I am looking at using Shorewall and Free Swan in a firewall-VPN set up. I am hoping to use just one machine. How powerful a machine will I need? What distribution is best for this--Debian, SuSE? Thanks. ===================================================Chris Baker -- technical specialist 614-839-2447x108 cbaker@bbbscentralohio.org www.bbbscentralohio.org Big Brothers Big Sisters of Central Ohio Opinions expressed in this e-mail are solely my own. The document(s) accompanying or within this email transmission may contain confidential information belonging to Big Brothers Big Sisters of Central Ohio, which is legally privileged for the entity named above. If you are not the intended recipient, you are hereby cautioned that any disclosure, copying, distribution, or the taking of any action in reliance on the contents of this email information is strictly prohibited. If you receive this email in error, please notify us immediately by fax (614-839-5437) or phone (614-839-2447) to advise of the error.
I have used a 400Mhz, single PIII Dell system running RedHat 8.0 and FreeSwan 2.1 with three 10/100 Intel NIC''s, 768Mb Ram and a 40Gb hard drive. This supported one IPSec VPN tunnel to a site in Europe, a DMZ which has an email server and a corporate web server and ~60 internal users. My users did not see much difference when I upgraded the firewall to a dual 2.8Ghz system however, booting the new system is much faster and it has better memory capacity so long/large downloads do not bog the system down. Hope that helps. Graeme> -----Original Message----- > From: shorewall-users-bounces@lists.shorewall.net > [mailto:shorewall-users-bounces@lists.shorewall.net] On > Behalf Of Chris Baker > Sent: Tuesday, November 18, 2003 12:31 PM > To: shorewall-users@lists.shorewall.net > Subject: [Shorewall-users] best distribution list > > I am looking at using Shorewall and Free Swan in a > firewall-VPN set up. > I am hoping to use just one machine. How powerful a machine > will I need? > What distribution is best for this--Debian, SuSE? > > Thanks. > > ===================================================> Chris Baker -- technical specialist > 614-839-2447x108 > cbaker@bbbscentralohio.org > www.bbbscentralohio.org > Big Brothers Big Sisters of Central Ohio Opinions expressed > in this e-mail are solely my own. > > The document(s) accompanying or within this email > transmission may contain confidential information belonging > to Big Brothers Big Sisters of Central Ohio, which is legally > privileged for the entity named above. > If you are not the intended recipient, you are hereby > cautioned that any disclosure, copying, distribution, or the > taking of any action in reliance on the contents of this > email information is strictly prohibited. If you receive > this email in error, please notify us immediately by fax > (614-839-5437) or phone (614-839-2447) to advise of the error. > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >
Thanks. That was a good answer. Do you really need that much memory? I was hoping we could do it with maybe 128 MB or something like that. I doubt that we will have more than four or five users on the VPN at once. I also doubt that we will ever bring our web site in-house. ===================================================Chris Baker -- technical specialist 614-839-2447x108 cbaker@bbbscentralohio.org www.bbbscentralohio.org Big Brothers Big Sisters of Central Ohio Opinions expressed in this e-mail are solely my own. The document(s) accompanying or within this email transmission may contain confidential information belonging to Big Brothers Big Sisters of Central Ohio, which is legally privileged for the entity named above. If you are not the intended recipient, you are hereby cautioned that any disclosure, copying, distribution, or the taking of any action in reliance on the contents of this email information is strictly prohibited. If you receive this email in error, please notify us immediately by fax (614-839-5437) or phone (614-839-2447) to advise of the error. -----Original Message----- From: shorewall-users-bounces@lists.shorewall.net [mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of Graeme Boyle Sent: Tuesday, November 18, 2003 12:47 PM To: ''Shorewall Users Mailing List'' Subject: RE: [Shorewall-users] best distribution list I have used a 400Mhz, single PIII Dell system running RedHat 8.0 and FreeSwan 2.1 with three 10/100 Intel NIC''s, 768Mb Ram and a 40Gb hard drive. This supported one IPSec VPN tunnel to a site in Europe, a DMZ which has an email server and a corporate web server and ~60 internal users. My users did not see much difference when I upgraded the firewall to a dual 2.8Ghz system however, booting the new system is much faster and it has better memory capacity so long/large downloads do not bog the system down. Hope that helps. Graeme> -----Original Message----- > From: shorewall-users-bounces@lists.shorewall.net > [mailto:shorewall-users-bounces@lists.shorewall.net] On > Behalf Of Chris Baker > Sent: Tuesday, November 18, 2003 12:31 PM > To: shorewall-users@lists.shorewall.net > Subject: [Shorewall-users] best distribution list > > I am looking at using Shorewall and Free Swan in a > firewall-VPN set up. > I am hoping to use just one machine. How powerful a machine > will I need? > What distribution is best for this--Debian, SuSE? > > Thanks. > > ===================================================> Chris Baker -- technical specialist > 614-839-2447x108 > cbaker@bbbscentralohio.org > www.bbbscentralohio.org > Big Brothers Big Sisters of Central Ohio Opinions expressed > in this e-mail are solely my own. > > The document(s) accompanying or within this email > transmission may contain confidential information belonging > to Big Brothers Big Sisters of Central Ohio, which is legally > privileged for the entity named above. > If you are not the intended recipient, you are hereby > cautioned that any disclosure, copying, distribution, or the > taking of any action in reliance on the contents of this > email information is strictly prohibited. If you receive > this email in error, please notify us immediately by fax > (614-839-5437) or phone (614-839-2447) to advise of the error. > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >_______________________________________________ Shorewall-users mailing list Post: Shorewall-users@lists.shorewall.net Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm
