It entirely depends on the hardware you use for pfSense as to how much load it can handle. I for one, push a sustained 60-70Mbps, with bursts of 120Mbps or more on a fairly hefty Xeon 64-bit server with 16GB of RAM. I have mostly simple rules, several IPSec and OpenVPN endpoints, and about 8 virtual inbound load balanced servers. It never gets bogged down.
At home, I have it installed on a small ALIX based system (embedded AMD i386 compatible) and it can easily max out my FiOS line at 60Mbps download, but the VPN to the main data center maxes out at 30Mbps. I don't have any idea what VDSL is, so cannot speak to how to configure the WAN on the pfSense. On my home system, I just set it to DHCP and let the verizon FiOS router assign it an address. This is also how it worked with my comcast cable modem. If your router gives pfSense a non-routable address like 10.x.x.x or 192.168.x.x, be sure to turn off the block of those IPs on the WAN interface in pfSense. On Thu, Sep 5, 2013 at 8:56 PM, Roberto Nunnari <roberto.nunn...@supsi.ch>wrote: > Hi all. > > I have a problem with my home internet connection. > > My vdsl router gets on the wan interface about 40-50 requests per second > on port 80 and when I configure it so that it forwards that traffic to my > web server, the router can't bear the load and freezes after a few seconds. > All that traffic is not normal.. it's a botnet attack.. on my server I have > scripts that examines the logs and adds the violator IPs as DROP in > iptables. After a week, this morning I counted over 140'000 unique IP DROP > entries! The server seems to face well the attack.. but when the load it's > so high, the vdsl router just freezes. > > So, I thought I may configure the vdsl router as a bridge and put a > pfsense box in between the bridge and my home network. > > Apart from the fact that yet I don't know how the router will behave when > configured as a bridge (will it bear the network load? what will happen to > the four lan ports? only one will be left active?), I would like to know > how should I configure the pfsense box.. I mean.. would it be enough to > just move the configuration from the vdsl router to the pfsense box? The > vdsl router is now configured with PPPoE over PTM (POTS).. would it be fine > if I configure pfsense as PPPoE on the wan interface? > > Thank you for your help. > Best regards. > Robi > ______________________________**_________________ > List mailing list > List@lists.pfsense.org > http://lists.pfsense.org/**mailman/listinfo/list<http://lists.pfsense.org/mailman/listinfo/list> >
_______________________________________________ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
