Just want to say that even a year later this video really help me wrap my head around physical port mappings for virtualized FW/virtualization hosts. Something even nearly all the "tutorial" videos simply gloss over. I really appreciate this!
@ServeTheHomeVideo
7 ай бұрын
Glad it helped!
@Robbaz
2 жыл бұрын
Wonderful to see a video on this, got a J4125 4x i225 to pick up next week and N6005 4x i225 is a few weeks away "reviews seems to be dropping in on the mobile site", both from Topton. Feel somewhat secure in the purchase now.
@ServeTheHomeVideo
2 жыл бұрын
I still have not gotten any of the newer N5105/ N6005 units at this point.
@ecotts
2 жыл бұрын
Do they do the 6x port version on the N6005?
@Robbaz
2 жыл бұрын
@@ServeTheHomeVideo I've been waiting forever as well. But reviews probably means people are getting them.
@ServeTheHomeVideo
2 жыл бұрын
I hear they are easier to get in China than to get shipped right now. Hopefully soon
@combine2180
2 жыл бұрын
@@ServeTheHomeVideo mine just departed country of origin today according to tracking so about a 16 day lead time to get it shipped and another 30 to arrive with standard shipping on aliexpress for the 5105 model is what it looks like rn for USA.
@beauregardslim1914
2 жыл бұрын
WAN port selection really needs to take failure modes into account. If there is some kind of "factory" reset, or if file system corruption deletes your port config file, you don't want your WAN cable going to the port that will ask for a DHCP address and allow logins.
@ServeTheHomeVideo
2 жыл бұрын
Totally true. The virtualized model helps with this as it uses the default ordering
@arcadiosincero
2 жыл бұрын
I set up the firewall protecting my Proxmox VM cluster as a VM running on that cluster. I was having second thoughts about that decision because it seemed like I'd run into an issue where I wouldn't be able to manage the cluster remotely if something happened to it because the firewall was one of the VMs on that cluster. However, that decision was reaffirmed a few weeks back when something happened to the host the firewall was living on. I couldn't get into my cluster remotely, and I was like "oh no ... this eventual nightmare has finally come true". But then, about 5 minutes later the firewall came back up because Proxmox migrated it to another host for me. I was pretty impressed and I was happy with my decision to have made it a VM after that.
@bjornarsimonsen7592
2 жыл бұрын
I didn't know automatic migration was a thing in Proxmox. That's really cool!
@vonkruel
2 жыл бұрын
I run OPNsense virtualized under Proxmox, and personally I like it. I went the "one big server that serves all the things" route. Of course, if I need to do maintenance on the machine, all of it goes down during that. It's a reliable machine, though, and while I'm doing maintenance I don't need to be online. I appreciate being able to manage OPNsense as just another VM. These are interesting little boxes! Within these limitations, many people's needs for a server appliance could be met.
@strandvaskeren
2 жыл бұрын
Once you get a second server that problem goes away, just run your OPNsense vm on the server you're not currently doing maintenance on.
@ryanblue4204
2 жыл бұрын
FYI- the reason pfsense/opnsense appear to consume all the ram you get it is because BSD doesn't have the qemu-guest-agent driver that reports memory usage back to the hypervisor like most Linux instances do. Proxmox just sees that the OS has reserved all that memory even though it may just be being used for caches or unused inside the instance. Trust what the pfsense ui tells you, not proxmox. It'll run fine on 2-4gb for most use cases
@rudyNok
8 ай бұрын
I run pfSense in Proxmox with 512 MB for a few years now, no problem :)
@Viking8888
2 жыл бұрын
You lay in bed vexing over virtualizing your router or not too???? And here I thought it was just me! 😉
@ServeTheHomeVideo
2 жыл бұрын
:-)
@Viking8888
2 жыл бұрын
@@ServeTheHomeVideo Patrick, thanks for the video. I've been searching for a good small low power computer to run pfsense on for quite a while. These boxes are really nice just a bit pricey when you're on a tight budget. Time to save my pennies! 😉
@KeenanV
Жыл бұрын
Im doing it right now!
@tokyotexture
2 жыл бұрын
I bought one of the 1Gbps variants off of Alibaba, and the SSD died about a year in, so definitely a valid concern to call out.
@TerraMagnus
2 жыл бұрын
Just bond all the NICs and use VLAN tags for LAN, WAN, etc. When you're virtualizing your firewall anyway, this just works.
@TerraMagnus
2 жыл бұрын
@@sirsean1227 so informative.
@rodrigocsouza8619
Жыл бұрын
Do you know any issues when running multiple VLANs in that scenario? I'm testing pfSense at my home lab, running into a VM over Proxmox and even though I have, initially, set firewall rules allowing full communication between the VLANs, I'm not even able to ping between the networks.
@justinnamilee
2 жыл бұрын
I won't go back from virtual... snapshots, simple remote console access, adjusting the hardware on the fly, so many benefits for me!
