I'll be honest - I doubt it qualifies as compute heavy, but I'm definitely fantasizing about getting some of these new CPUs in a firewall appliance. Some NICs offer various offloading options but according to PFSense's website they caution users that support is mixed at best. Then there's VPN acceleration: there are no AES-NI-like CPU instructions to accelerate Wireguard's crypto choices.

Not to mention network speeds even at the consumer end are slowly increasing. So having enough beef to push 1 gigabit NICs is good but planning for the future and adding 2.5 gb or higher is better. And finally having enough compute to layer fq_codel or better on top along with some monitoring all adds up.

Like a lot of projects the demand will act like a gas and fill whatever volume is given to it. Given more compute I'll find a way to use it. :-)

>So having enough beef to push 1 gigabit NICs is good but planning for the future and adding 2.5 gb or higher is better.

I'm using I5-2500K's for firewalls. 1 gigabit hardly moves the CPU usage. I have all NIC offload turned off.

Btw. I would really consider OPNsense instead if you are building custom firewalls. Pfsense is an atrocious company. Trying to kill off OPNsense by buying domains that tell lies and AFAIK no one outside Netgate can actually build from source. They are not open source even though they claim so. They are also moving to using DRM.

https://github.com/rapi3/pfsense-is-closed-source

Thanks for the pointer to OPNSense!

I've been drag racing various operating systems after my little protectli box proved only capable of pushing 500Mbit/s using PFSense + FreeBSD. Even the usual TCP tuning tricks didn't help. Meanwhile every OS I've tried except OpenBSD proved able to saturate a dedicated one gigabit link in a VM under ESXi.

I will definitely try OPNsense next!

Anyone multitasking can use the core counts. I feel like 2 -> 4 cores will make a difference for most users. 4 -> 8 for heavy users like developers.

You wish! Intel only very recently (e.g. 3 years ago) brought 4 cores to mainstream in the mobile segment.

Low power mobile chips were dual core until Q3 2017 when Kaby Lake refresh was released and brought 4 cores to the i5 and i7 line-up. Even then, entry level and mainstream versions (i3 in particular) remained dual core configs.

Only the very top end of laptop CPUs had 4 cores until recently. Certainly they weren't mainstream 5-7 years ago.

I have a cheap Thinkpad E-series from 2012 with Intel i7-3612QM 4c/8t CPU. At the time it cost a third less than a Macbook. As far as price was concerned it was mainstream.

It’s been quite a few years since we had a 2x improvement between generations. I get a feeling it’s probably 5-10 years ago.

yes, that is why the person I replied to can have an old cpu and it is still fine today.