Another Hardware Sizing Question

Another Hardware Sizing Question

[Jason Joines]

   We have a subnet with a potential of 1022 hosts.  Each machine is 
connected to a 100 Mbps switch.  The connection from our subnet to the 
main university network is I believe OC-3, ~154 Mbps.  There are 
currently less than 500 active machines on the network.  They do the 
normal web brosing, and connect to NetWare and Domino servers outside 
the subnet.  With that, the maximum traffic we've ever seen between our 
subnet and the rest of the world is about 40 Mbps.

   We'd like to put all the boxes on our subnet behind and IPTables 
firewall and NAT them.  We'd also like to take into consideration the 
possibility of the number of machines growing to ~1000.  We have quite a 
few spare PIII 450 boxes setting around.

   What would be the mininum, ideal, etc., hardware setup for this 
environment.


Thanks,

Jason Joines
Open Source = Open Mind
========================

Re: Another Hardware Sizing Question

[Dharmendra.T]

[-- Attachment #1: Type: text/plain, Size: 1280 bytes --]

On Fri, 2003-09-05 at 21:56, Jason Joines wrote:

       We have a subnet with a potential of 1022 hosts.  Each machine is 
    connected to a 100 Mbps switch.  The connection from our subnet to the 
    main university network is I believe OC-3, ~154 Mbps.  There are 
    currently less than 500 active machines on the network.  They do the 
    normal web brosing, and connect to NetWare and Domino servers outside 
    the subnet.  With that, the maximum traffic we've ever seen between our 
    subnet and the rest of the world is about 40 Mbps.
    
       We'd like to put all the boxes on our subnet behind and IPTables 
    firewall and NAT them.  We'd also like to take into consideration the 
    possibility of the number of machines growing to ~1000.  We have quite a 
    few spare PIII 450 boxes setting around.
    
       What would be the mininum, ideal, etc., hardware setup for this 
    environment.
    
    
    Thanks,
    
    Jason Joines
    Open Source = Open Mind
    ========================
    

Hi,

Ideally if you put p-3 machine with 256MB ram should work in this
situation assuming that you are not running any application on the
firewall other than packet filtering.

    

-- 
Regards
Dharmendra.T
dharmu@nsecure.net
Linux Security and Admin

[-- Attachment #2: Type: text/html, Size: 3064 bytes --]

Re: Another Hardware Sizing Question

[Jason Joines]

Dharmendra.T wrote:
> On Fri, 2003-09-05 at 21:56, Jason Joines wrote:
> 
> /   We have a subnet with a potential of 1022 hosts.  Each machine is ///
> /connected to a 100 Mbps switch.  The connection from our subnet to the ///
> /main university network is I believe OC-3, ~154 Mbps.  There are ///
> /currently less than 500 active machines on the network.  They do the ///
> /normal web brosing, and connect to NetWare and Domino servers outside ///
> /the subnet.  With that, the maximum traffic we've ever seen between our ///
> /subnet and the rest of the world is about 40 Mbps.///
> ////
> /   We'd like to put all the boxes on our subnet behind and IPTables ///
> /firewall and NAT them.  We'd also like to take into consideration the ///
> /possibility of the number of machines growing to ~1000.  We have quite a ///
> /few spare PIII 450 boxes setting around.///
> ////
> /   What would be the mininum, ideal, etc., hardware setup for this ///
> /environment.///
> ////
> ////
> /Thanks,///
> ////
> /Jason Joines///
> /Open Source = Open Mind///
> /========================///
> ////
> 
> Hi,
> 
> Ideally if you put p-3 machine with 256MB ram should work in this 
> situation assuming that you are not running any application on the 
> firewall other than packet filtering.
> 
> ////
> 
> -- 
> Regards
> Dharmendra.T
> dharmu@nsecure.net
> Linux Security and Admin
> 


  Yep, just doing packet filtering.  How many p3 with 256 MB would you 
recommend?

Thanks,

Jason
===========