Seconda parte del seminario su soluzione di firewalling opensource pfSense.
Relatori: Michele Della Marina e Dario Tion
Luogo: Knowledge Center DiTeDi - Tavagnacco (UD)
Data: 8 settembre 2012
2. pfSense
soluzione firewall opensource
FreeBSD
pfSense is a free, open source customized distribution of
FreeBSD tailored for use as a firewall and router
www.pfsense.org
Michele Della Marina - Dario Tion pfSense - soluzione firewall opensource
6. pfSense
soluzione firewall opensource
REQUISITI MINIMI DI SISTEMA
CPU - 100 MHz Pentium
RAM - 128 MB
1 GB hard drive
512 MB Compact Flash
Serial port for console
Michele Della Marina - Dario Tion pfSense - soluzione firewall opensource
8. pfSense
soluzione firewall opensource
REQUISITI HARDWARE
Throughput vs CPU/NIC
400
350
A snippet of a comment in
300
the source code for this
driver tells the story
"The RealTek 8139 PCI NIC
Throughput (Mbps)
250
redefines the meaning of 'low
Realtek
200
Intel Pro/1000
end.' This is probably the
worst PCI Ethernet controller
150 ever made, with the possible
exception of the FEAST chip
100
made by SMC."
50
0
MMX 200 MHz II 350 MHz III 700 MHz IV 1.7 GHz
CPU
Michele Della Marina - Dario Tion pfSense - soluzione firewall opensource
9. pfSense
soluzione firewall opensource
REQUISITI HARDWARE
VPN (IPSEC) Throughput vs CPU
100
90
80
70
Throughput (Mbps)
60
Throughput
50
40
30
20
10
0
CPU 266 MHz CPU 500 MHz CPU XEON 800 FSB MHz
Michele Della Marina - Dario Tion pfSense - soluzione firewall opensource
10. pfSense
soluzione firewall opensource
REQUISITI HARDWARE
VPN (IPSEC) Throughput vs CPU
Michele Della Marina - Dario Tion pfSense - soluzione firewall opensource