@mhka
Hey, I seem to recall that you were playing with a 10Gbit/s firewall some time ago. Since I now have an upgraded Internet connection which is ~2Gbit/s (way more than what I really need... but... :-) ), so I'm considering getting some hardware which can do 2-10Gbit/s.
Did the hardware you had work OK, and did you generally learn anything to be aware of?
PS. I'm just planning on running a standard FreeBSD install with pf, as that's by far the simplest/most reliable for me.
I never ran that particular hw at 10G speeds, but back in 2012-ish, when SSD's were crap and expensive, and SATA supported a max of 6Gbps (including overhead, so efficiently much less), I had a 10G backbone in my home network, 10G interface in my PC, and 10G interface in my file server. I then used iSCSI backed by ZFS as high-perf disk on my Windows PC.
For 10G firewall with 2G uplink: Don't worry about it. But do check assumptions in the OOB config of FreeBSD network stack - there's a lot of timings, sizes, and "be nice to the malicious client" defaults in there.
S Nielsen
Marie Helene