Re: Hardware recommendations for compact 1U firewall

On Tue, Jan 10, 2017 at 12:58 PM, Paul Suh wrote: >> On Dec 16, 2016, at 8:32 PM, Predrag Punosevac > wrote: >> >> This is my favorite Ebay seller and they have lots of nice network >> equipment for home, small, and large business. >> >>

Re: Hardware recommendations for compact 1U firewall

> On Dec 16, 2016, at 8:32 PM, Predrag Punosevac wrote: > > This is my favorite Ebay seller and they have lots of nice network > equipment for home, small, and large business. > > http://stores.ebay.com/MITXPC/ +1 for MITXPC. I've purchased several systems from them over

Re: Hardware recommendations for compact 1U firewall

To answer some of my own questions, and after wise guidance from the list, I have noticed that all our firewall hardware using 'vr' ethernet ports hit a wall somewhere between 65Mbps->69Mbps. This is the case with the Geodes in a net5501 and various VIA x86 CPUs in VIA embedded systems, I am

Re: Hardware recommendations for compact 1U firewall

On Tue, Jan 10, 2017 at 1:32 AM, Stuart Henderson wrote: > Aaron Mason wrote: >> >> Torn between a Barracuda web filter or a Portwell CAR 3000. The latter >> >> is more expensive but supports 10Gbit, whereas the Barracuda may only >> >> have 10/100. Both Core2Duo based,

Re: Hardware recommendations for compact 1U firewall

Aaron Mason wrote: > >> Torn between a Barracuda web filter or a Portwell CAR 3000. The latter > >> is more expensive but supports 10Gbit, whereas the Barracuda may only > >> have 10/100. Both Core2Duo based, could probably upgrade to a > >> Core2Quad or a Xeon with a 771->775 adapter. btw, I

Re: Hardware recommendations for compact 1U firewall

On 22.12.2016. 2:17, Predrag Punosevac wrote: > As promissed in one of my earlier e-mails. OpenBSD 6.0 dmesg for > SYS-5018A-FTN4 thank you ...

Re: Hardware recommendations for compact 1U firewall

Thanks for all of your suggestions, though some may have missed the bit where I said "on a limited budget" :) Torn between a Barracuda web filter or a Portwell CAR 3000. The latter is more expensive but supports 10Gbit, whereas the Barracuda may only have 10/100. Both Core2Duo based, could

Re: Hardware recommendations for compact 1U firewall

As promissed in one of my earlier e-mails. OpenBSD 6.0 dmesg for SYS-5018A-FTN4 FWIW, we have six of these doing firewall duty (currently running 5.9) and they perform flawlessly. We run them in CARPed pairs, and LACP across redundant switches. --lyndon

Re: Hardware recommendations for compact 1U firewall

Hrvoje Popovski wrote: > > On 15.12.2016. 12:30, Stuart Henderson wrote: > > If you want to cut down on weight+noise at the expense of more cost > > and a less powerful cpu, maybe APU2 in a 1U case or something like > > supermicro SYS-5018A-FTN4. > > has anyone dmesg from SYS-5018A-FTN4 box? i'm

Re: Hardware recommendations for compact 1U firewall

If someone hasn't already mentioned it : Lanner http://www.lannerinc.com/ On 19 December 2016 at 18:08, Aaron Mason wrote: > Thanks for some additional fleabay search terms :) > > On Sat, Dec 17, 2016 at 2:59 PM, Nick Holland > wrote: > >

Re: Hardware recommendations for compact 1U firewall

Thanks for some additional fleabay search terms :) On Sat, Dec 17, 2016 at 2:59 PM, Nick Holland wrote: > On 12/14/16 20:39, Aaron Mason wrote: >> All >> >> I'm looking for a 1U appliance that I can re-purpose into a firewall >> using OpenBSD. I've tried the

Re: Hardware recommendations for compact 1U firewall

On Sat, Dec 17, 2016 at 1:08 PM, Damian McGuckin wrote: [...] > What is the max throughput people have seen on these? > Assuming traffic going between say 'vr0' and 'vr1', will it a Net5501 > board sustain 100Mbps? I doubt it. I did some work[1] on the vr driver on a

Re: Hardware recommendations for compact 1U firewall

On Sat, Dec 17 2016 at 08:13, Damian McGuckin wrote: > While everybody is talking about hardware, I noticed that some of you > have flicked your Soekris Net 5501 boards. > > We are upgrading from 20Mbps links to 100Mbps links and as a result of this > discussion, I am wondering whether it would

Re: Hardware recommendations for compact 1U firewall

2016-12-17 4:59 GMT+01:00 Nick Holland : > > heh. Little secret: if you look in many data centers, you will find > lots of 1U boxes with various titles -- security appliances, load > balancing devices, etc. A lot of them, under the covers, are just PCs. > And a lot

Re: Hardware recommendations for compact 1U firewall

Am 17.12.2016 02:32 schrieb Predrag Punosevac: SYS-5018A-FTN4 are really nice boxes. This one has 16GB of RAM and was btw.. just got SYS-1028R-WMRT and the dual I350 isnt "supported", likely because of the weird PPB/riser. -- pb

Re: Hardware recommendations for compact 1U firewall

On Sat, Dec 17, 2016 at 01:08:50PM +1100, Damian McGuckin wrote: > Assuming traffic going between say 'vr0' and 'vr1', will it a Net5501 > board sustain 100Mbps? I doubt it would. One limiting factor being the number of packets per second. At some point the packets-per-second rate will trigger