@BobHannent
2 жыл бұрын
I bought that one after the first video, installed pfSense on it, but I feel it's under utilised. I've been thinking of installing Proxmox on it, so this video is very pertinent
@MatthewHill
2 жыл бұрын
Been virtualizing my firewall (OPNsense) on my "main" homelab server for about a year now. I'm pretty happy with it, and the box overall has enough horsepower that I can pretty much dedicate as many resources as I want to the firewall should performance be an issue. My worry is that if anything happens to that server--it is basically a pile of used enterprise parts I got off ebay--all my internet connectivity goes away.
@HydrarDraconis
2 жыл бұрын
I'm planning moving my homelab to virtualized pfsense too, my plan to counter that is to run the VM with proxmox HA + replication, and internet vlaned to 2 hosts, allowing relatively transparent failover if any of my gear fails when I'm not home
@MatthewHill
2 жыл бұрын
@@HydrarDraconis Hmm that's an interesting idea. I may try that.
@HydrarDraconis
2 жыл бұрын
@@MatthewHill Just remember to have at least 3 nodes, or add a qdevice for reliable quorum in the HA cluster and it seems to fail over fine in my limited testing
@MatthewHill
2 жыл бұрын
@@HydrarDraconis it's a homelab. It hasn't got two nodes, let alone three. :-)
@jay9404
9 ай бұрын
I'm about to purchase the n100 version of this box. Now that a year has passed since your comment, how's the virtualized firewall been working out? If you could do it again, would you go baremetal?
@DmnkRocks
2 жыл бұрын
it always depends.... as long as your virtualization is performant enough, there is no problem with running virtual. but you need to consider, your infrastructure should be solid enough to avoid problems (like multiple hypervisors, vMotion enabled or better yet - a virtual HA with both vFirewalls on different Hypervisors)
@gowinfanless
2 жыл бұрын
Very impressive video review,actually this model is our first generation which is stable but big.We have developped this router to the third generation,pocket size with 3*2.5Bge+ dual 10.0Gbe port
@JasonsLabVideos
Жыл бұрын
dual 10gbe ? Yes please !
@KSJAFN
2 жыл бұрын
Bought a machine that looks physically similar to this a couple of years back with a Celeron J1900. It's a great little firewall for home which was very cheap uses hardly any power - but like you, I find the RAM and SSD a bit of a worry (they're branded "Kston"). My decision to put the LAN on interface 0 and the WAN on interface 3 will from now on keep me awake at night.
@eazysnatch
Жыл бұрын
Awesome videos, buddy i love all of them. Just to say, snapshots are not backups every snapshot will decrease performance, so we use them before changes/upgrades...etc after we know everything works and you can keep them for day / week then we delete them.
@rudyNok
8 ай бұрын
What do you mean by "every snapshot will decrease performance"? I don't get it.
@chromerims
5 ай бұрын
To be or not to be [virtual], that is the question. While an older video now, regardless I find myself here. Excellent video👍, awesome channel, thank you. 17:10 -- STH _unblocked_ on my pihole. Testing on N100 C[heap]PU, by which I mean fooling/playing around. Kindest regards, neighbours and friends.
@DK-hs3oz
Жыл бұрын
Tiny computers can be addicting, be careful. soon you may have 5 to 6 of the things; justifying your habit by the price/value of small size and power consumption. That said, I have a few. My latest has 6 ETH ports, the N5105 CPU (outperforms the j4125 by a good ways)., and DOES have 2 so-dimm slots. They exist! Shipping seems to be better now... but anything that crosses an ocean is a miracle of tech and you should be happy to get it at all. Nice review and some good information, many thanks.
@denvera1g1
2 жыл бұрын
With a virtualzied firewall, PFSense can use USB based cellular modems, but it requires a virtual switch instead of direct hardware access.
@rudyNok
8 ай бұрын
I'm using an old android phone with USB tethering and direct hardware access. It works.
@wudchk
2 жыл бұрын
I want to mention that there is also a SIM card slot, I'm going to test to see if I can add my 5G/LTE modem.
@dreamer9393
2 жыл бұрын
Let us know, if it works
@wudchk
2 жыл бұрын
@@dreamer9393 Will do, I have been busy with work. I'll crack it open tonight.
@PeterZin
2 жыл бұрын
@@wudchk I’m curious. does it work?
@wudchk
2 жыл бұрын
@@PeterZin it does! I forgot to update this comment, thanks for the reminder
@PeterZin
2 жыл бұрын
@@wudchk Can I ask which specific modem you used? Any extra steps? I'm totally new to Proxmox and I can't get it to see my intel ax210 wifi card. I wanna create additional wireless wan in pfsense.
@cyruschan5507
2 жыл бұрын
Nice piece of content! I had virtual servers for networking and always want to consolidate & upgrade them. This shed light on how the set up will go.
@denvera1g1
2 жыл бұрын
The cooling on this case would probably be able to cool the Intel Core U or AMD U series processors if limited to 15-20w average
@yourfriendwill
2 жыл бұрын
just found your channel, you have the exact approach to computer hardware I've been looking for. so, thanks!
