I’m planning on building a pfsense router and wanted some advice on hardware requirements (this is new territory for me, and in part, I am doing this for the learning experience). The router should be able to: 1) route traffic, firewall, usual stuff, 2) 10Gb network, 3) VPN (potentially with Intel 8960 for quick assist to help with speed for encrypted communication), 4) IDS/IPS with Snort, others, ?
For my hardware requirement I’ve been basing my decision on a LTT video where a Supermicro barebones server was presented for a similar use case, although they would probably have more traffic; mine is for my home. The Supermicro server that I was trying to mimic is (https://www.supermicro.com/products/system/1U/5019/SYS-5019D-FN8TP.cfm). In that regard I was planning on a Xeon Silver 4110 (8C/16T) and Supermicro MB: MBD-X11SPI-TF per a Newegg combo deal: https://www.newegg.com/Product/ComboDealDetails.aspx?ItemList=Combo.3863504). I’d add a Intel 8960 later if I decided I wanted the quick assist feature.
My question is: Is this overkill? On the low end of the spectrum, I’d consider buying a Dell poweredge server T30: https://www.dell.com/en-us/work/shop/cty/pdp/spd/poweredge-t30/pet30_12084_3; which has a Xeon E3-1225 v5 (4C/4T). I don’t want to make this too broad of a question, but if there is an epyc option I should be thinking about, I’d consider that too; but my guess was that I’d be giving up some of the nice Intel features like AES-NI for help with encrypted traffic.
Thanks in advance for any help!