DarkFoon wrote:
APPLIANCE! That's the word I was looking for! Thank you!
Yes, my client my client means what you said:
an appliance, which is "plug, go to web interface, click, click,
click and it works".
He has one of those (appliance) already, but like I said, its some piece of
crap. It can't do hardly anything. I mean, I use m0n0wall (because I like
using a CD-ROM instead of a harddisk) and it's got so many functions that I
don't use. And pfSense has more, but my client could use some of them.
I didn't know that I could do pfSense on a WRAP. I thought pfSense needs a
harddisk (for swap and such), and I thought WRAP uses CF (which swap will
wear out quickly).
But the idea of a 1u rackmount unit is nice. I'll still look around for some
commercial appliances that have the same features, but I'll try to push for
pfSense with this renewed information.
IMO, the only thing that can match and exceed pfSense is a
Juniper-Netscreen Appliance.
(I think they can do Active-Active clustering for bridging, too).
But the bigger ones can be 10x as expensive as a similar machine built
with pfSense.
Multiply by 2 for a HA-solution...
If you can afford it, go Netscreen.
If not, pfSense or raw OpenBSD ;-)
My question still stands, though: does anybody know of a commercial
(linksys, d-link, and such) firewall/router appliance (that's so much faster
to type) with the features my client wants?
thanks
http://www.juniper.net/products/integrated/
I see that Tyan now also makes appliance-barebones:
http://www.tyan.com/products/html/network.html
I'm not sure if the onBoard cryto-accelerator really supports FreeBSD -
Cavium do mention FreeBSD on their website and it seems that some boards
of the series are actually supported.
Those would really make killer-appliances, but I haven't seem them sold
anywhere and the price tag is probably high.
cheers,
Rainer