@ServeTheHomeVideo
2 жыл бұрын
Thank you and welcome
@yourfriendwill
2 жыл бұрын
@@ServeTheHomeVideo I've subscribed and I'll probably work my way through your backlog this coming week, appreciate your good work and keep it up!
@p4wk0r
2 жыл бұрын
For flexibility I use all ports in lagg and use vlans for WAN, LAN, DMZ etc Waiting for 10G/SFP+ version ;)
@TerraMagnus
2 жыл бұрын
I know a lot of folks knee jerk against this but it works nicely.
@BobHannent
2 жыл бұрын
I have a spare 10G Mellanox card and I've been tempted to use a mini-PCIe to PCIe adapter on mine. It sounds like a horrible Frankenstein's Monster, but could be fun.
@Cynyr
2 жыл бұрын
just make sure you really trust your switch to keep the traffic separate, and that you can actually disable the mgmt interface on the WAN ports.
@Bauanga
Жыл бұрын
I would love a detailed guide for the network configuration in proxmox for a opnsence vm.
@PeterZin
2 жыл бұрын
My N6005 unit was also taking like a month to be shipped. So I contacted them and they said they couldn't get n6005 atm because of Shanghai lock down. They said they have n5105 in stock. So I changed my order and it shipped same day.
@Jarek.
2 ай бұрын
I'd love to see at least a basic security assessment - at least it's a *HEAP* unit from *CHINA* supposed to be used as your *FIREWALL* . Other than that - I'm sold to this idea of a virtualised FW.
@fanshaw
4 ай бұрын
Or you could run vlans and have a host with a single nic. ;) In my opinion, its better to have two physical units for failover. If something goes wrong, and you aren't there to fix it, you can always get your SO to pull the power cord on the broken unit. I like to keep the absolutely critical systems isolated from nice-to-have services. I don't want to bring down my internet, DNS or DHCP because I was playing with my docker server and hit the wrong button. In this firewall's case, you might use virtualisation to isolate your firewall config from the hardware so you can swap hardware without updating the firewall config, rather than for adding more services. Or as mentioned, to have a quick failback without having to find a usb stick and a keyboard / screen to plug into the unit, which is located up in a cupboard...
@nickoutram6939
2 жыл бұрын
You can't possibly expect a software stack to have the throughput of hardware, functionally though it sounds like a good plan.
@kevinm8865
2 жыл бұрын
^
@DragonReborn100
2 жыл бұрын
I did buy the barebones version of this on Aliexpress in Black and got Black! It did turn up quite quicky! I did have a 8Gb stick of Memory hanging around and i did purchase a named brand of SSD for install of pfSense for bare metal install. It does seem to be performing well for me, a home user. Does seem to be nice and cool as well. I never even thought of VM the pfsense. I may look into this in the future. Thanks P 🙂
@RazorSkinned86
2 жыл бұрын
Ditto. I love these boxes. All the lock downs over in china has really fk'd up shipping times.
@vision8579
2 жыл бұрын
I bought the same, barebones. I installed brand name ram and SSD. However, my unit seems to be a dud. Can't even boot into the BIOS reliably, sometimes yes and sometimes no (mostly no). After about 6 hours of messing with it, I gave up.
@gregglowery3452
2 жыл бұрын
I am curious about the memory slot. On the aliexpress website, all the specs (and even the picture of the motherboard) indicate 2 slots running in dual channel. So is it true that these devices have just one slot?
@DragonReborn100
2 жыл бұрын
@@gregglowery3452 Yes one slot only
@axn40
2 жыл бұрын
I am actually watching this vidéo in my bed!😅 Great guide! Thanks
@stormfox81
2 жыл бұрын
Tip: buy a 2TB ssd and use it for a virtual xpenology NAS. It will run like a beast
@jolness1
2 жыл бұрын
lol the intro is amazing. “I’m in bed thinking: ‘Am I doing this right?’“ hehe
@interceptor001
2 жыл бұрын
I had a problem using proxmox + pfSense and suricata with it. I don't know why but using ESXi solved that issue. Also CPU utalz. is 10% lower when assigning 4 instead of 2 cores.
@ZimTachyon
2 жыл бұрын
I'm going to get an alarm clock that wakes me up with "Hey Guys, This is Patrick from STH". I guarantee I'll double my productivity. :)
@LampJustin
2 жыл бұрын
Just some stupid idea: I would really love to see a blog post of running a small kolla-ansible deployed OpenStack deployment on TinyMiniMicro. That would be sooo cool and really shouldn't be hard at all, one controller node (no ha to keep it simple), one network node with 2 ports (one port needs to be given to a ovs bridge if you don't want to tinker with Linux bridges and veth pairs) and a couple hypervisors. Oh my I know I'm dreaming but that would be siick
@handspiker1994
2 жыл бұрын
I love to see that! When Project TinyMiniMicro started, I thought they were going to do more with it. Instead it's become "here we are looking at a slightly different node. It has the same features as XYZ and XYA".
