond Member
Jul 6, 2007
6,799
1,103
126
BirdDad said:
thanks for the advise
I am looking at http://www.amazon.com/Intel-PWLA849...1-1&keywords=intel+nic+pci-e+dual+low+profile
Click to expand...

That's very, very old PCI-X standard. It won't fit on PCIE slot even if you cut it open.

Regarding onboard Realtek, I have no idea. Many time you have to test in order to know. There are just too many variants.

=========

single port

http://www.newegg.com/Product/Produ...106033&cm_re=intel_nic-_-33-106-033-_-Product

dual port in post #72

http://forums.anandtech.com/showpost.php?p=37713166&postcount=72
 
Last edited:
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom