
<html><body><div style="color:#000; background-color:#fff; font-family:Helvetica Neue-Light, Helvetica Neue Light, Helvetica Neue, Helvetica, Arial, Lucida Grande, Sans-Serif;font-size:16px"><div dir="ltr" id="yui_3_16_0_1_1424822026413_6625">Usually depends on packet size. It has been quite common that link speed has been higher and sometimes a lot higher than the forwarding capacity of a device.</div><br>  <div style="font-family: Helvetica Neue-Light, Helvetica Neue Light, Helvetica Neue, Helvetica, Arial, Lucida Grande, Sans-Serif; font-size: 16px;" id="yui_3_16_0_1_1424822026413_6755"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, Sans-Serif; font-size: 16px;" id="yui_3_16_0_1_1424822026413_6754"> <div dir="ltr" id="yui_3_16_0_1_1424822026413_6753"> <hr size="1" id="yui_3_16_0_1_1424822026413_6757">  <font size="2" face="Arial" id="yui_3_16_0_1_1424822026413_6756"> <b><span style="font-weight:bold;">From:</span></b> Alex Samad - Yieldbroker <Alex.Samad@yieldbroker.com><br> <b><span style="font-weight: bold;">To:</span></b> Skeeve Stevens <skeeve+ausnog@theispguy.com> <br><b><span style="font-weight: bold;">Cc:</span></b> "ausnog@lists.ausnog.net" <ausnog@lists.ausnog.net>; "ausnog@ausnog.net" <ausnog@ausnog.net> <br> <b><span style="font-weight: bold;">Sent:</span></b> Wednesday, 25 February 2015, 10:45<br> <b><span style="font-weight: bold;">Subject:</span></b> Re: [AusNOG] Firewall<br> </font> </div> <div class="y_msg_container" id="yui_3_16_0_1_1424822026413_6792"><br><div id="yiv0551130480">


<style><!--

#yiv0551130480  

 _filtered #yiv0551130480 {font-family:Calibri;

panose-1:2 15 5 2 2 2 4 3 2 4;}

 _filtered #yiv0551130480 {font-family:Tahoma;

panose-1:2 11 6 4 3 5 4 4 2 4;}

#yiv0551130480  

#yiv0551130480 p.yiv0551130480MsoNormal, #yiv0551130480 li.yiv0551130480MsoNormal, #yiv0551130480 div.yiv0551130480MsoNormal

        {margin:0cm;

margin-bottom:.0001pt;

font-size:12.0pt;

font-family:"Times New Roman", "serif";}

#yiv0551130480 a:link, #yiv0551130480 span.yiv0551130480MsoHyperlink

        {

color:blue;

text-decoration:underline;}

#yiv0551130480 a:visited, #yiv0551130480 span.yiv0551130480MsoHyperlinkFollowed

        {

color:purple;

text-decoration:underline;}

#yiv0551130480 p

        {


margin-right:0cm;


margin-left:0cm;

font-size:12.0pt;

font-family:"Times New Roman", "serif";}

#yiv0551130480 p.yiv0551130480MsoAcetate, #yiv0551130480 li.yiv0551130480MsoAcetate, #yiv0551130480 div.yiv0551130480MsoAcetate

        {


margin:0cm;

margin-bottom:.0001pt;

font-size:8.0pt;

font-family:"Tahoma", "sans-serif";}

#yiv0551130480 span.yiv0551130480EmailStyle18

        {

font-family:"Calibri", "sans-serif";

color:#1F497D;}

#yiv0551130480 span.yiv0551130480BalloonTextChar

        {


font-family:"Tahoma", "sans-serif";

}

#yiv0551130480 .yiv0551130480MsoChpDefault

        {

font-family:"Calibri", "sans-serif";

}

 _filtered #yiv0551130480 {

margin:72.0pt 72.0pt 72.0pt 72.0pt;}

#yiv0551130480 div.yiv0551130480WordSection1

        {}

--></style>


<div id="yui_3_16_0_1_1424822026413_6796">

<div class="yiv0551130480WordSection1" id="yui_3_16_0_1_1424822026413_6795">

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6794"><span style="font-size:11.0pt;color:#1F497D;" id="yui_3_16_0_1_1424822026413_6793">I have to admit do like the looks of the new 2ru, 4 server ( 2 socket)  (sort of blade enclosure) Dell offering