@LampJustin
2 жыл бұрын
@@handspiker1994 yeah sadly I got to agree on that... I also wished they would explore some options you could do, like HCI with oVirt, Proxmox, XCP-ng, Kubernetes or even Cloudstack. The possibilities are endless
@twistedridermike
2 жыл бұрын
I am working on a virtualized firewall too. I want to virtualize so I can also run my docker swarm manager, reverse proxy and home assistant on that same machine. This will allow me to take all other machines up or down as I wish and know the workloads will remain up. Ran into a few issues: 1) IOMMU on E3-1200 V3 is a disaster, probably will virtualize ports from the i350T4s I installed. 2) I have an early 320GB SLC Fusion IO drive to park my web cache on, but recompiling the drivers for Proxmox 7.1 is proving difficult. 3) I realized four of the SATA ports on my Supermicro X9SCM-F are 3gb after I bought it... and the SSDs for the bulk storage. Fail. I would love to see more details about configuring a virtualized firewall with other VMs on a virtual switch in Proxmox.
@enickel
2 жыл бұрын
18+ days also waiting for the shipping of my n6005 box! XD
@kenniltv
2 жыл бұрын
Ordered one a few days ago. Guess it will take a loooong time to arrive to Europe. Sad xD
@skaltura
2 жыл бұрын
bought one, let's see how well it actually works :)
@thirdenvoqation7735
2 жыл бұрын
I ended up buying one of these units from Protectli, I'd rather trust them than a no-name Chinese import. One other advantage, at least for me, is that it can come with Coreboot. Pay a bit more for the privilege though.
@florianalbeck
2 жыл бұрын
But the Protectli don’t have 2,5 Gbit Nic
@thirdenvoqation7735
2 жыл бұрын
@@florianalbeck I just realised I mis-typed and should have said I'd wait ( I'll end instead of I ended) but give it a few months and they'll most likely have it. I'd rather wait till there's a company I can trust for core infrastructure. The price difference is negligible as well.
@RobinCernyMitSuffix
2 жыл бұрын
Funny enough: I got one of the exact same units that Protectli sells, directly from China. Protectli is basically just a reseller, and they add quite a bit of markup on top.
@thirdenvoqation7735
2 жыл бұрын
@@RobinCernyMitSuffix I never said they wasn't, the main difference is that you can get CoreBoot as part of the build and deal wtih a European team if anything goes wrong. In other words customer service is better. That and when you order they arrive quicker, horses for courses.
@alfblack2
2 жыл бұрын
sweet. another question in my mind answered. Thx.
@opticalip1
2 жыл бұрын
Been using this for this exact purpose for a few years now. Got a i3-4030U w/ 8GB ram, threw in a good ssd and run pfsense + a few containers. Never had an issue and get great performance. Also got the unit on amazon for around $250-300
@RobertoCarlos-tn1iq
2 жыл бұрын
really? care to share a link to your purchase so we can get the same unit with the 2.5gb ports?
@johnknightiii1351
2 жыл бұрын
@@RobertoCarlos-tn1iq pretty sure the model that has the 4030u only has gigabit ports. I think he was just saying this is what he did with that box, not thst he has a box with 2.5gb ports
@wayland7150
2 жыл бұрын
I'm in this dilemma too. I have a Proxmox already so I could do it. I am getting a new Internet service with just a modem and no router so I need a router. I want to save some money, at least for a month or two. So it looks like I will at least start with a virtual router and maybe get a physical one later.
@ryannow
2 жыл бұрын
Speaking of no name storage from China: I would be really hesitant to put ANY software that originated in that part of the world, (or better yet, that I didn't install myself) into production as the firewall in charge of securing and gatekeeping my entire network... I'd also be equally as cautious about checking over any NV storage hardware imported from Asia - simply because I have _personally_ ordered simple, basic, run-of-the-mill USB sticks on Ali, and when they arrived a couple of them were pre-loaded with what appeared to be legit rootkits - AKA free memberships for the whole family - welcome to the BotNet Club! 😅
@pythonprofreak7522
2 жыл бұрын
Good review!
@maullah001
2 жыл бұрын
Where can I learn about the use of management port (and how to actually use it in real life situation)? Also, can the lan port for Proxmox be a virtula connection to pfsense rather than using a physical port?
@combine2180
2 жыл бұрын
Got my n5105 version on April 1st after your j4125 video and arrival estimates were 17th of May or later. It seemed like the sweet spot to me as it was going for ~215 usd after tax with no ram or ssd. Glad to see you did a review on the 4125 version. I wonder if the 6005 version will be powerful enough to run both a firewall and use the igpu to transcode for services like plex?
@ServeTheHomeVideo
2 жыл бұрын
You are lucky!
@chuck1011212
2 жыл бұрын
I am hosting Plex on a n5105 based system and with PlexPass enabling hardware transcoding, I have successfully hardware transcoded two 4k streams of this test file: jellyfish-400-mbps-4k-uhd-hevc-10bit.mkv and it did it just fine. (google the file name for the web site with many versions of test files available) Totally amazing from such a cheap and power efficient CPU. I wasn't doing that while the Plex server was virtualized though, my Plex transcode testing was done via Ubuntu server installed directly on the hardware.
