Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 16 replies
  • Subscribers 29 subscribers
  • Views 2340 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multi-Gig XG Hardware

Gkeg

Hi All, and thanks in advance for your help. I've been using Sophos XG for about 2 years now and I've absolutely loved it. I just moved into a brand new house and have ATT symmetrical 5Gbps fiber at the same price as my old Xfinity cable internet! 

I have a Zyxel XS1930-12HP and WAX650S already, so all I need is a firewall setup capable of pushing that 5Gbps connection. My current Qotom i3 box had no trouble with 1Gpbs lopsided cable at all, but it only has 1Gbe NICs. 

After 2 weeks without a firewall and since heavy reading... I still can't figure out what I should get. Is anyone using "multi-gig" NICs? Preferably the NICs would be able to negotiate 1000/2500/5000 like my other equipment. I know I need Intel, but what chipset?

Does anyone have a mini PC recommendation with 2 NICs minimum and perhaps a newer i5 so I can push those speeds with IPS?

Very grateful for any help, thank you!



This thread was automatically locked due to age.
Parents
  • 0

    Hello!

    I recommend you (if possible) to use 10G NIC's.

    The Linux Kernel on XG isn't "new", so there's chances of those 2.5G/5G Multi-Gig NIC's to not be detected correctly. (Or to not be detected at all.)

    Gkeg said:
    oes anyone have a mini PC recommendation with 2 NICs minimum and perhaps a newer i5 so I can push those speeds with IPS?

    For 5Gbit/s get the fastest 4 cores processor you can - doing 5Gbit/s of only IPS will be relatively easy, the main issue there will be if you want to decrypt the TLS Traffic.

    I don't have recommendations on mini-pc, but if you want to be sure get something like an AMD Ryzen 3300x or i3-10100. (Or if you can find, get a mini-pc that has a I3-8100)

    After all that, there's some tweaks you need do later (after you get your box), such as switching to hyperscan on IPS engine.

    Thanks!

    If a post solves your question use the 'Verify Answer' button.

    XG 115w Rev.3 8GB RAM v19.5 MR1 @ Home.

  • 0 in reply to Prism

    Thanks, Prism! Is there anywhere I can find which 10Gbe NIC chipsets/cards will work? I have seen some threads about people saying for instance the i219 does not work. How about the x550-T2? That seems like a simple and cheap enough 10Gbe RJ45.

  • +1 in reply to Gkeg

    The current Intel drivers that are supported are: (That I know of)

    • e1000e
    • igb
    • ixgbe

    The x550-T2 uses ixgbe driver which is supported by the Firewall.

    Here's a list of controllers that are used by the ixgbe drivers, all of them are at least 10Gbit/s, you can use this to find a network adapter for you. (But I'm not sure if all of them will work, from my experience the X520 and X540 controllers works just fine.)

    • Intel® Ethernet Controller 82598
    • Intel® Ethernet Controller 82599
    • Intel® Ethernet Controller X520
    • Intel® Ethernet Controller X540
    • Intel® Ethernet Controller x550

    And yes, the i219 chipset doesn't work.

    Thanks!

    If a post solves your question use the 'Verify Answer' button.

    XG 115w Rev.3 8GB RAM v19.5 MR1 @ Home.

  • 0 in reply to Prism

    Excellent, thank you so much for your help.

  • 0 in reply to Gkeg

    I don't know if you can find them, but the x520 are usually much cheaper.

    If a post solves your question use the 'Verify Answer' button.

    XG 115w Rev.3 8GB RAM v19.5 MR1 @ Home.

  • 0 in reply to Prism

    It looks like the gateway NIC only supports 1/2.5/5Gbe, not 10Gbe, so I think I will have to use the x550 since supposedly it can negotiate 5Gbe

Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?