</span></div> 

<div class="yiv0551130480MsoNormal"><span style="font-size:11.0pt;color:#1F497D;"><a rel="nofollow" target="_blank" href="http://www.dell.com/au/business/p/poweredge-c6220-2/pd">http://www.dell.com/au/business/p/poweredge-c6220-2/pd</a>

</span></div> 

<div class="yiv0551130480MsoNormal"><span style="font-size:11.0pt;color:#1F497D;">The spec only says 1G nic, but I was told they will come with 10G Nic.</span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6797"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6798"><span style="font-size:11.0pt;color:#1F497D;">You could put a lot of routing / BGP peering  etc on there.</span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6799"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6800"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6801"><span style="font-size:11.0pt;color:#1F497D;">Add this with</span></div> 

<div class="yiv0551130480MsoNormal"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6802"><span style="font-size:11.0pt;color:#1F497D;"><a rel="nofollow" target="_blank" href="https://www.lightbluetouchpaper.org/2015/02/23/maxwell/">https://www.lightbluetouchpaper.org/2015/02/23/maxwell/</a> … steps towards a unifying theorem</span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6803"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6804"><span style="font-size:11.0pt;color:#1F497D;">it is definitely a wonderful time to be alive !</span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6805"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6806"><span style="font-size:11.0pt;color:#1F497D;">  </span></div> 

<div style="border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt;" id="yui_3_16_0_1_1424822026413_6809">

<div id="yui_3_16_0_1_1424822026413_6808">

<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm;" id="yui_3_16_0_1_1424822026413_6807">

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6811"><b><span lang="EN-US" style="font-size:10.0pt;">From:</span></b><span lang="EN-US" style="font-size:10.0pt;" id="yui_3_16_0_1_1424822026413_6810"> skeeve@niisch.com [mailto:skeeve@niisch.com]

<b>On Behalf Of </b>Skeeve Stevens<br>

<b>Sent:</b> Wednesday, 25 February 2015 10:27 AM<br>

<b>To:</b> Alex Samad - Yieldbroker<br>

<b>Cc:</b> Sam Sarkis-UIP; ausnog@lists.ausnog.net; ausnog@ausnog.net<br>

<b>Subject:</b> Re: [AusNOG] Firewall</span></div> 

</div>

</div>

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6812">  </div> 

<div id="yui_3_16_0_1_1424822026413_6814">

<div class="yiv0551130480MsoNormal" id="yui_3_16_0_1_1424822026413_6813">If you want pure speed and grunt, then physical boxes are the way to go.</div> 

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">But, when you're requirements are less than a few gig, then yes, virtualised equipment is just fine.</div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">For example... in my offices in Asia, it was so damn hard to obtain/source equipment from distribution, taxes, bribes, delays, etc... we now longer sell Cisco/Juniper hardware.</div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">We deploy only easily to obtain server hardware - mostly Dell or HP, and put ESXi (looking at other options too), and run up vSRX (Firefly), vASA, vThunder and many other fully virtualised platforms.</div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">This enables the customers to get what they need in hours, and not weeks/months.  The last SRX240's I ordered in SE Asia had an ETA of 7 weeks... I mean, wtf?  Most have grace periods of licensing at 14-90 days, so the customer can run

 up things in an emergency.  They also get to control the grade of hardware redundancy they want - which is often good in some countries that do not even have SmartNet/JCare local services.</div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">If the customer wants serious redundancy, they can upgrade to full VMware at any time.</div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal">I find going to 10Gb in these environments more challenging, but getting easier... but at the multi-gigabit capacity throughput, it works perfectly.  The only struggle initially was to get customers to accept a Juniper or Cisco with a HP

 Box on the front.  But at the end of the day, it can do everything (and way way more) than they ever could by using hardware - and much sooner.</div> 