@tjb_altf4
2 жыл бұрын
I've got an n6005 unit coming, ordered in March, but still not sent yet :(
@combine2180
2 жыл бұрын
Just got mine today and am installing ram and storage now and I can confirm it has two ram slots on the n5015 version.
@andrewvarey2027
2 жыл бұрын
Very informative like it . Keep doing great videos
@ArthursHD
Жыл бұрын
Those things are cheaper than ever :) N5105 bear bones box under 150€ I would get a reputable SSD localy.
@hcjkruse
2 жыл бұрын
Paying attention. About to replace an Edgerouter. A switch of the product line literally melted.
@ServeTheHomeVideo
2 жыл бұрын
Wow! Melted!?!
@reneb5222
2 жыл бұрын
Hi Patrick. I have the same one running very well. Got mine faster 😂. Have a awesome 🐣
@ServeTheHomeVideo
2 жыл бұрын
I am just unlucky with these :-)
@reneb5222
2 жыл бұрын
Btw they are now selling it with the j5000 series.
@YukikazeQ
2 жыл бұрын
been virtualizing pfsense and for the past couple years opnsense on proxmox for the past 7 years pcie passthroughing an intel i350-T4v2 into the vm and it has been great much nicer than having a dedicated machine for the sole purpose
@OVERKILL_PINBALL
2 жыл бұрын
I would use bare metal for the firewall and virtualize Pi_hole. I make an image of ther drive for DR. The image is small and quick to restore if needed.
@bcboncs
7 ай бұрын
I think I'm one of the few agreeing with you on bare metal firewall but how would you go about it? Like what Base OS would you use and does it have the ability to do a proxmox layer under the physical firewall and docker capabilities? I am leaning between openwrt and opnsense but want the downstream proxmox and docker functionality. Thanks kindly
@LampJustin
2 жыл бұрын
Hey Patrick, nice one as always ;) BTW have you checked out VyOS, I think it's great and I am pretty close to switching to it fully, but you know how it is to switch firewalls. It ain't done in a couple of minutes...
@ServeTheHomeVideo
2 жыл бұрын
I looked at it some time ago. Perhaps it is time to have Rohit take a look at it this year.
@LampJustin
2 жыл бұрын
@@ServeTheHomeVideo oh yes that would be nice! It's gotten really good, been using it for wireguard and BGP for some time now!
@cyruschan5507
2 жыл бұрын
Curious on your experience with VyOS. How do you feel about the rolling release on the free tier on VyOS? Or are you paying and using LTS versions?
@LampJustin
2 жыл бұрын
@@cyruschan5507 yeah that's the only annoying thing.... I'm not paying for the stable release, but if and when I'm moving to trying building stable images with docker from source
@gjkrisa
Жыл бұрын
Man and I was stressing over going unraid or proxmox/ Truenas for a new board I bought then being like is 2.5 gig going to work since there both 2.5 gig glad this video tells me yes no prob but now I may not have enough 2.5 although this new board was more for doing data log for my fanless pfsense play with vms and serve video backups. And possibly Learn new stuff to get a job I could grow more in.
@DominicFlynn
2 жыл бұрын
There's also a version with, 2xUSB, 2xUSB3, 1xUSB-C (with 4kx60hz), HDMI2.0, DP1.4, TF-Card reader.
@shephusted2714
2 жыл бұрын
a better way to gain throughput is to divide up ports via bonding or bridging - 2 heads is better than 1 but really serious folk will be looking for fw devices with 10g (at least) - 100g potato routers are around the corner and only a couple hundred bucks more per port for 4x perf, the mikrotik 100g 800 buck switch looked sweet and prices on commodity small 100g routers should drop as well going forward #paper launches #paper tiger #sonic #software defined networks #lcd
@ServeTheHomeVideo
2 жыл бұрын
Supply is a challenge right now.
@dangingerich2559
2 жыл бұрын
Maybe I'm just too inexperienced with Proxmox, or maybe I'm just too dim, but I don't see why one would want to use PCI passthrough for a pfsense or opnsense VM. I've done just fine with both ESXi and Hyper-V without passthrough, plus it allows for migration and HA. Is it for latency? Is there some hardware feature that just works way better with a physical NIC rather than a virtual NIC?
@HuyLe-qc8jc
2 жыл бұрын
I am testing out a similar system based on the N5105 processor. Heat is a concern. At idle, the chassis is about 50C (122F) and the CPU core temp is 60C (140F). I am not sure how long these system will last running at these temperature continuously. If you are interested in buy these, I'd look for ones that have extensive fins to keep the system cool or go for ones with a fan.
@ServeTheHomeVideo
2 жыл бұрын
These CPUs have a Tjunction temp of 105C because they are more embedded not consumer parts
@iBrandooon
Жыл бұрын
I virtualized pfsense on my 5950x on esxi, it auto starts on boot so no downtime! Setting up the VLANs was kinda pain but everything is set
@ServeTheHomeVideo
Жыл бұрын
Very cool!
