RE: firewall and pack shape for 10G

[<jmacaranas () fxdd com>]

Or you can use packeteer.. I have used it and it works well...

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Nhon Yeung
Sent: Wednesday, January 09, 2008 6:42 PM
To: u.bodalina () gmail com
Cc: security-basics () securityfocus com
Subject: RE: firewall and pack shape for 10G

For the firewalls you might want to find out how any of the recommended
systems handle smaller packet sizes as they typically don't market these
rates. Also you'd want to take a guess at what the expected load is with
the increase to make sure that the box can handle all the features you
require.. nothing worse than getting hardware that's underspec'ed.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Nick
Sent: Thursday, 10 January 2008 3:32 AM
To: u.bodalina () gmail com
Cc: security-basics () securityfocus com
Subject: Re: firewall and pack shape for 10G

u.bodalina () gmail com wrote:
> Hi All,
> Our current Gateway Firewall (Checkpoint) and packet shaper can handle
1Gbps. Soon our national bandwidth will be increased from 5Mbps to
10Gbps.   What solutions are there interms of firewalling and pack
shaping for 10G pipes? 
> Are there any commercial firewalls and packet shapers that can handle
this traffic?
> Or would we have to use a custom configured Linux box?
> We were told to get rid of our gateway firewall and use BSD firewalls
in front of the critical servers. Should we even consider this option?
> Thanks in advance.



Any views expressed in this message are those of the individual sender,
except where the sender specifically states them to be the views of
Crane Group


--------------------------------------------------------------------------------------------------------
This message and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom it is
addressed. It may contain sensitive and private proprietary or legally
privileged information. No confidentiality or privilege is waived or
lost by any mistransmission. If you are not the intended recipient,
please immediately delete it and all copies of it from your system,
destroy any hard copies of it and notify the sender. You must not,
directly or indirectly, use, disclose, distribute, print, or copy any
part of this message if you are not the intended recipient. 
FXDirectDealer, LLC reserves the right to monitor all e-mail 
communications through its networks. Any views expressed in this 
message are those of the individual sender, except where the 
message states otherwise and the sender is authorized to state them.

Unless otherwise stated, any pricing information given in this message
is indicative only, is subject to change and does not constitute an
offer to deal at any price quoted. Any reference to the terms of
executed transactions should be treated as preliminary only and subject
to our formal confirmation. FXDirectDealer, LLC is not responsible for any
recommendation, solicitation, offer or agreement or any information
about any transaction, customer account or account activity contained in
this communication.