-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > What are the current options for firewalls that can handle 1gb > throughput ? > I've got a client that has a 1gb internet connection, (a major > Univ), and they want to firewall it, but haven't because they > haven't found anything that wouldn't impact the performance too > much. I've seen firewalls that advertise ~622mbps, but none that > claim anything higher, but perhaps I'm wrong. Or could you use a > really hefty OpenBSD box with two gigabit fiber cards ?
If I am not mistaken, vendors like Netscreen (http://www.netscreen.com/) and others have firewall appliances that are capable of 1Gbps and more. I also read about an appliance that was capable of up to 8 Gbps (!) but I can't remember where. Another option that might be interesting is a load balancing/sharing solution that uses two or more firewalls in parallel to achieve extra throughput. Added bonus is extra redundancy. That means that the PC based approach might be a possibility if you used two (or three) servers that can handle half the throughput and share the load among them. I am not entirely sure if it would work, I have been doing research myself these past few months but haven't got the actual experience yet. But if it works it is going to be a lot cheaper, with added redundancy, so it might be worth looking at. HTH Jonathan - -- UR Communications - Solutions For Wired Professionals Learn more about our services @ http://www.ur.nl/ -----BEGIN PGP SIGNATURE----- Version: PGP 7.1 iQA/AwUBPDrqfhxxP6yqwa/XEQIVXACgoFtEASn1C+286nJ7S21fkv7SJRsAmwRe i5xFAV05Nxfjy6XgprmTsl8g =aXcW -----END PGP SIGNATURE-----