Greetings, The idea is to switch to OpenBSD for our BGP D/PF. In the future we will get Gigabit connections so I am concerned about performance!
The idea is to have 2 carped boxes voor OpenBGPD and Packetfilter. Then behind that 2 carped boxes for IPSEC & Packetfilter (future) I am assuming with currentday hardware this should be a breeze for the machines. But I'd love to hear from people filtering gigabit and what to be aware off when setting it up.... Another thing I wonder about is how many VPN connections can a box handle ? If we would switch to an openbsd server and small (redundant carped ) soekris vpn gateways what would be the maximum ? When does CPU/memory become an issue ? I imagine we'd use a 3ghz box with 1GB of memory (2GB if needed). Last thing I am wondering about is some sort of backup route for my IPSEC tunnels. I know we can do dual-homed with Packetfilter, it would be neat to have a backup route for our clients vpn over another DSL line..... Any pointers are welcome! Regards, Frans
