I did a CPU upgrade on my firewall (400MHz to 1.4Ghz) and I will say for me v5 moves just as fast as 4 did on the old processor. The webmin is differnet then 4 and takes a little bit to get used to but once you understand how it works I personally think it is much better. I especially like the grouping function. Makes me rules much neater. 60+ rules gets a little hairy navigating through sometimes.
I did a CPU upgrade on my firewall (400MHz to 1.4Ghz) and I will say for me v5 moves just as fast as 4 did on the old processor. The webmin is differnet then 4 and takes a little bit to get used to but once you understand how it works I personally think it is much better. I especially like the grouping function. Makes me rules much neater. 60+ rules gets a little hairy navigating through sometimes.
My main gripes are: 1) Speed of webmin from remote sites, adminning locally is quite fast over LAN but from remote it's pretty damn slow. (Over a 512/128 ADSL).
2) The floating menu. You have to be too careful where you click, not as big an issue as 1) tho.
I like the functionality of 5 webmin a lot.
The post asking for colour coded ACCEPT/DROP is a damn good idea.
Having just spent two days demonstrating the interface at CeBIT, I have to say it works really well. Things are very easy to find (except I lost portscanning). My main conerns for the interface are:
* speed, particularly of large pages such as snort rules. This is even more of an issue when turning lots of rules on or off. Each one causes a reload. * HTTP proxy. The interface for profiles and content filtering is not intuitive. In particular a whole substription option virus scanning for HTTP is hidden in a tiny button labelled VP. But also the relationship between profiles and rules is not clear. * floating menus. They can be difficult to click, but it is nice how they save one mouse click and one page reload. Perhaps both options could be available and the "pin" option still there as an option.
Also, Tom, we've done a bit of XML-RPC programming ourselves (for database replication between systems). Do you think the DTD (or the XMl-RPC equivalent of the DTD) would be avaliable from Astaro at some time? Could we have the availity to hook in external configuration systems? This could be a very interesting application.
