This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

New UTM Build

Hello!  I've been reading the boards and eyeing building my own build to run Sophos' awesome home UTM - finally have the funds and time to do it.

I've been reading the stickies and reviewing past posts, but still want affirmation I'm on the right track.

I currently get 30 up & down, with 4 users, but want headroom for 50/50 and 6 users down the line.

My proposed build has the headroom in mind (opted for the i3, though probably a little more than I need):
i3 4160
GA H87N MoBo (cheapest mITX board I could find with an Intel NIC)
2x4GB G.Skill RAM (8gb total)
160GB 3.5inch WD Blue 7200 drive
Intel EXPI9301CTBLK 10/100/1000 Mbps PCI-Express x1 NIC

I saw Barry's posts about the great form factor in a Node 304, but I have a footprint that I want to actually stack on top of, so using a Cooler Master 915 - got space for a full ATX PSU.  Gonna use a Corsair 450 CSM - overkill, but its the cheapest, quality modular PSU I could find, and at 30 bucks it seemed worth it to buy a quality PSU I could probably reuse.  And nice that's its Gold efficient.

So - does everything look okay?  Is having one Intel NIC in the MoBo and another in the card okay for a simple WAN and LAN port (LAN port would also be used for management)?  or do I need to buy an Intel NIC with 2 ports, and cannot use the MoBo's port?  Do I need a DMZ port?  This MoBo actually has 2 LAN ports, but one is an Atheros which I know from reading the board won't work, so I was just going to disable it in the BIOS.

I also wanted to make sure my proposing network topology made sense:  I plan to replace my existing netgear router with the UTM (so optical modem -> UTM -> my network), and then put my netgear router into bridge/wireless AP mode behind the UTM (to use its other three wired ports, and the wireless).  I also have an 8 port switch down the line.

Look okay?

This thread was automatically locked due to age.

0 K1m0n over 10 years ago

Welcome.
Check the compatibility list post.
If others have used the board successfully before should be ok.
Given that the base OS is linux, compatibility with desktop/consumer boards is not a given.
Personally I wouldn't trust a green drive for 24/7 use.
A red (or RE) might be better for the application.
Personally I went for an ssd just to cut some noise.
PSU shouldn't matter as long as its a reliable one.
CT plays ok.
The atheros nic depending on the chip might be also usable.
Just not reliable under load.
I got a similar build myself here.
Usually it reboots only on updates so its ok.
The i3 should have enough headroom for a small office, so ok.
Yes, LAN port will also be used for management.
You can use any nic as long it was present/detected during setup.
DMZ you might need or not depending on application/network topology,
but for a home setup, and as long as you don't publish servers/applications on the wan generally no.
The UTM generally doesnt follow the reg/green/yellow approach anyway.
Your topology looks ok too.
A nice option would be a managed switch for future use of vlans if you need to further segment your network and/or you are sort on nic ports on the box (and can be done down the road).
Also, Intel multi-port server-class nics are worth considering in my opinion (provided you could find one for cheap).
Personally I'm also considering getting a sophos AP to play with and consolidate the management on the UTM, just ain't got the monnies yet (damn IMF).
Cancel
Vote Up 0 Vote Down

Cancel
0 BarryG over 10 years ago

Hi,

It should be fine.

I would stick with the HD (Green should be fine) as most SSDs don't like heavy writes (logs, etc.).

As of the latest 9.2x ISO, the Atheros still isn't seen by the installer on my Gigabyte Z87N-WiFi motherboard (I have the WiFi NIC disabled).

Barry
Cancel
Vote Up 0 Vote Down

Cancel

New UTM Build

Submitted a Tech Support Case lately from the Support Portal?