Eduardo,
No, the http://www.openbsd.org/faq/pf/perf.html is "PF" specific.
What I told is the generic rule of packet per second vs bits per second which all software based packet filter are bound into, if you will even ask this on the pf mailing list, no one will give you an exact answer or even an exact interpretation
of this PF faq. Keep in mind that the performance mentioned in this PF faq is not the same for all packet filters like
IPF or IPTables, if your in doubt, search the pf or openbsd mailing list archives.
regards, Kenneth
Eduardo Tongson wrote:
On Tue, 22 Mar 2005 16:31:49 +0000, Kenneth Oncinian
<[EMAIL PROTECTED]> wrote:
The answer is a little bit ackward, for the real real question is not the number of bits per second but rather the number of packets per second the firewall will be subjected to and how complex the rule sets are. Thus it depends on the application that will pass through the firewall.
So the safe answer is, if you will use an "old" machine as a firewall, chances are, it will perform well considering a 486/66 with a pair of good NICs could filter close to 5Mbps *but* there is no guarantee because of the item I mentioned above.
HTH,
Kenneth
you should have just linked to http://www.openbsd.org/faq/pf/perf.html
-- Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