@denvera1g1
2 жыл бұрын
4:25 IT usually takes ~3 months for my batteries to get here from AliExpress
@bastian433
2 жыл бұрын
Nice review. I have a "Parttaker" i5 8350u unit that works really nice. It looks the same but black and with 6 ethernet ports. It has just 1 gbit ethernet ports though. I connected a USB 2,5 gbit adapter as well. It reaches about full speed with a samba share. Also works really well with virtualisation in proxmox. With a 1 tb msata ssd and an option for say a large 2,5 inch ssd it is quite a nice box. The 8350u does get pretty warm when you put it to work. While not really needed I eventually strapped a Noctua fan on top to keep it a bit cooler (so it does not clock down as much)
@ServeTheHomeVideo
2 жыл бұрын
There is a 6-port J4125 version now, but things are taking so long to ship these days that I did not prioritize it. Maybe when the N5105/ N6005 units start to ship. Those have a big generational performance bump.
@Lukas-jh2uk
2 жыл бұрын
@@ServeTheHomeVideo I was really lucky then. I order a 4 ports 2.5gbit N5105 unit (28th of March) after your first review video and have already received mine. Got the unit in less than 16 days from China to Germany with free shipping. I was really surprised how quick it went that I now have to wait on my locally order RAM and SSD.
@theophilusbassaw580
2 жыл бұрын
I would use pfsense/opnsense more if there is better cloud-init support. Being able to spin them up through terraform would be handy
@dfgdfg_
2 жыл бұрын
I get most of the way with Ansible
@damzelfly
13 күн бұрын
Did I get this right? Firewall as baremetal the WAN is on ETH0 while Virtualize Firewall the WAN is on ETH3
@ServeTheHomeVideo
13 күн бұрын
You can set it to however you want.
@damzelfly
13 күн бұрын
Thanks for your reply. On 18:46 you list all of the VMs you run inside of proxmox. How are they able to communicate with each other? Is the virtual bridge also part of the pfsense interface?
@gnuzmaz8961
Жыл бұрын
After few years of usage similar router on Celeron J1900, im switching to Dell mini-PC with old i7. No enough power for running few virtual machines working properly.
@adam-user
Жыл бұрын
Hi! Great video, BTW, very high quality content! Do you have any thoughts on power-failure safety of a bare-metal pfSense vs a virtualized one? UPS-es can only hold up as much and once the power goes off, you want your router to boot up again all the time and every time. With a physical router that's a none-issue. What about pfSense on a bare metal or OPNSense on Proxmox?
@ServeTheHomeVideo
Жыл бұрын
There is a box to check "Start at boot" or something similar in all hypervisors that you need to check if virtualizing a firewall.
@adam-user
Жыл бұрын
@@ServeTheHomeVideo Yep, once Proxmox boots it's easy. My concern is that while routers tend do have no issues with powering them off/on/off/on, Proxmox's ext4 filesystem might get corrupt if not shut down correctly. I think that probably a read-only fs mount would help, but I'm not sure if that even possible.
@RambozoClown
Жыл бұрын
@@adam-user Thats why your UPS sends out a shutdown signal before it keels over.
@adam-user
Жыл бұрын
@@RambozoClown Yep, I just don't like to rely on UPS signals to go through. But I understand your point. With a regular router, you can usually pull the plug as often as you want and the OS won't get corrupted. For example a read-only boot fs (the one that newer raspberry pi os supports) is a great solution, IMHO.
@amessman
2 жыл бұрын
17:55 will do
@ServeTheHomeVideo
2 жыл бұрын
Much thanks!
@jrader
2 жыл бұрын
At 18:49 I think you mean for the graphic to say that you're using ETH2 as your pfSense LAN and ETH3 as WAN. You've reversed them in the graphic.
@shephusted2714
2 жыл бұрын
good content here - opnsense fork ftw! running a couple of these in HA config makes sense for smb - good mkt opp for small builders! i think that going fwd the prices for these small boxes will plummet - zen4 derivatives and nascent arm devices will exert mkt pressure on intel solutions - these small pc will also present good options for smb sector for scaleable cluster nodes - fast network and nvme will help adoption #netfs #galera
@SHREYAS1112
8 ай бұрын
Is there a guide on how to set this all up from the beginning? I have just managed to install proxmox, and enable VT-d on a 4 port Intel i-226 N100 PC. Patrick mentioned how he prefers the 4 ports to be setup in a virtual environment, but how to actually set these up? I am new to all this. Any input would be splendid. Thank you.
@TheChemisch
2 жыл бұрын
Feel ripped off. paid like $480 for a proctectli vault with a j4125 as well. And this seems to check all the same boxes with 2.5gig instead of 1 gig. Never though to look at aliexpress.
@stuartlunsford7556
2 жыл бұрын
Nice double entendre there Patrick, haha.
@ServeTheHomeVideo
2 жыл бұрын
What do you mean? I was just talking virtualization :-)
@DereinzigwahreAkede
Жыл бұрын
If it feels cooler to touch it is dissipating less heat...
@Phil-D83
2 жыл бұрын
Wish pfsense would add adguard home as a package. Edit: you can run adguard home on opnsense and have it not be a vm.