</div>

</div>

<div>

<div class="yiv0551130480MsoNormal"><br clear="all">

</div> 

<div>

<div>

<div>

<div>

<div>

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;"><br>

...Skeeve</span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;"><br>

--</span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Skeeve Stevens - </span><span style="font-size:9.5pt;color:#20497D;">The ISP Guy</span><span style="font-size:10.0pt;color:#20497D;"></span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Email: <a rel="nofollow" ymailto="mailto:skeeve@theispguy.com" target="_blank" href="mailto:skeeve@theispguy.com">skeeve@theispguy.com</a> ; </span><span style="font-size:9.5pt;color:#20497D;">Twitter: </span><span style="font-size:10.0pt;color:#20497D;"><a rel="nofollow" target="_blank" href="https://twitter.com/TheISPGuy"><span style="font-size:9.5pt;">@TheISPGuy</span></a></span></div> 

<div>

<div class="yiv0551130480MsoNormal"><span style="font-size:9.5pt;color:#20497D;">Blog: <a rel="nofollow" target="_blank" href="http://theispguy.com/">TheISPGuy.com</a> ; Facebook: <a rel="nofollow" target="_blank" href="https://www.facebook.com/theispguy">TheISPGuy</a></span><span style="font-size:9.5pt;"></span></div> 

</div>

<div>

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Linkedin: <a rel="nofollow" target="_blank" href="http://www.linkedin.com/in/skeeve"><span style="color:#1155CC;">/in/skeeve</span></a> ; </span><span style="font-size:10.0pt;color:black;">Expert360: </span><span style="font-size:10.0pt;color:#20497D;"><a rel="nofollow" target="_blank" href="https://expert360.com/profile/d54a9"><span style="color:#1155CC;">Profile</span></a></span></div> 

</div>

</div>

</div>

</div>

</div>

</div>

<div class="yiv0551130480MsoNormal">  </div> 

<div>

<div class="yiv0551130480MsoNormal">On Tue, Feb 24, 2015 at 12:13 PM, Alex Samad - Yieldbroker <<a rel="nofollow" ymailto="mailto:Alex.Samad@yieldbroker.com" target="_blank" href="mailto:Alex.Samad@yieldbroker.com">Alex.Samad@yieldbroker.com</a>> wrote:</div> 

<div>

<div>

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">Hi</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">Interesting, I just went to VMUG yesterday, listen to a lot about NSX… Previously tried to stay away

 because of the enterprise licensing cost, but relooking at it again.</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">I noticed nobody mentioned it in the hypervisor env</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">Is anyone running soft routers (VMs/non Hardware) as an ISP/provider.</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">I thinking you can’t beat silicon for pure switching … routing ?? and then coupled with something

 further up the stack, does switching/routing on the host of a hypervisor make more sense ?</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;">A</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:11.0pt;color:#1F497D;"> </span></div> 

<div style="border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt;">

<div>

<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm;">

<div class="yiv0551130480MsoNormal" style=""><b><span lang="EN-US" style="font-size:10.0pt;">From:</span></b><span lang="EN-US" style="font-size:10.0pt;"> AusNOG

 [mailto:<a rel="nofollow" ymailto="mailto:ausnog-bounces@lists.ausnog.net" target="_blank" href="mailto:ausnog-bounces@lists.ausnog.net">ausnog-bounces@lists.ausnog.net</a>]

<b>On Behalf Of </b>Skeeve Stevens<br>

<b>Sent:</b> Tuesday, 24 February 2015 10:17 PM<br>

<b>To:</b> Sam Sarkis-UIP<br>

<b>Cc:</b> <a rel="nofollow" ymailto="mailto:ausnog@lists.ausnog.net" target="_blank" href="mailto:ausnog@lists.ausnog.net">ausnog@lists.ausnog.net</a>;

<a rel="nofollow" ymailto="mailto:ausnog@ausnog.net" target="_blank" href="mailto:ausnog@ausnog.net">ausnog@ausnog.net</a><br>

<b>Subject:</b> Re: [AusNOG] Firewall</span></div> 

</div>

</div>

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div>

<div class="yiv0551130480MsoNormal" style="">Sounds like an odd request... you mean it MUST be a Server based Firewall?</div> 

<div>

<div class="yiv0551130480MsoNormal" style=""> </div> 

</div>

<div>

<div class="yiv0551130480MsoNormal" style="">If that is an issue, get around it by going VMware and using vASA or vSRX?</div> 

