LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: [lvs-users] [OT] High Performance Linux Firewall / VPN Device?

To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] [OT] High Performance Linux Firewall / VPN Device?
From: "Robinson, Eric" <eric.robinson@xxxxxxxxx>
Date: Mon, 15 Aug 2011 09:36:31 -0700
> it's running 10-50% CPU for about 5KBps. Maybe it's a
> wrt54gs?
> 

Lol. I didn't actually check it. After seeing their performance specs I
was not encouraged to go further.

> I like their webpages though.
> 
> > By golly, they do. 400Mbps of VPN throughput is rather
> > disappointingly low.
> 
> Did you find a price?
> 

No, but if I went with their custom hardware I suspect it would be
prohibitive.

> > I was hoping to build a home-brew solution that would be
> > at least twice that, considering that one can buy a used
> > NetScreen or Nokia firewall that handles 25,000 tunnels at
> > 1+ Gbps throughput for about $3K.
> 
> You're going to be spending a bit of time to home brew. If
> your time is your own that's one thing, but if this is real
> business, I'd be buying the appliance.
> 

My conclusion, too.

> 
> There's some lesson here about packaging products and why
> having people who write GPL software doesn't make money.
> 
> It seems that writing the code (eg OpenVPN) isn't the hard
> part. Someone will do this for you for free. Endian had to
> design and build hardware, make sure it worked, get it UL
> certified, write configure scripts (and ones that would run
> inside a webpage), put up a nice webpage and pay people for
> about a year before the income stream started, with no real
> idea what to do if it didn't start.
> 
> Way back when the www started I wrote a demo PoS from which
> I hoped to make a packet. I realised that I'd have to get
> SSL certs and talk to banks etc to get them to handle the
> credit cards. So I knew I wasn't there. The customer wasn't
> interested (and later closed, possibly from having missed an
> opprtunity), so I dropped it. Not long after (well a couple
> of years), people had the on-line credit card stuff all
> packaged up and you just linked to their site to handle
> psyments. After that I realised I had been a little naive. I
> had a year to occupy that niche (including the commitment of
> time and money) or forget it. I could never have made it
> with just one on-line store and me in the basement.
> 
> Joe

I hear ya. Sometimes I look back at where I started (back when the
Internet was still non-commercial and FiDONET was the preferred
communication mechanism) and I am alternately saddened by the
opportunities I squandered, or comforted by the ones I did not pursue
and later realized it was a dead end.

--Eric






Disclaimer - August 15, 2011 
This email and any files transmitted with it are confidential and intended 
solely for LinuxVirtualServer.org users mailing list.. If you are not the named 
addressee you should not disseminate, distribute, copy or alter this email. Any 
views or opinions presented in this email are solely those of the author and 
might not represent those of Physicians' Managed Care or Physician Select 
Management. Warning: Although Physicians' Managed Care or Physician Select 
Management has taken reasonable precautions to ensure no viruses are present in 
this email, the company cannot accept responsibility for any loss or damage 
arising from the use of this email or attachments. 
This disclaimer was added by Policy Patrol: http://www.policypatrol.com/

_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread] Current Thread [Next in Thread>