@AlexandreAlonso
2 жыл бұрын
what is the maximum routing throughput of the device if all port use to route network packages?
@moonobservergilles5730
2 жыл бұрын
you can add one of those fans we put on a wood stove works with heat ? maybe would improve the cooling ?
@eltreum1
2 жыл бұрын
I am looking to replace my MicroTik cloud router pro because I can't get a ping time anywhere lower than 80ms when the 100M raw connection gets 20-30s ping to same places. I need it for competitive gaming and streaming, no inbound services, just a simple NAT overload out for 4-5 devices.
@ServeTheHomeVideo
2 жыл бұрын
I made CS:Go Global Elite on my main and smurf account using a pfSense firewall
@bcboncs
7 ай бұрын
@@ServeTheHomeVideo nice! I played cs beta and now play cs2 lol that's where the cs suffix comes from in my 2 decade old name. What Base os would I need for openwrt or pfsense to be bare metal and can I layer proxmox and docker underneath it?
@JeffGeerling
2 жыл бұрын
lol, the things we think about at night. Is it bad that you're not even being sarcastic at 0:10 ? :D
@ServeTheHomeVideo
2 жыл бұрын
Ha! Have a great Easter weekend with the fam Jeff
@strandvaskeren
2 жыл бұрын
Lol, been there, done that. A couple of co workers asked if I'd seen some tv program to which I answered that I haven't watched tv for 15 years or so. They asked why and I told them that 5 minutes into watching tv my mind wanders in other directions, so why bother? Then they started taking about the benefits of knitting, something to do while watching tv. Well thing is, I don't really need new stuff to occupy my time, I've got plenty of stuff lined up, in fact that's why I don't wasted time on tv to be honest. "Well, well, what are you so busy doing then?" they asked and I told them about reading up on Ansible to make a controlled shutdown of my server cluster, not to mention working on a CARP setup of my pfsense vm's for redundancy. Knitting, pffft.. Who the heck got time for that when you can lie awake thinking of vlans and dmz zones?
@iviaverick52
2 жыл бұрын
I like the silver. Black is too overdone with IT hardware these days.
@newchannel-gl4ez
5 ай бұрын
Can you show us how to do these things? Im wanting to learn and setup my own home setup but it sounded like this could also be done for business? Im dreaming of running my websites from my own home server which is why im wanting to learn all of this
@deadlymarsupial1236
2 жыл бұрын
The sides are probably rounded to ensure heat dissipation goes upward. Turning the unit on it's side could expose components to additional heat beyond design tolerances due to the orientation placing heat-producing components under instead of beside. From a support perspective I would avoid any cheap components for the sake of saving the client a few bucks simply because the client will still expect the technician to support it EFFICIENTLY, and when crap makes support harder, efficiency goes out the window and the client will notice and probably point the finger. If the client is that tight you got bigger problems than placing quality gear - it is safer to walk away than walk into what will eventually become trouble. Server roles in business is best fulfilled with server class product. If it is for a home lab and you don't want to learn the advantages of server class product and do not expect anyone else to support it then go for it.
@lost4468yt
2 жыл бұрын
If you virtualise it in a home network and use it as your router, how do you deal with accessing it if the pfSense or whatever VM crashes or fails to boot/work/etc?
@ServeTheHomeVideo
2 жыл бұрын
First you can rollback snapshots/ backups. Second, you can get the VM console
@lost4468yt
2 жыл бұрын
@@ServeTheHomeVideo But how do you get to it if your network is down? You would have to either do something like connect a laptop directly to the machine and setup the laptop as a gateway. Or you would have to connect a screen to the machine and fix the VM through the CLI.
@blkspade23
2 жыл бұрын
@@lost4468yt Your "network" won't actually be down. You'll lose services like DHCP, DNS and internet (connections from outside), but the host port would always be accessible and would (should) have a static IP address. As long as some physical connection exists with a switch to the hypervisor itself, you'd only have to set a static IP on whatever device you're managing from.
@TheLazyJAK
2 жыл бұрын
Is Adguard better than pi hole?
@DeusWolf
2 жыл бұрын
At 14:10 you are using the title card from your physical setup for the graphic on your virtualized setup.
@ServeTheHomeVideo
2 жыл бұрын
Good catch. Graphic is the right one, title is wrong :-( This is why I am usually not allowed to edit videos. 100% that is my fault.
@skorpion1298
2 жыл бұрын
12V but how much Amp? I hate it when it's not written on the device.
@maciejzieba1982
2 жыл бұрын
I've bought 2 of these MiniPCs. The first one (N5105, V1 motherboard) came with 12V 5A power supply and the second (N6005, V2 motherboard) with a 12V 3A one. I've checked the N5105 with 3 SSDs (!) using a wattage meter and the max I've seen it use was around 28W. I would highly suggest replacing the provided power supply with something more reliable. A good 12V 3A or 4A PSU would probably do fine.
