with just a single T-1 if you setup linux to do packet
filtering/masquerading you can probably get away with just about any PC
you can get your hands on (I personally would be comfortable with any
pentium, would expect a 486 to work, and would check a 386). If you are
doing any encryption or proxys you will need a faster machine.
David Lang
On Mon, 24 Jan 2000, Paul Crittenden wrote:
> Date: Mon, 24 Jan 2000 08:51:59 -0600
> From: Paul Crittenden <[EMAIL PROTECTED]>
> To: Paul D. Robertson <[EMAIL PROTECTED]>
> Cc: [EMAIL PROTECTED]
> Subject: Re: Firewall size (NEWBIE)
>
> FYI, we have a T1 connection. I have a DecAlpha Personal Workstation,
> 250mHz, 128Meg of ram, running Tru64-UNIX, and the AltaVista Firewall 97 as
> our current firewall. The reason we are changing is because Firewall 97
> was under their Campus Wide Licensing Agreement but is no longer. We would
> have had to have bought Firewall 98 plus liscensing. Linux is free more or
> less.
> This is our second year for this configuration and our current firewall has
> run fine. The only time we have seen problems, minor at that is at the
> beginning of the semester before the students have a lot of classwork and
> they are bored.
> The other time is at the end of semester when they are trying to finish
> papers and stuff like that. So, how does this additional info fit into the
> picture?
>
> At 08:21 PM 1/21/00 -0500, you wrote:
> >On Fri, 21 Jan 2000, David Lang wrote:
> >"Massively overpowered" is good enough for me to be replying to. The
> >issue (especially with IPMasq where retrans and timeouts aren't part of
> >the hosting OS as they are with proxies), and more especially with
> >streaming media protocols such as RealAudio/RealVideo, the issue isn't CPU
> >performance, it's latency. Faster CPUs decrease latency up to the point
> >where you're I/O and memory bound.
> >
> >Traffic patterns for a bunch of students are significantly different than
> >those of a bunch of people in a corporation (from what I've seen, but my
> >experience with students is fairly limited.) If my coworker's children
> >are any measure, streaming media connections will abound.
> >
> >Since Paul didn't say what kind of Internet connection he has or his
> >internal network topology. Without that, there's no way to tell if the
> >packet buffering issues will determine lag more than the OS, bus, and
> >memory ones.
>
> Paul Crittenden
> Computer System Manager
> Simpson College
> e-mail: [EMAIL PROTECTED]
>
> Eat right. Stay fit. Die anyway.
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