I like to have as much memory as possible. Check out a couple of systems using the "top" command, and you''ll see, depending on what they are running and the load, how much memory is used and what is free. I''m sure that there is nothing stopping you from running the system with 128Mb, you can always add later if system performance becomes a factor and the system is utilizing a lot of swap.> -----Original Message----- > From: Chris Baker [mailto:cbaker@bbbscentralohio.org] > Sent: Tuesday, November 18, 2003 1:19 PM > To: g.boyle3@verizon.net; ''Shorewall Users Mailing List'' > Subject: RE: [Shorewall-users] best distribution list > > Thanks. That was a good answer. Do you really need that much > memory? I was hoping we could do it with maybe 128 MB or > something like that. I doubt that we will have more than four > or five users on the VPN at once. I also doubt that we will > ever bring our web site in-house. > > ===================================================> Chris Baker -- technical specialist > 614-839-2447x108 > cbaker@bbbscentralohio.org > www.bbbscentralohio.org > Big Brothers Big Sisters of Central Ohio Opinions expressed > in this e-mail are solely my own. > > The document(s) accompanying or within this email > transmission may contain confidential information belonging > to Big Brothers Big Sisters of Central Ohio, which is legally > privileged for the entity named above. If you are not the > intended recipient, you are hereby cautioned that any > disclosure, copying, distribution, or the taking of any > action in reliance on the contents of this email information > is strictly prohibited. If you receive this email in error, > please notify us immediately by fax (614-839-5437) or phone > (614-839-2447) to advise of the error. > > -----Original Message----- > From: shorewall-users-bounces@lists.shorewall.net > [mailto:shorewall-users-bounces@lists.shorewall.net] On > Behalf Of Graeme Boyle > Sent: Tuesday, November 18, 2003 12:47 PM > To: ''Shorewall Users Mailing List'' > Subject: RE: [Shorewall-users] best distribution list > > I have used a 400Mhz, single PIII Dell system running RedHat > 8.0 and FreeSwan 2.1 with three 10/100 Intel NIC''s, 768Mb Ram > and a 40Gb hard drive. > This supported one IPSec VPN tunnel to a site in Europe, a > DMZ which has an email server and a corporate web server and > ~60 internal users. My users did not see much difference when > I upgraded the firewall to a dual 2.8Ghz system however, > booting the new system is much faster and it has better > memory capacity so long/large downloads do not bog the system down. > > Hope that helps. > > Graeme > > > > -----Original Message----- > > From: shorewall-users-bounces@lists.shorewall.net > > [mailto:shorewall-users-bounces@lists.shorewall.net] On Behalf Of > > Chris Baker > > Sent: Tuesday, November 18, 2003 12:31 PM > > To: shorewall-users@lists.shorewall.net > > Subject: [Shorewall-users] best distribution list > > > > I am looking at using Shorewall and Free Swan in a firewall-VPN set > > up. > > I am hoping to use just one machine. How powerful a machine will I > > need? > > What distribution is best for this--Debian, SuSE? > > > > Thanks. > > > > ===================================================> > Chris Baker -- technical specialist > > 614-839-2447x108 > > cbaker@bbbscentralohio.org > > www.bbbscentralohio.org > > Big Brothers Big Sisters of Central Ohio Opinions expressed in this > > e-mail are solely my own. > > > > The document(s) accompanying or within this email transmission may > > contain confidential information belonging to Big Brothers > Big Sisters > > of Central Ohio, which is legally privileged for the entity named > > above. > > If you are not the intended recipient, you are hereby > cautioned that > > any disclosure, copying, distribution, or the taking of any > action in > > reliance on the contents of this email information is strictly > > prohibited. If you receive this email in error, please notify us > > immediately by fax > > (614-839-5437) or phone (614-839-2447) to advise of the error. > > > > _______________________________________________ > > Shorewall-users mailing list > > Post: Shorewall-users@lists.shorewall.net > > Subscribe/Unsubscribe: > > https://lists.shorewall.net/mailman/listinfo/shorewall-users > > Support: http://www.shorewall.net/support.htm > > FAQ: http://www.shorewall.net/FAQ.htm > > > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm > >
actually that depends on the speed of your internet connection. i''m running shorewall with freeswan 2 on a dual ppro 200, 128MB RAM with a 1500/192kbps dsl line. 10:53:30 up 8 days, 16:12, 1 user, load average: 0.00, 0.00, 0.00 cya Holger Brueckner net-labs Systemhaus GmbH On Tue, 2003-11-18 at 18:30, Chris Baker wrote:> I am looking at using Shorewall and Free Swan in a firewall-VPN set up. > I am hoping to use just one machine. How powerful a machine will I need? > What distribution is best for this--Debian, SuSE? > > Thanks. > > ===================================================> Chris Baker -- technical specialist > 614-839-2447x108 > cbaker@bbbscentralohio.org > www.bbbscentralohio.org > Big Brothers Big Sisters of Central Ohio > Opinions expressed in this e-mail are solely my own. > > The document(s) accompanying or within this email transmission may > contain confidential information belonging to Big Brothers Big Sisters > of Central Ohio, which is legally privileged for the entity named above. > If you are not the intended recipient, you are hereby cautioned that any > disclosure, copying, distribution, or the taking of any action in > reliance on the contents of this email information is strictly > prohibited. If you receive this email in error, please notify us > immediately by fax (614-839-5437) or phone (614-839-2447) to advise of > the error. > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm