On Mon, Sep 19, 2011 at 5:58 PM, Greg Hennessy <[email protected]> wrote: > That depends on what type and distribution of traffic is being firewalled, > I've replaced Pix 535s in the Past with PF on FreeBSD with much obvious > performance improvements all round. >
This. > However no software firewall I know of will handle 10gigE @ at high rate > small packet level. > For that matter I'm not aware of any commercial firewall that can do 10 Gb of entirely small packets. The biggest, baddest ASA, which costs as much as a house, can't. It will roughly do 3-4 times the pps rate of the fastest general purpose server hardware with a general purpose OS that you can get though. _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
