Date: Fri, 08 Oct 1999 01:20:03 GMT From: mike@sentex.net (Mike Tancsa) To: beowulf@sns-access.com (Chad Monteith) Cc: questions@freebsd.org Subject: Re: THree NIC's -> filter/firewall/router Message-ID: <37fd4450.79331512@mail.sentex.net> In-Reply-To: <MAILPine.SOL.3.95.991007154404.3791A-100000@pickwick> References: <MAILPine.SOL.3.95.991007154404.3791A-100000@pickwick>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7 Oct 1999 18:47:52 -0400, in sentex.lists.freebsd.questions you wrote: >Hello, > If somebody has done this could you contact me? I am trying to >assess its feasability. > We want to use one FreeBSD system with three NIC's in it running >at 100 MB/s (all three to a different switch). The machine will need to >router between the three interfaces (it will server as a gateway/router), >filter >packets ala a firewall, and all www/ftp/SSL traffic will need to be >process by our Squid/SmartFilter system, i.e. block that traffic unless >its from itself. > Also have you had performance problems? Three 100 MB/s NIC's >running at full speed will probably kill the PCI bus... Thats three at 100 Mbits, not Bytes right ? I have a router with 4 Intel fxp cards in it, 3 in 100Mb full duplex, one in 10BaseT. I have seen it spike upwards of about 10Mb (which is the maximum coming into it from a cross over cable to a Cisco 4700), have 4 going out, 1 and 1 on another, and 1Mb on the third, and 14 going out the other end, as well as running gated and 22 ipfw rules to process. It does us well. Remember, cdrom.com saturates a single 100Mb connection. ---Mike Mike Tancsa (mdtancsa@sentex.net) Sentex Communications Corp, Waterloo, Ontario, Canada "Given enough time, 100 monkeys on 100 routers could setup a national IP network." (KDW2) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37fd4450.79331512>