From owner-freebsd-questions@freebsd.org Thu Jan 24 20:39:55 2019 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 902EC14BDC82 for ; Thu, 24 Jan 2019 20:39:55 +0000 (UTC) (envelope-from scopensource@gmail.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 01EB986115 for ; Thu, 24 Jan 2019 20:39:55 +0000 (UTC) (envelope-from scopensource@gmail.com) Received: by mailman.ysv.freebsd.org (Postfix) id B5C2714BDC81; Thu, 24 Jan 2019 20:39:54 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 9337814BDC80 for ; Thu, 24 Jan 2019 20:39:54 +0000 (UTC) (envelope-from scopensource@gmail.com) Received: from mail-wr1-x431.google.com (mail-wr1-x431.google.com [IPv6:2a00:1450:4864:20::431]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 6E32A86113 for ; Thu, 24 Jan 2019 20:39:53 +0000 (UTC) (envelope-from scopensource@gmail.com) Received: by mail-wr1-x431.google.com with SMTP id p4so7968334wrt.7 for ; Thu, 24 Jan 2019 12:39:53 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:from:subject:message-id:date:user-agent:mime-version :content-transfer-encoding:content-language; bh=AcV5eR4ZLe0HB8KAWjulW6/Ryx55Vj4lhPcBcK5XHgU=; b=UobMXSY1z36ljH1amudZPI1JhhCcapKseZbmRANZwu67S/6jvkPqUkivB15tTJPTzf xjMIxgazJLF8FRjaVoc15O6Xq8EKDdIigySg4ZvlLAdwSrTFjHLYkBjH5r4q6JbH/VLW O5/jUL1WydjqjHyzPL9I5eP4TwBeXDV+yxHwgx/UyUGXaHvK4NkCYgjtuY7EyKsRiarw w2wWHzlOw6pIfeIswfbQDoOmSvJ3qSI9PAw+hKzQ2eDyMSerMsKiXe27Wv2bOVys6gId bkQ+tusr5sGm6pNjiaIxneIyK1rBf6s/Cd1rvbbZve7tvXVIXPc6mg41ZTAfVh6XMiSR 60wA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:subject:message-id:date:user-agent :mime-version:content-transfer-encoding:content-language; bh=AcV5eR4ZLe0HB8KAWjulW6/Ryx55Vj4lhPcBcK5XHgU=; b=FGxSA8cFxk6bcLMKyh/SZZ2VcE9XAXO+aYlyvUcXn7p65FT8dnzD6fFmKz2b9gw+RP OiRQrmhWPjrNh61zE84udYepjlSmIowWGiz+xnsyjXVRVGsqDRIU1Vrbp4WEIMVk2gEr BiJG+RJhj3MIhlWZXk+TIhmDo4GeDPtC2PobOijW/hGXKr62p7dXIvFInTgzs0mBUyNq uf7qbyF8j0icIYSMBIgdRzS5/iSfghUtAsr1u2WOfoN7ZovY+vnYq4i8+AKpeC9cVB9A 1iitz7vK5q6FiyD5mhyCKcrDoybqWlUM1UOZBn1UMFllR7C3kzReyI4xL8RBEF216tf4 DTAw== X-Gm-Message-State: AJcUukcfHgpC09o465H6RgYxQ36ckgD5uxDB+UEo+KT9lVo3bIMHnWUm 3vsB+6U7+0TmiDwjRWcpFPZtwLgx X-Google-Smtp-Source: ALg8bN59pbpsh485HPOWZSpFc5f33AtXEfy2NC/iu+P42UguufS3moPwiZOjZXsuAJdtqw5JMT690w== X-Received: by 2002:adf:94e4:: with SMTP id 91mr9056056wrr.322.1548362391909; Thu, 24 Jan 2019 12:39:51 -0800 (PST) Received: from [192.168.0.13] (cpc120314-reig6-2-0-cust190.6-3.cable.virginm.net. [86.8.46.191]) by smtp.gmail.com with ESMTPSA id v9sm5963512wrt.82.2019.01.24.12.39.50 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 24 Jan 2019 12:39:51 -0800 (PST) To: questions@freebsd.org From: Simon Connah Subject: Building a FreeBSD switch with commodity hardware Message-ID: Date: Thu, 24 Jan 2019 20:39:51 +0000 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.4.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-GB X-Rspamd-Queue-Id: 6E32A86113 X-Spamd-Bar: ------ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=UobMXSY1; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of scopensource@gmail.com designates 2a00:1450:4864:20::431 as permitted sender) smtp.mailfrom=scopensource@gmail.com X-Spamd-Result: default: False [-6.59 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; FREEMAIL_FROM(0.00)[gmail.com]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; MX_GOOD(-0.01)[cached: alt3.gmail-smtp-in.l.google.com]; NEURAL_HAM_SHORT(-0.90)[-0.896,0]; FROM_EQ_ENVFROM(0.00)[]; RCVD_TLS_LAST(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com.dwl.dnswl.org : 127.0.5.0]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; IP_SCORE(-2.69)[ip: (-9.22), ipnet: 2a00:1450::/32(-2.22), asn: 15169(-1.91), country: US(-0.08)]; RCVD_IN_DNSWL_NONE(0.00)[1.3.4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.5.4.1.0.0.a.2.list.dnswl.org : 127.0.5.0] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Jan 2019 20:39:55 -0000 Hi everyone, First of all I am not a networking wizard so would appreciate a little help to see if my plan is achievable. I need a 1U switch to put in a datacentre and due to my familiarity with FreeBSD I thought building a switch based on FreeBSD would be the perfect solution but I'm not sure what the hardware requirements would be. I have 10 to 20 1gbps Ethernet devices to connect to the switch and a single 1gbps uplink to the rest of the internet. I'd like to be able to configure VLANs, allocate IPv4 and IPv6 addresses to individual machines and use FreeBSD as a firewall for the whole process. I also want to be able to expand my system at a later date if I need to be able to handle more devices on the local network so I'd need to be able to hook the two networks together somehow. What I'm not sure about is what hardware specs I'll need for this. What kind of CPU and RAM will I require and which Ethernet cards should I get? This is not a project that requires 100% up time but realiability is important during certain hours of the day. I'd appreciate some advice. If you need any more information then let me know and I'll try and provide it.