</div>

</div>

<div>

<div class="yiv0551130480MsoNormal" style=""><br clear="all">

</div> 

<div>

<div>

<div>

<div>

<div>

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;"><br>

...Skeeve</span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;"><br>

--</span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Skeeve Stevens - </span><span style="font-size:9.5pt;color:#20497D;">The ISP Guy</span></div> 

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Email: <a rel="nofollow" ymailto="mailto:skeeve@theispguy.com" target="_blank" href="mailto:skeeve@theispguy.com">skeeve@theispguy.com</a> ; </span><span style="font-size:9.5pt;color:#20497D;">Twitter: </span><span style="font-size:10.0pt;color:#20497D;"><a rel="nofollow" target="_blank" href="https://twitter.com/TheISPGuy"><span style="font-size:9.5pt;">@TheISPGuy</span></a></span></div> 

<div>

<div class="yiv0551130480MsoNormal" style=""><span style="font-size:9.5pt;color:#20497D;">Blog: <a rel="nofollow" target="_blank" href="http://theispguy.com/">TheISPGuy.com</a> ; Facebook: <a rel="nofollow" target="_blank" href="https://www.facebook.com/theispguy">TheISPGuy</a></span></div> 

</div>

<div>

<div style="margin:0cm;margin-bottom:.0001pt;"><span style="font-size:10.0pt;color:#20497D;">Linkedin: <a rel="nofollow" target="_blank" href="http://www.linkedin.com/in/skeeve"><span style="color:#1155CC;">/in/skeeve</span></a> ; </span><span style="font-size:10.0pt;color:black;">Expert360: </span><span style="font-size:10.0pt;color:#20497D;"><a rel="nofollow" target="_blank" href="https://expert360.com/profile/d54a9"><span style="color:#1155CC;">Profile</span></a></span></div> 

</div>

</div>

</div>

</div>

</div>

</div>

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div>

<div class="yiv0551130480MsoNormal" style="">On Mon, Feb 23, 2015 at 9:09 PM, Sam Sarkis-UIP <<a rel="nofollow" ymailto="mailto:ssarkis@unitedip.net.au" target="_blank" href="mailto:ssarkis@unitedip.net.au">ssarkis@unitedip.net.au</a>> wrote:</div> 

<div>

<div>

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">Hi All,</div> 

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">I know this is strange but we have a specific requirement for a customer.</div> 

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">Does anyone know or recommend a firewall / UTM software that can be installed on an existing Windows, Redhat, SuSE, or Centos Server.</div> 

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">We would prefer a commercial package. 

</div> 

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">We cannot overwrite the existing os and have to work within any of the above mentions platforms only.</div> 

<div class="yiv0551130480MsoNormal" style=""> </div> 

<div class="yiv0551130480MsoNormal" style="">Kind Regards</div> 

<div class="yiv0551130480MsoNormal" style=""><span style="color:#888888;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="color:#888888;">Sam</span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="color:#888888;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="color:#888888;"> </span></div> 

<div class="yiv0551130480MsoNormal" style=""><span style="color:#888888;"> </span></div> 

</div>

</div>

<div class="yiv0551130480MsoNormal" style="margin-bottom:12.0pt;"><br>

_______________________________________________<br>

AusNOG mailing list<br>

<a rel="nofollow" ymailto="mailto:AusNOG@lists.ausnog.net" target="_blank" href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a><br>

<a rel="nofollow" target="_blank" href="http://lists.ausnog.net/mailman/listinfo/ausnog">http://lists.ausnog.net/mailman/listinfo/ausnog</a></div> 

</div>

<div class="yiv0551130480MsoNormal" style=""> </div> 

</div>

</div>

</div>

</div>

</div>

<div class="yiv0551130480MsoNormal">  </div> 

</div>

</div>

</div>

</div>


</div><br>_______________________________________________<br>AusNOG mailing list<br><a ymailto="mailto:AusNOG@lists.ausnog.net" href="mailto:AusNOG@lists.ausnog.net">AusNOG@lists.ausnog.net</a><br><a href="http://lists.ausnog.net/mailman/listinfo/ausnog" target="_blank">http://lists.ausnog.net/mailman/listinfo/ausnog</a><br><br><br></div> </div> </div>  </div></body></html>