From: "Dharmendra.T" <dharmu@nsecure.net>
To: Pradeep Bhomia <pradeepbhomia@ahm.cmc.net.in>
Cc: netfilter@lists.netfilter.org
Subject: Re: Firewall performance querry
Date: 09 Sep 2003 12:36:44 +0530 [thread overview]
Message-ID: <1063091215.9187.4.camel@india.nsecure.net> (raw)
In-Reply-To: <20030909053404.M44692@ahm.cmc.net.in>
[-- Attachment #1: Type: text/plain, Size: 1433 bytes --]
On Tue, 2003-09-09 at 11:21, Pradeep Bhomia wrote:
Hello Friends,
I have recently setup an iptables based firewall and put a Sendmail server
behind firewall (although after facing some problems and with help from
friends in this mailling list). Now I want to put a proxy server behind this
same firewall. Right now the proxy server is connected directly to the
internet. Before moving ahead I want to know what will be the load on the
firewall. The configuration of firewall box is P4, ~1.8GHz, 256MB RAM,
Mandrake Linux 9.1, IPTables 1.2.7 and Shorewall 1.3.14. I will be having
aroung 300-400 concurrent users. I plan to setup NATting. Can anybody help me
in this regard. Whether NATting will be sufficient to take care about this
load or some other method can be used ( Total load on firewall will be some
1000 email accounts on sendmail server and around 400 clients for web
browsing). If anybody can direct me to some websites having some sort of
statistics for iptables.
Thanks a lot,
Pradeep Bhomia
See basically the firewall will not process much of your traffic, which
simply forwards the packets. So the currnet configuration for
firewalling is sufficient for iptables.
And you have to use natting if you are placing the proxy server before
the firewall.
--
Regards
Dharmendra.T
dharmu@nsecure.net
Linux Security and Admin
[-- Attachment #2: Type: text/html, Size: 2930 bytes --]
next prev parent reply other threads:[~2003-09-09 7:06 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-09-05 6:40 Problem with sendmail server behind firewall Pradeep Bhomia
2003-09-05 15:40 ` Mark E. Donaldson
2003-09-05 23:47 ` Jim Carter
2003-09-09 5:51 ` Firewall performance querry Pradeep Bhomia
2003-09-09 7:06 ` Dharmendra.T [this message]
2003-09-09 10:54 ` Chris Brenton
2003-09-09 18:06 ` Julian Gomez
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1063091215.9187.4.camel@india.nsecure.net \
--to=dharmu@nsecure.net \
--cc=netfilter@lists.netfilter.org \
--cc=pradeepbhomia@ahm.cmc.net.in \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox