Dealing with old computers after an upgrade is very a common problem. Sure, there are the obvious solutions like selling them or giving them away, but these approaches carry some problems (e.g. personal warranty, recipient not happy to receive a very outdated unit, red tape, etc.) that make them somewhat impractical.
There is another option: turn them into a firewall/router using pfsense.
Tech-savvy readers might ask what’s the difference between doing this instead of just upgrading your router’s firmware using DD-WRT or the like. Well, for starters, most of the routers sold in the Philippines are nerfed versions of those sold outside the country and don’t support custom firmwares. This simply means that it’s much easier to setup a pfsense server in this country than to setup DD-WRT.
In terms of features, pfsense and DD-WRT have features to distinguish themselves from the other. Obviously, you can’t control wireless signal strength in pfsense, and DD-WRT has some firewall features that are missing in the former. On the other hand, pfsense allows packages to be added to it like squid and nmap. It also has these funky RRD graphs:
The one feature that really caught my eye is support for load balancing. This allows you to consolidate two or more internet connections on your router, whether it’s for simple load balancing (bandwidth usage is spread between the ISPs) or for failover (when one ISP fails, the connections are routed to the other ISPs). With this, you could subscribe to two crappy DSL providers like, say, PLDT and Globe, and still have a relatively higher uptime than you would normally have.
You could buy a dedicated load balancing router, but the cost difference between that (PhP 4,000+) and an extra lan card (PhP 100-PhP 150 in surplus shops) and the thought that your old PC would probably be much more powerful than the puny chip inside that router make pfsense a more logical choice.
The biggest downside to using pfsense instead of dedicated router devices is the power usage, which can be anywhere from 5 to 20 times that of a typical router. Expect a slight increase in your power bill, especially if your “old” PC is one of those power guzzling Pentium 4s or Athlon XPs. You can try to underclock them, but I don’t expect to see much of a difference.
—
With all that talk out of the way, let’s move on to the actual installation.
Continue reading “Weekend Project: Turn an old PC into a supercharged firewall/router”