[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Firewall Hardware

To: Will Backman <whb@ceimaine.org>
Subject: Re: Firewall Hardware
From: Chuck Yerkes <chuck+obsd@snew.com>
Date: Fri, 14 Jun 2002 17:19:31 -0700
Cc: Christian Fredrickson <fredrick@eng.utah.edu>, misc@openbsd.org
Content-Disposition: inline
References: <ILEOIIPMNJANKMENJKMKMEOJCDAA.fredrick@eng.utah.edu> <3D0A4EB3.4010504@ceimaine.org>
User-Agent: Mutt/1.2.5i

No on misc.

Quoting Will Backman (whb@ceimaine.org):
> You firewall should only do firewall related stuff.
> If you only run pf, then you don't need too much.

filtering firewalls are one notion.  Proxies are a fine way of
firewalling.  The modern world of firewall's usually calls for
a mix.

> Christian Fredrickson wrote:
> 
> >I would like your advice. If I need a Firewall that will have about 100 +
> >users,
100 users behind it, I presume.

> a Web server, and a VPN server behind the Firewall (both servers
> >receiving minimal traffic), what hardware would be sufficient?

web server and VPN behind it.  That's fine.

> Are the Firewall rules CPU intensive? Ram intensive?

Not generally.  More to the point, what's your connection?
A T1?  DSL?  A 14.4 modem?  OC3?

I've used a 486/50 to filter a T1.  It would take more to do
more filters.

It depends on how many rules you have.  What protocols you
will proxy, etc.

chuck

Prev by Date: Cadastre sua empresa gratuitamente no site EmpresasOnline.com.br
Next by Date: wi0: wi_cmd failed with 60
Prev by thread: Re: Firewall Hardware
Next by thread: ftp-proxy question...
Index(es):
- Date
- Thread