Firewall/Masquerading performance
This is a discussion on Firewall/Masquerading performance within the Linux Security forums, part of the System Security and Security Related category; Hello, Here at the office I am thinking of kicking the current cisco router out of the window after 10 ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
12-10-2004
|
|||
|
|||
Firewall/Masquerading performance
Hello,
Here at the office I am thinking of kicking the current cisco router out of the window after 10 years. We have a 10 MBit line and need a good firewall/router/masquerader to get access to the net. Wil a 2400MHz xeon with 1 gig memory and scsi discs be enough to route 500 employees using OSPF? Thanks ramses 
|
|
12-11-2004
|
|||
|
|||
|
Re: Firewall/Masquerading performance
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1 Ramses v. Pinxteren wrote: | Hello, | | Here at the office I am thinking of kicking the current cisco router out | of the window after 10 years. We have a 10 MBit line and need a good | firewall/router/masquerader to get access to the net. | | Wil a 2400MHz xeon with 1 gig memory and scsi discs be enough to route | 500 employees using OSPF? | | Thanks | ramses considering some (most) Cisco Carrier/ISP routers, Cisco PIX's, etc dont have that much horsepower, i think you are OK with that machine. unless you have 150,000 OSPF routes? ;-) - -- Marco Benton - BOFH, BSMFH Network Consultant BOFH excuse #294: The cause of the problem is: The Token fell out of the ring. Call us when you find it. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFBuxwo2+PYgoYkw8ERAiQqAKCsVVw7D2fxMLIzS+Ejqn WH8M2thQCeP3KM SFXjcUj12IWcK2mDxqVsoq4= =RsDI -----END PGP SIGNATURE-----
|
|
12-11-2004
|
|||
|
|||
|
Re: Firewall/Masquerading performance
> Here at the office I am thinking of kicking the current cisco router out
> of the window after 10 years. We have a 10 MBit line and need a good > firewall/router/masquerader to get access to the net. I would have thrown the cisco box out the window after about year 2 or 3 (that's when I started with linux). > Wil a 2400MHz xeon with 1 gig memory and scsi discs be enough to route 500 > employees using OSPF? nope. That's way too much machine for that little bit of data. Try scaling down to about a PII or maybe a PIII if you are really worried. Put no more than 256M Ram in it and a HD no bigger than 4 Gig. Boxes like that go all the time on ebay for $50. Then stick on your fav distro (mine is slack), don't install X, you won't be needing it. Unless you are using X to just open a console, and then what was the sense in it, eh? After you have all your network running do top and you'll see it never goes over 5% even on peak. Now if you do decide to use a huge machine, donate those spare cpu cycles to something like distributed.net. Otherwise you're just wasting your money.
|
Linear Mode
