Subject: Re: 1-gigabit-router for netatalk?
From: Mac Conin (mconin@euc.de)
Date: Tue Mar 13 2001 - 12:58:11 EST
I think Alistair is right.
You should separate the two networks with a hardware-router/switch.
Behind the switch you can place your firewall for securing the inner network.
The CPU depend on the traffic getting through. A 200MHz IMHO should be
the bottom level.
Take a cheap Pentium II or III with 400/500MHz and at least 256MB RAM.
Alistair Riddell wrote:
>
> You haven't a hope in hell of getting anything like 1Gbps of throughput
> through a regular PC acting as a router. To get anything like wire speed
> you need a dedicated hardware router/switch, which uses specially designed
> ASICs to get that sort of throughput. With a PentiumPro you would probably
> get more like 100Mbps of throughput.
>
> Netatalk should be OK for the AppleTalk stuff but presumably most of the
> traffic will be IP which is handled solely by the kernel.
>
> On Mon, 5 Feb 2001 grobe@gmx.net wrote:
>
> > Hi there,
> >
> > I have a question concerning networking in general and in this special case
> > netatalk.
> >
> > We will split our network (about 100 clients, 80 are macs, and all are
> > getting data from a linux server) into 2 parts: one secure (for "service" and
> > backup) which isn't reachable from the internet, one open (the pool for the
> > students), which can be seen from the outside and takes the fileserver, which can
> > be accessed via ftp, smb and netatalk from the outside. These two parts are
> > linked by a machine which has two 1-GB-nics (to get full speed between the
> > switches of the two parts) and also acts as a firewall to the internet as well
> > as between the two network parts (as we don't want our users to access large
> > format printers in the closed network).
> >
> > So, I would like to hear your opinion if this configuration will be ok in
> > general (does the firewall, which is only filtering, not masquerading, take a
> > lot of cpu-power? will a 200mhz-pentiumpro be ok?) and with netatalk, which
> > isn't very tolerant in bad network configurations, as far as I know. We need
> > stable connections from our clients to the server, as we have a lot of very big
> > files in use. So, is any body using something like this router/firewall with
> > 1Gigabit and netatalk, or should we better take something prebuilt?
>
> --
> Alistair Riddell - BOFH
> IT Support Department, George Watson's College, Edinburgh
> Tel: +44 131 447 7931 Ext 176 Fax: +44 131 452 8594
> Microsoft - because god hates us
-- --schnipp--mit freundlichen grüssen
----------------------------------------------------------- Mac Conin EUC Online Service GmbH Geschäftsführer Taubengasse 9 mconin@euc.de D 50676 Koeln http://www.euc.de HRB Köln 32038 tel : +49-221-923 27 33 fax : +49-221-239 651 ----------------------------------------------------------- EUC sponsort Clean up Cologne - eine Iniative der IHK Köln, der Abfallwirtschaftsbetriebe Köln (AWB) und dem Grünflächenamt der Stadt Köln. http://www.clean-up-cologne.de
This archive was generated by hypermail 2b28 : Sun Oct 14 2001 - 03:04:34 EDT