Hello Elvir We run iptables on a DELL PowerEdge 750 Pentium 4 2.6 GHz, 1 gig RAM Firewall has 5 nics, 1 WAN and 4 DMZ We have about 40 servers for 600+ IPs of 3 different ranges, and bandwidth is a little above 25 mbits in peaks We have simple routing and NAT also, filtering is done at both. I cannot tell how many requests per second we have, but CPU runs at less than 10% and the system have an uptime of more than 550 days mission critical, yes :) HTH Maxime Ducharme -----Message d'origine----- De : netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] De la part de Elvir Kuric Envoyé : 2 septembre, 2006 13:49 À : netfilter@xxxxxxxxxxxxxxxxxxx Objet : Hardly loaded machines and iptables? Your experiences? Hi all, I need your opinion about heavy load machines acting as firewals based on iptables package. If I have Pentium 4, equiped with 1GB of RAM, two NICs, one NIC to internet, second to private network ( in private network are servers ). On firewall ( iptables ) machine I have nat, pat, everthing using iptables. How that works in environment with many reqestes to servers in the LAN, I mean about 10000 request per day? Have you experience about this topic. Is there any limit on hits to iptables machine, what is about memory, procesor. What do you think is solution based on iptables enough secure for mission critical cases? I just need your frank opinion. Thanks Regards __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
