Sure, familiar with Netgate's guidance on offload functions breaking the end-to-end model and causing little children to cry. I disabled everything (TSO/LRO/checksums) on my original Intel 82575eb and i350 firewall builds. I enabled everything on my latest Chelsio (2x T520, T540) build and no one has complained about the internet breaking (yet) I can even get 9.7-9.8 Gbps sustained, no-drop between VLAN segments using an older E5 Xeon.I did not say it wasn't possible. But using TOE cards also have their own problems. Per pfsense documentation from netgate:
Happy to be corrected by someone more in the know, but I think the Netgate guidance is either outdated or specific to certain drivers (igb, ix). Found this from last year, using T6 cards on 12-STABLE - Acceptable performance of cxgbe(4), and TOE almost didn’t crash the system – Trond's place