[nsp] Network Firewall

Lawrence Wong lawrencewong72 at yahoo.com
Tue Jun 22 08:04:29 EDT 2004 

Cool! Will try to read up more about this.

Thanks so much for your time and invaluable advice!

--- "Tantsura, Jeff" <jeff.tantsura at capgemini.com>
wrote:
> 
> Yes.
> 
> It's possible to use cflowd(netflow) and
> zebra(routing) + some homemade
> scripts on Linux.
> 
> Jeff
> 
> -----Original Message-----
> From: Lawrence Wong
> [mailto:lawrencewong72 at yahoo.com]
> Sent: Tuesday, June 22, 2004 1:52 PM
> To: Tantsura, Jeff; Goldberg Alain (IT); Lajber
> Zoltan
> Cc: cisco-nsp at puck.nether.net
> Subject: RE: [nsp] Network Firewall
> 
> Ah.... netflow statistics and analysis with BGP. I
> guess it won't be
> long before someone comes out with an open source
> version that does the
> same thing.
> Similar to the netflow-tools package. :p
> 
> --- "Tantsura, Jeff" <jeff.tantsura at capgemini.com>
> wrote:
> >
> > No, not really.
> > It's more suitable for a SP or big enterprise, it
> uses netflow for
> > statistics/analyses and then BGP and/or MPLS for
> rerouting.
> >
> > Jeff
> >
> > -----Original Message-----
> > From: cisco-nsp-bounces at puck.nether.net
> > [mailto:cisco-nsp-bounces at puck.nether.net] On
> Behalf Of Lawrence Wong
> > Sent: Tuesday, June 22, 2004 1:23 PM
> > To: Goldberg Alain (IT); Lajber Zoltan
> > Cc: cisco-nsp at puck.nether.net
> > Subject: RE: [nsp] Network Firewall
> >
> > But it looks kinda costly. Might not be suitable
> for small scale
> > implementations?
> >
> > --- "Goldberg Alain (IT)" <alain at towersemi.com>
> > wrote:
> > >
> > > If the issue is to stand against floods ....
> Look
> > at
> > > http://www.riverhead.com (It's Cisco).
> > >
> > >
> > >
> >
>
________________________________________________________________________
> > >
> >
>
________________________________________________________________________
> > > _________________
> > > Alain Goldberg - Network manager - CCDA/CCNA
> > AGG-RIPE - Tower
> > > Semiconductors LTD.    Tel : 972-4-6506003 Fax :
> > > 972-4-6547788 Cell:
> > > 972-64-209662
> > >
> >
>
________________________________________________________________________
> > >
> >
>
________________________________________________________________________
> > > _________________
> > >
> > >
> > >
> > > -----Original Message-----
> > > From: Lajber Zoltan [mailto:lajbi at lajli.gau.hu]
> > > Sent: Thursday, June 17, 2004 11:18 PM
> > > To: Lawrence Wong
> > > Cc: cisco-nsp at puck.nether.net
> > > Subject: Re: [nsp] Network Firewall
> > >
> > > On Thu, 17 Jun 2004, Lawrence Wong wrote:
> > >
> > > > Hi Miguel,
> > > >
> > > > Any idea how well Linux+Netfilter would stand
> up
> > > against TCP/UDP/ICMP
> > > > floods?
> > >
> > > A good pc, like ibm xseries x330 can stand up to
> > 250 kpps with kernel
> > > 2.4x, and 350kpps with 2.6.
> > >
> > > Bye,
> > >
> >
>
-=Lajbi=----------------------------------------------------------------
> > >  LAJBER Zoltan               Szent Istvan
> Egyetem,
> > > Informatika Hivatal
> > >       engineer: a mechanism for converting
> > caffeine into designs.
> > >
> > > _______________________________________________
> > > cisco-nsp mailing list 
> cisco-nsp at puck.nether.net
> > >
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> > > archive at
> > > http://puck.nether.net/pipermail/cisco-nsp/
> > >
> > >
> >
> >
> >
> >
> > 
> > __________________________________
> > Do you Yahoo!?
> > New and Improved Yahoo! Mail - 100MB free storage!
> > http://promotions.yahoo.com/new_mail
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at
> > http://puck.nether.net/pipermail/cisco-nsp/
> >
> >
> >
> >
> > Our name has changed.  Please update your address
> book to the
> > following format:
> > "recipient at capgemini.com".
> >
> > This message contains information that may be
> privileged or
> > confidential and is the property of the Capgemini
> Group. It is
> > intended only for the person to whom it is
> addressed. If you are not
> > the intended recipient,  you are not authorized to
> read, print,
> > retain, copy, disseminate,  distribute, or use
> this message or any
> > part thereof. If you receive this  message in
> error, please notify the
> 
> > sender immediately and delete all  copies of this
> message.
> >
> >
> 
> 
> 
> 
> 	
> __________________________________
> Do you Yahoo!?
> New and Improved Yahoo! Mail - 100MB free storage!
> http://promotions.yahoo.com/new_mail
> 
> 
> 
> 
> Our name has changed.  Please update your address
> book to the following format:
> "recipient at capgemini.com".
> 
> This message contains information that may be
> privileged or confidential and is the property of
> the Capgemini Group. It is intended only for the
> person to whom it is addressed. If you are not the
> intended recipient,  you are not authorized to read,
> print, retain, copy, disseminate,  distribute, or
> use this message or any part thereof. If you receive
> this  message in error, please notify the sender
> immediately and delete all  copies of this message.
> 
> 



		
__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - Send 10MB messages!
http://promotions.yahoo.com/new_mail

More information about the cisco-nsp mailing list