[nsp] Network Firewall

Tantsura, Jeff jeff.tantsura at capgemini.com
Tue Jun 22 07:58:54 EDT 2004 

Yes.

It's possible to use cflowd(netflow) and zebra(routing) + some homemade
scripts on Linux.

Jeff

-----Original Message-----
From: Lawrence Wong [mailto:lawrencewong72 at yahoo.com]
Sent: Tuesday, June 22, 2004 1:52 PM
To: Tantsura, Jeff; Goldberg Alain (IT); Lajber Zoltan
Cc: cisco-nsp at puck.nether.net
Subject: RE: [nsp] Network Firewall

Ah.... netflow statistics and analysis with BGP. I guess it won't be
long before someone comes out with an open source version that does the
same thing.
Similar to the netflow-tools package. :p

--- "Tantsura, Jeff" <jeff.tantsura at capgemini.com>
wrote:
>
> No, not really.
> It's more suitable for a SP or big enterprise, it uses netflow for
> statistics/analyses and then BGP and/or MPLS for rerouting.
>
> Jeff
>
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Lawrence Wong
> Sent: Tuesday, June 22, 2004 1:23 PM
> To: Goldberg Alain (IT); Lajber Zoltan
> Cc: cisco-nsp at puck.nether.net
> Subject: RE: [nsp] Network Firewall
>
> But it looks kinda costly. Might not be suitable for small scale
> implementations?
>
> --- "Goldberg Alain (IT)" <alain at towersemi.com>
> wrote:
> >
> > If the issue is to stand against floods .... Look
> at
> > http://www.riverhead.com (It's Cisco).
> >
> >
> >
>
________________________________________________________________________
> >
>
________________________________________________________________________
> > _________________
> > Alain Goldberg - Network manager - CCDA/CCNA
> AGG-RIPE - Tower
> > Semiconductors LTD.    Tel : 972-4-6506003 Fax :
> > 972-4-6547788 Cell:
> > 972-64-209662
> >
>
________________________________________________________________________
> >
>
________________________________________________________________________
> > _________________
> >
> >
> >
> > -----Original Message-----
> > From: Lajber Zoltan [mailto:lajbi at lajli.gau.hu]
> > Sent: Thursday, June 17, 2004 11:18 PM
> > To: Lawrence Wong
> > Cc: cisco-nsp at puck.nether.net
> > Subject: Re: [nsp] Network Firewall
> >
> > On Thu, 17 Jun 2004, Lawrence Wong wrote:
> >
> > > Hi Miguel,
> > >
> > > Any idea how well Linux+Netfilter would stand up
> > against TCP/UDP/ICMP
> > > floods?
> >
> > A good pc, like ibm xseries x330 can stand up to
> 250 kpps with kernel
> > 2.4x, and 350kpps with 2.6.
> >
> > Bye,
> >
>
-=Lajbi=----------------------------------------------------------------
> >  LAJBER Zoltan               Szent Istvan Egyetem,
> > Informatika Hivatal
> >       engineer: a mechanism for converting
> caffeine into designs.
> >
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at
> > http://puck.nether.net/pipermail/cisco-nsp/
> >
> >
>
>
>
>
> 
> __________________________________
> Do you Yahoo!?
> New and Improved Yahoo! Mail - 100MB free storage!
> http://promotions.yahoo.com/new_mail
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at
> http://puck.nether.net/pipermail/cisco-nsp/
>
>
>
>
> Our name has changed.  Please update your address book to the
> following format:
> "recipient at capgemini.com".
>
> This message contains information that may be privileged or
> confidential and is the property of the Capgemini Group. It is
> intended only for the person to whom it is addressed. If you are not
> the intended recipient,  you are not authorized to read, print,
> retain, copy, disseminate,  distribute, or use this message or any
> part thereof. If you receive this  message in error, please notify the

> sender immediately and delete all  copies of this message.
>
>




	
__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - 100MB free storage!
http://promotions.yahoo.com/new_mail




Our name has changed.  Please update your address book to the following format: "recipient at capgemini.com".

This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient,  you are not authorized to read, print, retain, copy, disseminate,  distribute, or use this message or any part thereof. If you receive this  message in error, please notify the sender immediately and delete all  copies of this message.

More information about the cisco-nsp mailing list