Re: PII fast enough for firewall
On 12/03/2007 02:03 PM, Peter Teunissen wrote:
>
> On 3-dec-2007, at 7:25, Ron Johnson wrote:
>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> On 12/02/07 22:22, John Schmidt wrote:
>>> When I do a speed test from my box behind my IPCOP firewall, I get
>>> about 10K
>>> Mbs up/down.
>>>
>>> If I move the connection to one of the Buffalo router LAN
>>> connections, I get
>>> the advertised 15K Mbs up/down speed.
>>>
>>> So routing traffic thru the IPCOP firewall slows things down quite a
>>> bit. Is
>>> this to be expected?
>>
>> It is if IPCOP puts a load on the CPU or starts swapping memory.
>>
>> Does it?
>>
>>> I was thinking of changing the firewall to a
>>> debian box
>>> running shorewall, and was wondering if I could tweak the
>>> firewall/router to
>>> not slow things down appreciably like the ipcop box is doing.
>>
>
> FWIW, you could try m0n0wall instead, it runs fine on my FW with 64MB &
> 450mhz PII. I get 10MB/sec throughput without full load on the cpu.
>
> Peter
Maybe check your NIC. What do you get for this (etch):
$ grep 'link up' /var/log/dmesg
Maybe the ancient PII has an ancient ethernet card!
Ralph
Reply to: