Although the discussion of ipf/iptables capabilities is really cool, really, to toss some fodder to the original question, there are some things that will kill your firewalls performance. We tested running a vpn tunnel, can't remember exactly what, but I think it was ipf and solaris 8's vpn software, on a pair of dual cpu ultra 2's (2x300) and they would become unresponsive when pushing a T1 of traffic over the VPN. I think that's the right threshold, I didn't do the testing though.
We have some 2GHz xeon ibm boxes for our iptables/free s/wan firewalls now and they're way overkill. We didn't test for throughput, but we took it as a given that it would be able to push whatever we could send it... I'm sure you're fine with what you want though, I've seen plenty of slower (than yours) boxes pushing T1's
We have some 2GHz xeon ibm boxes for our iptables/free s/wan firewalls now and they're way overkill. We didn't test for throughput, but we took it as a given that it would be able to push whatever we could send it... I'm sure you're fine with what you want though, I've seen plenty of slower (than yours) boxes pushing T1's
