Not really a CentOS specific question, but I hope it's ok...
I've decided to buy a server to use as a firewall/router instead of the usual Cisco box, simply because I've come to love Firewall Builder and would like to put all my subnets into one firewall. There will be four gigabit interfaces in the box, one of which will be the internet connection (so this one interface will use max. 10 mbit).
Question is if any "normal" hardware will be able to handle this if most of the interfaces gets saturated? What chipset / motherboard should I go for?
On a sidenote, I've noticed from the subject on some of the most recent messages that Bryans beeing hassled. I dunno what it's really about since I haven't read the messages, but I'd like to say that I consider Bryan to be a valuable asset to this list.
Regards, Harald
On a sidenote, I've noticed from the subject on some of the most recent messages that Bryans beeing hassled. I dunno what it's really about since I haven't read the messages, but I'd like to say that I consider Bryan to be a valuable asset to this list.
He is a valuable asset but sometimes his posts are not very clear or even quite contrary to what he wanted to say (as we find out in subsequent posts)
Given the speed at which he claims to type out these posts (and he does seem to substantiate them too) perhaps he needs to slow down and not type on the fly.
Feizhou wrote:
On a sidenote, I've noticed from the subject on some of the most recent messages that Bryans beeing hassled. I dunno what it's really about since I haven't read the messages, but I'd like to say that I consider Bryan to be a valuable asset to this list.
He is a valuable asset but sometimes his posts are not very clear or even quite contrary to what he wanted to say (as we find out in subsequent posts)
Given the speed at which he claims to type out these posts (and he does seem to substantiate them too) perhaps he needs to slow down and not type on the fly.
I eventually just decided to filter his messages (the filter in Mozilla Thunderbird is easy enough to configure). I avoided doing so for a while because he sometimes offers up useful information without a treatise on some nitpick of system board design that I find uninteresting. Until a couple of days ago, that substantially improved the S/N. 8-) Anyway, that doesn't make anyone a good guy or a bad guy. There is a limited amount of time in the day so it just became untenable to keep up with the volume.
Cheers,
On Fri, 2005-08-05 at 08:07 -0400, Chris Mauritz wrote:
I eventually just decided to filter his messages (the filter in Mozilla Thunderbird is easy enough to configure). I avoided doing so for a while because he sometimes offers up useful information without a treatise on some nitpick of system board design that I find uninteresting. Until a couple of days ago, that substantially improved the S/N. 8-) Anyway, that doesn't make anyone a good guy or a bad guy. There is a limited amount of time in the day so it just became untenable to keep up with the volume.
This is the absolute best response I've ever seen.
Harald Finnås wrote:
Not really a CentOS specific question, but I hope it's ok...
I've decided to buy a server to use as a firewall/router instead of the usual Cisco box, simply because I've come to love Firewall Builder and would like to put all my subnets into one firewall. There will be four gigabit interfaces in the box, one of which will be the internet connection (so this one interface will use max. 10 mbit).
Question is if any "normal" hardware will be able to handle this if most of the interfaces gets saturated? What chipset / motherboard should I go for?
Uber I/O?
Something like an Opteron-based motherboard that has plenty of HyperTransport interconnects which only seem to belong to Sun or HP boxes as Bryan has helpfully pointed a while ago. Tyan boards being the next closest thing.
Something like an Opteron-based motherboard that has plenty of HyperTransport interconnects which only seem to belong to Sun or HP boxes as Bryan has helpfully pointed a while ago. Tyan boards being the next closest thing.
Any comments on this board? MSI K8D Master 3-133 FA4R
I can get a good price on this board with one cpu. Can't imagine I need two on a firewall. :)
Regards, Harald
Harald Finnås wrote:
Not really a CentOS specific question, but I hope it's ok...
I've decided to buy a server to use as a firewall/router instead of the usual Cisco box, simply because I've come to love Firewall Builder and would like to put all my subnets into one firewall. There will be four gigabit interfaces in the box, one of which will be the internet connection (so this one interface will use max. 10 mbit).
Question is if any "normal" hardware will be able to handle this if most of the interfaces gets saturated? What chipset / motherboard should I go for?
On a sidenote, I've noticed from the subject on some of the most recent messages that Bryans beeing hassled. I dunno what it's really about since I haven't read the messages, but I'd like to say that I consider Bryan to be a valuable asset to this list.
I suggest using m0n0wall. http://www.m0n0.ch/wall/
You can have good answers to your question on the m0n0wall list as well.
Ugo Bellavance wrote:
Harald Finnås wrote:
Not really a CentOS specific question, but I hope it's ok...
I've decided to buy a server to use as a firewall/router instead of the usual Cisco box, simply because I've come to love Firewall Builder and would like to put all my subnets into one firewall. There will be four gigabit interfaces in the box, one of which will be the internet connection (so this one interface will use max. 10 mbit).
Question is if any "normal" hardware will be able to handle this if most of the interfaces gets saturated? What chipset / motherboard should I go for?
On a sidenote, I've noticed from the subject on some of the most recent messages that Bryans beeing hassled. I dunno what it's really about since I haven't read the messages, but I'd like to say that I consider Bryan to be a valuable asset to this list.
I suggest using m0n0wall. http://www.m0n0.ch/wall/
You can have good answers to your question on the m0n0wall list as well.
-- Ugo
-> Please don't send a copy of your reply by e-mail. I read the list. -> Please avoid top-posting, long signatures and HTML, and cut the irrelevant parts in your replies.
I would suggest using something like freesco. http://www.freesco.org/ Very easy to use. Fits on a floppy. Don't have the horse power problems. Hardware upgrades are easy and cheap.
-Marco Garza
-
Bryan J. Smith -
Chris Mauritz -
Feizhou -
Harald Finnås -
Marco Garza -
Ugo Bellavance