I installed opnsense on an i5-6500T (native, no vm) but it looks like the performance is very bad, most websites are timing out.
everything is turned off, there’s no packet inspection or blocks, even the unbound dns server is not used (using a DC for that)
it’s the computer that’s underpowered, or i did some mistake in configuring it? Using two routers in the networks for my convenience
Is that diagram right?!
Unfortunately yes, my inexperience let me put two gateways on the same subnet
I need to rethink it
Are you running WAN and LAN on the same subnet connected to the same gateway?? That’s going to cause all kinds of weird issues. You can change LAN to a unique subnet instead.
i5-6500T can handle way more than gigabit throughput.
yes in my inexperienced mind it seemed a great idea as it had a “failover” router
You can still do the setup nearly the same, but you’ll need to change the opnsense LAN to its own unique subnet, and put PC2 on that subnet with a manual IP setup.
Make sure you don’t enable DHCP on opnsense too, since that will really interfere with the existing router.
The only real downside to this, is PC2 traffic to access PC1 or other devices on the main router, will have to go through opnsense and you’ll need firewall rules for that.
After you mentioned that I checked now and in opnsense DHCP leases they’re all in wan and not in LAN
LOL what I mess I created…
An i5-6500T doesn’t feel underpowered to me unless you’ve got IPS + IDS and/or OpenVPN running. Is anything firing off a bunch of errors in the logs?
Your diagram is weird. Isn’t the opnsense box supposed to replace the router. Or at least it should be between the existing router and you clients. Pc 1 go to opnsense Lan. And opnsense wan to the router and internet.
You’re creating all kinds of loops which is generally a bad idea. Your data should flow in 1 direction like a tree.
Unless there are a lot of details you’re not sharing.
Also remember generally a router is not a switch. Plug all your PCs into a switch. Plug a wifi access point into the switch. And then have the switch go into the lan of your opnsense.
And then have the wan go out to the internet.