@stuartlunsford7556
2 жыл бұрын
What node are these network chips on? I know IO doesn't scale as well with smaller nodes, but I still think passive cooling would be more common if these are sub 12nm.
@ServeTheHomeVideo
2 жыл бұрын
The J4125 is 14nm. The next-gen is 10nm. The i225's are 28nm.
@stuartlunsford7556
2 жыл бұрын
@@ServeTheHomeVideo Thanks for the easy knowledge! The future is looking cool lol.
@JasonsLabVideos
Жыл бұрын
Patrick, have you come across any mini pc's that have SFP+ or dual 10gbe nics ? I'm looking to buy one for a VERY powerful firewall. Dream would be Xeon-D but the Higher end Atom's or i3's are good too.
@ServeTheHomeVideo
Жыл бұрын
Maybe getting something this week that was supposed to be sent in August with SFP+
@JasonsLabVideos
Жыл бұрын
@@ServeTheHomeVideo ohhhhhhh now my interests are perked!
@I4get42
2 жыл бұрын
Looking for an opinion: Would it be worth using a USB gig NIC for management to have the high-speed NICs for LAN and WAN, or is relying on USB asking for trouble?
@wayland7150
2 жыл бұрын
USB for management is fine, what's to manage anyway once it's running. However I have a 2.5GBe USB NIC which is fast for about 100GB of traffic then it crashes. I don't know if this is typical but I'd can't trust it.
@harrisonbaxter9038
2 жыл бұрын
I was thinking the exact same thing. I think I'll give it a try.
@be-kind00
2 жыл бұрын
I’m on an iPad and can’t see the notes for this video. I see them fine on my android phone and windows pc but what’s with the iPad KZitem app? Same thing happens when using KZitem app on Roku.
@txga2005
14 күн бұрын
It is obvious that the RJ45 connector is too large. Trying to use an SPE connector can make the device smaller
@sanjibstha8966
2 жыл бұрын
I got the 4*2.5G ports, Celeron N5105 and tried installing ESXi 7.0.3 but there was an error - No Network Adapters were detected... Is there any solution for this issue?
@ServeTheHomeVideo
2 жыл бұрын
Usually VMware has poor support for hardware. I have not tried that combo, but in the old days you would sideload drivers
@arbyyyyh
Жыл бұрын
We all know arrays start at 0, so that hard drive being AA000665 means that it was in fact...
@thisnthat3530
2 жыл бұрын
Does this work with a 32GB DIMM installed?
@CoryAlbrecht
2 жыл бұрын
What do you think of the similar Celeron N5095 devices with the i225v3 ports? 15W TDP instead of 10W.
@ServeTheHomeVideo
2 жыл бұрын
The Topton M6 we just did a video on with the N5105 used much more power
@danagoyette7932
2 жыл бұрын
How do they do with SQM (Cake) on OpenWRT? I'm currently using an HP T730 with an i350 NIC, but it uses something like 40 watts, so this might be better. Internet connection is 500 megabits; I doubt we'll get gigabit unless the price goes way down.
@most-average-athelete
Жыл бұрын
18:47 what is the "VM3 wifi controller"? does not pfSense do this already? I just bought a similar unit (shipping on the way) and was planning to add an M2 wifi board (it has two m2 slots both M-key)
@damzelfly
2 жыл бұрын
I saw they are selling the new model with Celeron N5105 and Pentium N6005 now. How would you think the performance difference compared to this unit with J4125? In terms of proxmox virtualization.
@ServeTheHomeVideo
2 жыл бұрын
Likely better, but I have heard they are using more power. We have been waiting about a month for ours to ship and now have orders with multiple sellers
@damzelfly
2 жыл бұрын
Thanks for replying and have a nice holiday weekend!! I'm looking forward to the next review.
@ytmadpoo
2 жыл бұрын
@@ServeTheHomeVideo It will be interesting to see a review of the N6005 once you get yours. I ordered mine yesterday with an ETA for delivery stateside of May 8, so we'll see. Worth the wait - I'm updating from an old, huge Juniper SSG firewall and decided I've suffered enough with a second hand unit that's many years out of date (running the "interesting" ScreenOS). I'm excited to jump into the pfSense or OPNSense world.
@florianalbeck
2 жыл бұрын
Can you provide a link please?
@PedroLopez-yo7nr
Жыл бұрын
Hi I have been enjoying your videos. You mention a video that installing Proxmox and pfsense on the tiny 5105 router. I can’t seem to find it. Thank you. I order one through AliExpress.
@ServeTheHomeVideo
Жыл бұрын
Hi Pedro, We usually do guides more for the main site like: - www.servethehome.com/topton-intel-j4125-4x-i225-fanless-virtualized-firewall-appliance-review-pfsense-opnsense-proxmox-ve/3/ and - www.servethehome.com/how-to-pass-through-pcie-nics-with-proxmox-ve-on-intel-and-amd/
@iulianch
Жыл бұрын
@ServeTheHome Can you please share how you set up the storage of the server for all the vm? thank you very much
@jannikmeissner
2 жыл бұрын
I'm curious, is there a rackmount version of something like this?
Пікірлер: 294