All, I run BlackPlanet.com - one of the top 20 largest sites on the Internet. We're all open source (PHP, Apache, Linux, etc.) but currently pay about 50K for commercial firewall boxes. From a strictly performance standpoint, does anyone have any opinions about trying to put a Linux box running iptables in as one of our firewalls (assuming we could get all the rules matching that are on the current firewalls)?
My main concern is with performance. We push A LOT of traffic - about 800 million page views per month. At peak we're pushing about 200 megabits per second. I believe we can get all the rules in place and it would be magnificent to cut our costs from 50K per firewall to ~2K. We have 3 in production and a few more for redundancy would be wonderful - just not willing to pay the price. Thoughts? Michael C. Montero Chief Technology Officer Community Connect Inc. Co-founder [EMAIL PROTECTED] -=-=-=-=-= Community Connect Inc. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- The Premier Source of Interactive Online Communities 149 Fifth Avenue http://www.CommunityConnectInc.com/ New York, NY 10010 http://www.AsianAvenue.com/ http://www.BlackPlanet.com/ Click into Asian America The World Is Yours http://www.MiGente.com/ The Power of Latinos ----- Your Message May Appear Below This Line
