Alright, slow and steady progress.
In essence, the "consumer" router the ISP opened up pre-orders for still haven't been shipped, and latest ETA is at the end of month.
So, while waiting for that, I've started rolling my own solution, after coming across a thread on reddit by a user with the same ISP and connection as me;
https://www.reddit.com/r/PFSENSE/comments/9ne9mb/pfsense_on_a_10gbit_home_internet_connection/
So, current phase is hardware acquisition.
Just as the user in the thread I linked to I actually managed to get a hold of a cheap Dell Optiplex 9020, with an Haswell i7-4770, and 8GB of RAM (likely to be expanded at some point whenever I come across a good deal on DDR3).
Much in line with the recommendations from
@sfx2000 it has very good performance per core and runs at a high base frequency with a even higher turbo frequency (3.4GHz base and up to 3.9GHz turbo on a single core, while 4 cores loaded seems to stay at ~3.5Ghz).
Memory bandwidth as I've tested it is around 75Gbit/s.
I still haven't decided on exactly what NIC I'm going to use, as I see two paths (as I have a CPE consisting of a SFP+ to NBASE-T media converter with a SFP+ fiber module):
Either I go with a 2 x SFP+ NIC and move the SFP+ module there, and then use a DAC to connect over to the media converter.
Option 2 is go for a 2 x RJ45 NIC (10GBASE-T or NBASE-T, not that important as it's only going into a switch just next to it), and leave the media converter to do its thing.
For now, I just purchased a Solarflare SFN5122 NIC from ebay to start testing out the hardware.
I may possibly replace this with a Intel X520/540/550 at some point, if I find reason and/or good deals enough, or possibly a SFN7122 which can be found quite cheap on ebay (and is DPDK compatible).
So, first thing when receiving the NIC is testing out the performance of the NIC itself, both in bare metal mode, and also through ESXi.
If not too bad performance penalty with ESXi I may experiment a bit with "next generation" routing (DPDK and user land network stacks) while keeping to pfSense/OPNSense as a "stable" setup.
I anticipate to reach at least a few Gbit/s of throughput when dealing with larger packets, but even at imix I'm doubtful if the setup will perform near 10Gbit/s.
Will have to see around what number of pps it starts choking.
And on the topic of pps choking, that's my secondary use for this machine once the Huawei HN8255Ws arrives; I'm gonna torture the cr-p out of that box to see what speed it manages to maintain in and out with/withouth NAT and different Firewall settings. Who knows, if the Huawei is capable enough, the Optiplex may switch roles to a dedicated iperf node or some other funny task.