Re: Hardware recommendations for compact 1U firewall

On 12/14/16 20:39, Aaron Mason wrote: > All > > I'm looking for a 1U appliance that I can re-purpose into a firewall > using OpenBSD. I've tried the near-free method by using an old Lacie > Ethernet Disk appliance I had lying around, but it turns out the > onboard SATA chipset is toast on this

Re: Hardware recommendations for compact 1U firewall

While everybody is talking about hardware, I noticed that some of you have flicked your Soekris Net 5501 boards. We are upgrading from 20Mbps links to 100Mbps links and as a result of this discussion, I am wondering whether it would be a wise move on or part to consider replacing them. Rock

Re: Hardware recommendations for compact 1U firewall

Hrvoje Popovski wrote: > > On 15.12.2016. 12:30, Stuart Henderson wrote: > > If you want to cut down on weight+noise at the expense of more cost > > and a less powerful cpu, maybe APU2 in a 1U case or something like > > supermicro SYS-5018A-FTN4. > > has anyone dmesg from SYS-5018A-FTN4 box? i'm

Re: Hardware recommendations for compact 1U firewall

On 12/15/16 12:07, Ryan Freeman wrote: On Thu, Dec 15, 2016 at 11:30:31AM +, Stuart Henderson wrote: On 2016-12-15, Aaron Mason wrote: All I'm looking for a 1U appliance that I can re-purpose into a firewall using OpenBSD. I've tried the near-free method by

Re: Hardware recommendations for compact 1U firewall

A search on fleabay shows that, in Australia, they still fetch >$300, out of my price range. :( On Thu, Dec 15, 2016 at 10:30 PM, Stuart Henderson wrote: > On 2016-12-15, Aaron Mason wrote: >> All >> >> I'm looking for a 1U appliance that I can

Re: Hardware recommendations for compact 1U firewall

On Thu, Dec 15, 2016 at 02:04:04PM -0800, OpenBSD lists wrote: > I recently replaced a pair of Soekris 6501's (BIOSes on both went blank) > with some SuperMicro X11SBA-LN4F-O boards, SATA-DOM-064s, the CSE505-203B > and 4 GB 1600 Mhz DRR3 sticks. > > Draws so little power that it looks like the

Re: Hardware recommendations for compact 1U firewall

Jordon wrote: About a year ago i replaced my Soekris net5501 with the following system: Supermicro A1SAi-2550F (4 core Atom with 4 NICS + IPMI) Supermicro SC505-203B (1U case where the back of the mob comes out the front) Kingston KVR16LSE11/4 (4GB SO-DIMM) I also used a SATA-DOM

Re: Hardware recommendations for compact 1U firewall

On 15.12.2016. 20:45, Bryan Vyhmeister wrote: > There is no support for Intel QAT (sometimes called Quick Assist) in > OpenBSD and that's not likely to change anytime soon. Some support is > supposedly coming to FreeBSD (by way of pfSense and some commerical > sponsorship or something) but I have

Re: Hardware recommendations for compact 1U firewall

About a year ago i replaced my Soekris net5501 with the following system: Supermicro A1SAi-2550F (4 core Atom with 4 NICS + IPMI) Supermicro SC505-203B (1U case where the back of the mob comes out the front) Kingston KVR16LSE11/4 (4GB SO-DIMM) I also used a SATA-DOM because I was going

Re: Hardware recommendations for compact 1U firewall

On Thu, Dec 15, 2016 at 07:51:40PM +0100, Hrvoje Popovski wrote: > On 15.12.2016. 12:30, Stuart Henderson wrote: > > If you want to cut down on weight+noise at the expense of more cost > > and a less powerful cpu, maybe APU2 in a 1U case or something like > > supermicro SYS-5018A-FTN4. > > has

Re: Hardware recommendations for compact 1U firewall

On 15.12.2016. 12:30, Stuart Henderson wrote: > If you want to cut down on weight+noise at the expense of more cost > and a less powerful cpu, maybe APU2 in a 1U case or something like > supermicro SYS-5018A-FTN4. has anyone dmesg from SYS-5018A-FTN4 box? i'm interesting in intel qat thank you

Re: Hardware recommendations for compact 1U firewall

On 2016-12-15, Stuart Henderson wrote: > If you want to cut down on weight+noise at the expense of more cost > and a less powerful cpu, maybe APU2 in a 1U case or something like > supermicro SYS-5018A-FTN4. I can second this recommendation, it's what I use at home.

Re: Hardware recommendations for compact 1U firewall

On Thu, Dec 15, 2016 at 11:30:31AM +, Stuart Henderson wrote: > On 2016-12-15, Aaron Mason wrote: > > All > > > > I'm looking for a 1U appliance that I can re-purpose into a firewall > > using OpenBSD. I've tried the near-free method by using an old Lacie > >

Re: Hardware recommendations for compact 1U firewall

On 2016-12-15, Aaron Mason wrote: > All > > I'm looking for a 1U appliance that I can re-purpose into a firewall > using OpenBSD. I've tried the near-free method by using an old Lacie > Ethernet Disk appliance I had lying around, but it turns out the > onboard SATA

Re: Hardware recommendations for compact 1U firewall

I've had good luck with Sun Netra X1's. I use them for pretty much every firewall / router I need. I prefer the 500mhz model as it seems to be able to handle a full 100mbit link on both nics simultaneously.

Hardware recommendations for compact 1U firewall

All I'm looking for a 1U appliance that I can re-purpose into a firewall using OpenBSD. I've tried the near-free method by using an old Lacie Ethernet Disk appliance I had lying around, but it turns out the onboard SATA chipset is toast on this particular unit (it freezes at CDBOOT when it