Interested in the following information:
Q) Does Astaro work well on dual-core / SMP machines?
Q) Please comment on the below hardware/network setup (discuss if Astaro would support this type of setup)
NO email scanning. NO web filtering.
2 Gig-E network interfaces (one external and one internal)
Multiple public IPs route to the external network interface. (e.g. 200.0.0.50, 200.0.0.51, 200.0.0.52).
Internal interface connected to a GigE switch.
Astaro box acts as firewall / NAT / port forwarding. For example, there would be 3 internal networks:
192.168.1.0/24
10.0.1.0/24 -- for workstations
10.0.2.0/24 -- for L2TP over IPSec users
and we could create the following rules:
TCP 200.0.0.50:122 --> 192.168.1.10:22
TCP 200.0.0.50:443 --> 192.168.1.10:443
TCP 200.0.0.50:123 --> 192.168.1.11:22
TCP 200.0.0.51:443 --> 192.168.1.11:443
TCP 200.0.0.52:443 --> 10.0.1.30:443
As there is only one internal Gig-E interface, Astaro would need to route from one internal network to another through the firewall (applying rules as neccessary).
Thus, perhaps we want to limit traffic from the 10.0.1.0/24 network to the 192.168.1.0/24 network to the TCP service port 22 (but allow unrestricted access for TCP connections from 192.168.1.0/24 to 10.0.1.0/24)
Can Astaro be setup to support this configuration? Anything we should be aware of?
Q) About what type of hardware (CPU / memory / HD) would we need to support the following levels of throughput from WAN-to-LAN (using port-forwarding / NAT / traffic shaping) for the above configuration?
-- for 100Mbits/sec
-- for 200Mbits/sec
-- for 300Mbits/sec
(assuming the WAN link is connected via a high-quality 3COM or Intel Gig-E adapter)
This thread was automatically locked due to age.
