On Thu, May 23, 2002 at 12:54:57PM -0700, Scott Granados wrote:
As are f5 proeducts including bigip, 3dns and hmmm they make something
else I forget:).
On Thu, 23 May 2002, Brian wrote:
bsd kernel eh? i believe netapp filers are based on that as well.
Indeed - bigIP is BSDI aka
Though I might lend a comment here. I have had alot of experience
with PC based routers, starting around 96, and getting majorly into it
around 98 or so.
To give you an idea. No moving parts except cooling fans. Main drive
is an IDE style SanDisk flash drive. System goes through a
a minute... (/mnt asbestos underwear)
Just my 2ยข.
-Al
-Original Message-
From: Steven J. Sobol [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 23, 2002 2:39 PM
To: Dan Hollis
Cc: E.B. Dreger; Vinny Abello; [EMAIL PROTECTED]
Subject: Re: Routers vs. PC's for routing - was list problems?
On Thu
J. Sobol; Vinny Abello; [EMAIL PROTECTED]
Subject: Re: Routers vs. PC's for routing - was list problems?
JKS Date: Thu, 23 May 2002 17:34:29 -0400 (EDT)
JKS From: Jason K. Schechner
JKS Why would you want to do this?
JKS
JKS Logging. If a h@xx0r cracks your box he can't erase
JKS anything
BSD enforces append-only when running proper securelevel. AFAIK,
Linux lacks this attribute, and root can disable the so-called
immutable attrib.
bsd enforces append only or immutable when the flag is set, not
depending on the securelevel. there are user and system flag
sets. the user flag
They did but when you mentioned this I went to look for it and haven't
found it. .
As I recall this was infact for the nsa but I don't remember the exact
application.
On Fri, 24 May 2002, Joseph T. Klein wrote:
Didn't National Semiconductor have a spec sheet for write only memory
back in
On Fri, 24 May 2002, Rowland, Alan D wrote:
AFAIK standard (non-proprietary) CompactFlash, SmartCards, Memory Stick, et
al, are seen as (removable) storage with typical allowed attributes. I can
set a file/folder/card to 'locked' in my camera but when plugged into the
computer this will
VA Date: Thu, 23 May 2002 09:26:41 -0400
VA From: Vinny Abello
VA I would have to say for any Linux/BSD platform to be a viable
I suppose it's been awhile since this thread has made the rounds,
so I'll jump in for a moment...
VA routing solution, you have to eliminate all moving parts or
VA
And that's MY real question. Who has actually done this in a production
environment that can speak with some real experience on the topic? What
can you replace with a linux box to route and run BGP for you in real
life? A 7200? Bigger.
I don't have the facilities to try these things
On Thu, 23 May 2002, Neil J. McRae wrote:
I've done it in a production environment and unless money was
extremely tight I wouldn't consider doing it again. You will
save on capital expediture but you need an army of resources
to support it. When I did it, it was on NetBSD running GateD
Not to say you can't route well with a linux or bsd system you can but
at the high-end probably not as well.
Tell that to Juniper.
routing != forwarding
routers have two jobs, both critical
randy
ADC Date: Thu, 23 May 2002 14:30:16 -0400
ADC From: Anthony D Cennami
ADC Not to say you can't route well with a linux or bsd system
ADC you can but at the high-end probably not as well.
ADC
ADC Tell that to Juniper.
Where can I buy their line cards for my PC?
--
Eddy
Brotsman Dreger,
We've had some rather good success with PC based routers. Typical
setup was FreeBSD 4.x, 512mb, 20gb RAID-1, 3com Gigabit Ethernet card,
Fore Systems OC3 ATM card. All this, with zebra on top. It worked well for
a long time, although it turned out getting deprecated because of some
zebra issues
As are f5 proeducts including bigip, 3dns and hmmm they make something
else I forget:).
On Thu, 23 May 2002, Brian wrote:
bsd kernel eh? i believe netapp filers are based on that as well.
Bri
On Thu, 23 May 2002, Anthony D Cennami wrote:
Not to say you can't route well
JC Date: Thu, 23 May 2002 15:25:14 -0400 (EDT)
JC From: James Cornman
JC We've had some rather good success with FreeBSD based PC
JC Routers. Typical setup was FreeBSD 4.x, 512mb, 20gb RAID-1,
JC 3com Gigabit Ethernet card, Fore Systems OC3 ATM card. All
JC this, with zebra on top. It worked
I agree with you on that. Hot swapability for various interfaces is
something routers obviously have over PC's.
Hot swap PCI is old news.
True... unless going for 64 bit PCI at 66MHz... still it's obvious that
routers are designed for one simple purpose and generally have larger
On Thu, 23 May 2002, E.B. Dreger wrote:
I'm trying to remember what Buy It Now was on that M20 on eBay
the other day... IIRC, it had 4x OC3 + 4x DS3 + 4x FE.
$39,975
http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItemitem=2025155277
--
Dominic J. Eidson
At 04:17 PM 5/23/2002 -0400, you wrote:
I agree with you on that. Hot swapability for various interfaces is
something routers obviously have over PC's.
Hot swap PCI is old news.
True, but not widely implemented in the standard PC market. If you want a
server that has hot swap capability,
On Thu, 23 May 2002, E.B. Dreger wrote:
EIDE-based flash drives have become very inexpensive. Some
embedded systems use CompactFlash boards.
