this post was submitted on 07 Nov 2024
48 points (96.2% liked)

Selfhosted

40645 readers
341 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

My internet connection is getting upgraded to 10 Gbit next week. I’m going to start out with the rental router from the ISP, but my goal is to replace it with a home-built router since I host a bunch of stuff and want to separate my out home Wi-Fi, etc onto VLANs. I’m currently using the good old Ubiquiti USG4. I don’t need anything fancy like high-speed VPN tunnels (just enough to run SSH though), just routing IPv6 and IPv4 tunneling (MAP-E with a static IP) as the new connection is IPv6 native.

After doing a bit of research the Lenovo ThinkCenter M720q has caught my eye. There are tons of them available locally and people online seem to have good luck using them for router duties.

The one thing I have not figured out is what CPU option I should go for? There’s the Celeron G4900T (2 core), Core i3 8100T (4 core), and Core i5 (6 core). The former two are pretty close in price but the latter costs twice as much as anything else.

Doing research I get really conflicting results, with half of people saying that just routing IP even 10 Gbit is a piece of cake for any decently modern CPU and others saying they experienced bottlenecks.

I’ve also seen comments mentioning that the BSD-based routing platforms like pfSense are worse for performance than Linux-based ones like OpenWRT due to the lack of multi-threading in the former, I don’t know if this is true.

Does anyone here have any experience routing 10 Gbit on commodity hardware and can share their experiences?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 0 points 1 month ago (4 children)

many people just buy junk like this https://www.amazon.com/Mikrotik-Router-Switch-CRS305-CRS305-1G-4S/dp/B08437RDM1 it's cheaper in the long run.

You will need a good 10Gb nic, I have been using Intel nic's if you use a Intrusion Prevention System that can eat away at the CPU, also more RAM helps like 8GB's or more for IPS, I use 16GB's for IPS + ZFS and a nice Switch can help a lot as it can do DNS and the works, more or less i use a firewall box to a Switch and use a Layer 3 Switch for routing, some can do 20+Gb's routing.

[–] [email protected] 2 points 1 month ago (1 children)

Mikrotik make good hardware, what are you on about?

[–] [email protected] 1 points 1 month ago

they do make some good hardware, just this one they cheaped out on and used 16MB's of Storage, it really hobbled the device.

[–] [email protected] 2 points 1 month ago* (last edited 1 month ago) (1 children)

The product you linked is a cheap fanless 10G layer 2 switch. It's ok for the price, as fanless 10G enterprise switches are hard to get used.

There are suitable 10G capable Mikrotik routers however. This one, for instance: https://www.amazon.de/MikroTik-RB5009UPr-S-IN/dp/B0BBW159WW If you want wirespeed 10G routing on two or more ports it's going to get expensive and/or noisy fast. A good compromise is a single 10G port router in a router on a stick mode used with a cheap 10G layer 2 switch.

[–] [email protected] 1 points 1 month ago (1 children)

The one i linked is both a router and or switch, you can get cheap switches for like $300 that do really well.

[–] [email protected] 1 points 1 month ago* (last edited 1 month ago)

Wire speed L2 in hardware is cheap, but layer 3 is not (and is typically limited to few k routes for campus type of switches). I have a Quanta LB 10G and a Brocade ICX 1G/10G/40G switches for lab use, which are hot and screamy but were cheap used. I would not trust software L3 implementations to not drop packets at high rates.

[–] [email protected] 1 points 1 month ago

I can only look at Mikrotik gear in jealousy since they don't have a reseller here, so all that's available are overpriced, un-warrantied gray imports...