A compact flash card and an IDE-Compact flash reader allows for the
harddisk to be removed.
Just a thought. I guess the real question is what is the budget. A
small, low end Cisco PIX can do a tremendous job. Using older hardware
is a great solution if you are attempting to do it on the cheap.But if
you have the cash, a Cisco 501 can act as a great protection for an
enterprise Asterisk installation.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/ps2031/index.html
However- I have some questions for the group... all of these suggestions
depend on several factors.
1. How many concurrent SIP connections will be active through this firewall?
2. Is the firewall going to act as protection from the public internet,
or from users on the inside?
3. What is the budget?
4. How technical is the sysadmin?
I am the sysadmin for an enterprise of about 3000 employees, 12 T1's,
and 32 subnet, about 500 machines, at 32 locations.
We love linux, and almost all of our firewalls are VM's and PIII
machines... rebuilt and customized.
Again, we love them, and we haven't had a single complaint from users,
nor our interal IT staff. Routing, Logging, IDS, NAT, Linux firewalls
can do it all, and more.
However, EVERY vendor we work with wants us to move to Cisco, Alcatel,
Bay, et. They talk about replacement programs, support, et. They almost
go as far as to imply that we can't trust our own staff to support our
"linux" solutions, because if we lost our staff, no one could help us
(its BS, but the sales people believe it!)
But the truth is, your enterprise is only as safe, and as forward
thinking as your Sysadmin, and technical staff. Your vendors will
promise you the world, but if you have a failure, its not good if you
are totally dependent on your vendors SLA agreement.
If you build it, you know it, you can build it again.
That is the true beauty of Asterisk and Linux. It is what you want it to
be, and it can be an in-house supported system.
Expensive name brands have their place, but in most cases the extra cost
is built in to help the non-technical sleep better at night.
Jim Van Meggelen wrote:
-----Original Message-----
From: Duane [mailto:[EMAIL PROTECTED]
Sent: November 3, 2007 8:02 PM
To: Ansar Mohammed
Cc: 'Toronto Asterisk UG'
Subject: Re: [on-asterisk] What firewall devices do you
recommend for Smallbusiness
Ansar Mohammed wrote:
But seriously folks....
1. it doesn't matter if you only *need* a 486 with 16MB of RAM. The
fact is that if you are setting this up for anything other
than a home
network, you should use hardware that is under warranty and
under some form of an sla.
i.e. it should be supportable.
That wasn't my point, I was merely pointing out it didn't
matter what hardware you picked that even the capacity of a
486 wouldn't be exceeded.
Is there a way to run this on a solid state platform that is low power?
The thing that people forget about older computers is that they suck a lot
of electrical power, especially in relation to how much computing power they
deliver.
If we were to come up with a watt-per-cycle index, and put some kind of
price per year on it, the extra cost of a new, solid-state unit like a
Soekris would probably pay for itself in a few years in electrical savings.
Plus you get to feel environmentally responsible.
Jim
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.15.19/1106 - Release Date: 02/11/2007
9:46 PM
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Matthew Mackes
Network Administrator
[EMAIL PROTECTED]
Delta Sonic Car Wash Systems, Corporate Headquarters
Buffalo, New York
=================================================
SMTP Relay managed by:
Delta Sonic Car Wash Systems, Buffalo New York
SPAM?
If so, please contact:
[EMAIL PROTECTED]
=================================================
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
