[CentOS] Firewall/Gateway Hardware Question

Wed Oct 16 04:56:00 UTC 2013

I have must have been in a hardware vacuum, have a clue any of that hardware
you mentioned.

Added it to the research list - haha!

Thanks

-----Original Message-----
From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On Behalf
Of SilverTip257
Sent: Tuesday, October 15, 2013 6:05 PM
To: CentOS mailing list
Subject: Re: [CentOS] Firewall/Gateway Hardware Question

On Tue, Oct 15, 2013 at 2:31 PM, Steve Clark <sclark at netwolves.com> wrote:

> Hi,
>
> we are running 51 ipsec vpns on an Atom D510 at 1.66ghz and the load 
> average is .07.
>

@Steve:
Based on your statement, I figure you do not have a crypto accelerator and
the CPU is handling all the crypto.  Correct?

@Terre:
I don't know how VIA C7 CPUs stack up against the Intel Atom CPUs in terms
of performance, but they're low power consuming x86 processors.  And there's
the VIA Padlock [0] security/encryption engine.

AMD Geode CPUs like those in PC Engines ALIX [1] hardware have an integrated
crypto accelerator [2].  If it wasn't for your web proxy requirements, etc
an ALIX might fit the bill (with the right embedded OS - think Voyage
Linux). You're better off with the hardware you're researching right now
though.

[0] http://www.via.com.tw/en/initiatives/padlock/hardware.jsp
[1] http://www.pcengines.ch/alix.htm
[2] http://www.twam.info/hardware/alix/using-geodes-aes-engine-on-alix3d3

>
> HTH,
> Steve
>
> On 10/15/2013 02:13 PM, Terre Porter wrote:
> > I've not worked with Atom processors but I'll look in to it.
> >
> > Thanks for the info.
> >
> >
> > -----Original Message-----
> > From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] 
> > On
> Behalf
> > Of SilverTip257
> > Sent: Tuesday, October 15, 2013 12:36 PM
> > To: CentOS mailing list
> > Subject: Re: [CentOS] Firewall/Gateway Hardware Question
> >
> > On Tue, Oct 15, 2013 at 12:29 PM, Terre Porter <
> tporter at webpage-builders.com
> >> wrote:
> >> I've given up on getting the other machine to work so I'm looking 
> >> at building a new one.
> >>
> >> The machine will be a firewall/gateway running NAT, Web Proxy with 
> >> Dansguardian, DHCP, DNS, NTP and VPN (~6 clients).
> >>
> >> I read so much about VPN encryption and the processor needs, now I 
> >> am unsure if this will work.
> >>
> > You'll likely need to determine how many VPN tunnels you're going to 
> > run simultaneously and then find benchmarks on the web.
> >
> >
> >> I can get this for AMD FX-8120 Zambezi 3.1GHz Socket AM3+ 125W
> Eight-Core
> >> Desktop Processor for under $120 (it's on sale), would it work ?
> >>
> > Seems like overkill to me.
> >
> > I'd suggest more along the lines of an Atom-CPU based system.  One 
> > of
> those
> > mini-ITX setups that use 20W or thereabouts.
> >
> > Just my two cents.
> >
> >
> >> Any thoughts?
> >>
> >> Thanks,
> >> Terre
> >>
> >>
> >> _______________________________________________
> >> CentOS mailing list
> >> CentOS at centos.org
> >> http://lists.centos.org/mailman/listinfo/centos
> >>
> >
> >
>
>
> --
> Stephen Clark
> *NetWolves*
> Director of Technology
> Phone: 813-579-3200
> Fax: 813-882-0209
> Email: steve.clark at netwolves.com
> http://www.netwolves.com
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

--
---~~.~~---
Mike
//  SilverTip257  //
_______________________________________________
CentOS mailing list
CentOS at centos.org
http://lists.centos.org/mailman/listinfo/centos