Can you set flash drives to be write-only? Sorry if this is a basic
question, but the only EIDE mass-storage devices I've used are more
traditional
On Thu, 23 May 2002, Steven J. Sobol wrote:
On Thu, 23 May 2002, E.B. Dreger wrote:
EIDE-based flash drives have become very inexpensive. Some
embedded systems use CompactFlash boards.
Can you set flash drives to be write-only?
Why would you want to do this?
-Dan
--
[-] Omae no subete
SJS Date: Thu, 23 May 2002 17:23:43 -0400 (EDT)
SJS From: Steven J. Sobol
SJS Can you set flash drives to be write-only? Sorry if this is
Depends on the drive, just like traditional HDDs.
SJS a basic question, but the only EIDE mass-storage devices
SJS I've used are more traditional drives.
JKS Date: Thu, 23 May 2002 17:34:29 -0400 (EDT)
JKS From: Jason K. Schechner
JKS Why would you want to do this?
JKS
JKS Logging. If a h@xx0r cracks your box he can't erase
JKS anything that's already been written there. Often it takes
BSD enforces append-only when running proper
On Thu, 23 May 2002, Dan Hollis wrote:
On Thu, 23 May 2002, Steven J. Sobol wrote:
On Thu, 23 May 2002, E.B. Dreger wrote:
EIDE-based flash drives have become very inexpensive. Some
embedded systems use CompactFlash boards.
Can you set flash drives to be write-only?
Why would
At 02:28 PM 5/23/2002 -0700, Dan wrote:
Why would you want to do this?
Because flash has a limited number of writes. If you used it like a
traditional file system, it would go kaput in no time.
-- jb
Vinny Abello wrote:
First off, you're right about moving parts generally being a bad
thing. However, it is not always necessary to eliminate the hard
drive. Two drives in a RAID-0 configuration may be reliable
enough. Especially if the failure of a single drive sets off
sufficient alarms
Let me elaborate. I thought Steve was concerned about the limited
writablity of flash.
My thought was to build something like a Linux router, you'd have to load
the OS into a RAMdisk (or something similar), and only write to flash when
the config changed. Which means you'd need some sort of
On Thu, 23 May 2002, Jason K. Schechner wrote:
On Thu, 23 May 2002, Dan Hollis wrote:
On Thu, 23 May 2002, Steven J. Sobol wrote:
Can you set flash drives to be write-only?
Why would you want to do this?
Logging. If a h@xx0r cracks your box he can't erase anything that's
already been
On Thu, 23 May 2002, Jake Baillie wrote:
the config changed. Which means you'd need some sort of singular
configuration file.
But I was wrong. :) He meant read-only
I'm just throwing ideas out there. I could boot Linux off a floppy or
a bootable CD and create a ramdisk upon bootup -
On Thu, 23 May 2002, E.B. Dreger wrote:
SJS a basic question, but the only EIDE mass-storage devices
SJS I've used are more traditional drives.
Why not partition wisely, then mount the desired partition as
read-only? Or I guess one _could_ mount each partition as RO...
But why?
The
On Thu, May 23, 2002 at 05:47:40PM -0400, David Charlap wrote:
64/66 PCI has 4 times as much bandwidth - about 4Gbit/s. Much better
than standard PCI, but hard to find on a PC-compatible motherboard, and
expensive when you do find it. Enough bandwidth for 10 line-rate 100M
Ethernet ports
Speaking of which: I have been looking for a reasonable priced hardware
ramdisk. The ones I've seen (albeit expensive) are essentially a brick
with DIMMs in them, and have either a IDE or SCSI interface. Some have a
battery to back them up for a few hours.
Anyone got some pointers?
On Thu,
On Thu, 23 May 2002, Dave Israel wrote:
Then why ot boot from a CD-ROM? Sure, it moves, but only for the
few minutes it takes to boot. Then it spins down and sits idle for
the n days/weeks/months until the next reboot. It would probably
last as long as the solid state drive, and would
Didn't National Semiconductor have a spec sheet for write only memory
back in the late 70s or early 80s?
I think they developed it for the NSA.
--On Thursday, 23 May 2002 14:53 -0700 Dan Hollis [EMAIL PROTECTED] wrote:
On Thu, 23 May 2002, Jason K. Schechner wrote:
On Thu, 23 May 2002, Dan
On Thu, 23 May 2002 18:01:03 EDT, Steven J. Sobol said:
The box I want to build is passing packets between the rest of my network
(and the public Internet) and one server that will hold sensitive data.
It'll be a Linux box with the TCP/IP stack running in bridged mode, with
two ethernet
Date: Fri, 24 May 2002 00:52:14 -0400
From: [EMAIL PROTECTED]
I've heard tell that a good way to secure a Linux box that's
doing this is to have it boot, set up the interfaces, set up
iptables, and then do a quick /sbin/halt - if you fail to
'ifconfig down' the interfaces on the way
[ On Friday, May 24, 2002 at 04:50:27 (-), Joseph T. Klein wrote: ]
Subject: Re: Routers vs. PC's for routing - was list problems?
Didn't National Semiconductor have a spec sheet for write only memory
back in the late 70s or early 80s?
I think they developed it for the NSA.
Not long
36 matches
Mail list logo