From owner-freebsd-questions@FreeBSD.ORG  Wed Feb  9 19:34:32 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 43AFE16A4D8
	for <freebsd-questions@freebsd.org>;
	Wed,  9 Feb 2005 19:34:32 +0000 (GMT)
Received: from smtp816.mail.sc5.yahoo.com (smtp816.mail.sc5.yahoo.com
	[66.163.170.2])	by mx1.FreeBSD.org (Postfix) with SMTP id EA5E543D41
	for <freebsd-questions@freebsd.org>;
	Wed,  9 Feb 2005 19:34:31 +0000 (GMT)
	(envelope-from sp0ng3b0b@sbcglobal.net)
Received: from unknown (HELO ?10.1.1.25?) (joe?stevensen@69.107.60.89 with
	plain)
	by smtp816.mail.sc5.yahoo.com with SMTP; 9 Feb 2005 19:34:31 -0000
Message-ID: <420A65CA.4000504@sbcglobal.net>
Date: Wed, 09 Feb 2005 11:34:34 -0800
From: sp0ng3b0b <sp0ng3b0b@sbcglobal.net>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: darryl@osborne-ind.com
References: <000801c50ec5$a2115c00$0701a8c0@darryl>
In-Reply-To: <000801c50ec5$a2115c00$0701a8c0@darryl>
X-Enigmail-Version: 0.90.0.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
cc: freebsd-questions@freebsd.org
Subject: Re: Firewall throughput question
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Feb 2005 19:34:32 -0000

Darryl Hoar wrote:
> Greetings,
> I have had a Freebsd firewall (Older computer with (1) 3com 10Mb 
> ethernet PCI card, and (1) 3 com 10/100 Mb ethernet PCI card).  
> The firewall croaked on me (motherboard died).  As a quick fix, 
> I plugged in a Linksys BEFSX41.
> 
> My Question is, should I build a new Freebsd firewall or just 
> continue using the Linksys ? Throughput and security are my 
> concern.  I can have up to 20 machines on the LAN at one time
> using the internet, so traffic throughput is a factor.
> 

You should use the Linksys if you are comfortable with it. It does use 
less electricity.

If you are really concerned with security and perforance, I recommend at 
least 500 MHz and 256 MB RAM. I have used Intel/3Com cards and both are 
reliable. I recommend using PF though.

I am working on a replacement firewall right now. I am using a Sun Ultra 
5 (360MHz) with a quad ethernet card. It will be running OpenBSD and PF.
I may using FreeBSD though, because I want to use ntop and ntop does not 
work on OpenBSD.

Hope that helps.