We''re upgrading the hardware that we''ve used for our firewall for the past 5 years. I''m having a bit of difficulty finding the right blend of specs from our traditional supplier, Dell. Any recommendations for a box that will run firewalling and Openswan at 100Mbps full duplex? I''d like something that: -Has real sliding rails and can fit inside a 30" deep rack -Has as much hardware redundancy as possible (power supplies, hard drives, fans) -Has at least four GbE interfaces and one Gb fiber optic interface -Has remote management capabilities (ala BMC, DRAC, iLo...) This is going to be a primary firewall/router in a datacenter with several public subnets and systems behind it (including www.shorewall.net :^) ). We have a Dell PE1950 that would be perfect, but it won''t fit in a 30" rack. Doh! Anything you guys like out there? Thanks, Ty ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It''s the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php
On Sun, Jun 22, 2008 at 02:51, List Receiver <listreceiver@mastermindpro.com> wrote:> Any recommendations for a box that will run firewalling and Openswan at 100Mbps full duplex? I''d like something that:In my experience, almost anything will handle the firewalling part CPU-wise - I run a hundred megabits through a dual p3. I don''t know about the Openswan bit, but you can judge that for yourself. Sun''s x4150s are quite nice, but they do run $5k for a box with the kind of setup you want. Four onboard Intel copper NICs and two PCI Express x8 expansion slots open, fan redundancy, two PSUs, so on and so forth. They''re 28 inches deep. There''s ILOM, it''s mostly java/browser based (to configure the BIOS, for example, I haven''t found any other way to do it) but you can get to a console over ssh too. Will ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It''s the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php
Mikael Kermorgant
2008-Jun-22 15:24 UTC
Re: Off-topic: Hardware favorites for Linux firewall
On Sun, Jun 22, 2008 at 4:51 AM, List Receiver < listreceiver@mastermindpro.com> wrote:> We''re upgrading the hardware that we''ve used for our firewall for the past > 5 years. I''m having a bit of difficulty finding the right blend of specs > from our traditional supplier, Dell. > > Any recommendations for a box that will run firewalling and Openswan at > 100Mbps full duplex? I''d like something that: > > -Has real sliding rails and can fit inside a 30" deep rack > -Has as much hardware redundancy as possible (power supplies, hard drives, > fans) > -Has at least four GbE interfaces and one Gb fiber optic interface > -Has remote management capabilities (ala BMC, DRAC, iLo...) > > This is going to be a primary firewall/router in a datacenter with several > public subnets and systems behind it (including www.shorewall.net :^) ). > We have a Dell PE1950 that would be perfect, but it won''t fit in a 30" > rack. Doh! >You could have a look at nexcom''s security appliances (ex NSA 1085, which has 4 copper + 4 SFP, dimensions are : 426 x 379 x 44 mm). They are far from reaching all your needs, but I find them interesting as an alternative to rack servers... Regards, -- Mikael Kermorgant ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It''s the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php