Bink
join:2006-05-14
Denver, CO
 ·Qwest.net
| reply to JoelC707
Re: Pix 501, ASA 5505, or something else?
I think you’ll be fine with either Cisco device. Another alternative, if you’re open to it and can tolerate a bit of a learning curve, is to use PC-class hardware and install a customized open source solution like pfSense on it. I personally run OpenBSD at home for this task and it can do IPSec better than many other solutions. |
|
JoelC707
join:2002-07-09
Tucson, AZ
clubs: | I'd thought about that. I've got enough heat generating devices here in the desert and only a swamp cooler to combat them. I'd prefer a smaller device that doesn't put out as much heat. |
|
Bink
join:2006-05-14
Denver, CO | I use an older notebook for this, which puts out little heat and uses little energy, but, you’re right, it still puts out more heat than a tiny PIX, ASA or similar device. |
|
JoelC707
join:2002-07-09
Tucson, AZ
clubs:
| Yeah, that's a good idea. And a laptop has a built in battery backup so that's even better. If I could get my dad's old laptop to turn on again I'd use that actually but alas it won't and I don't have any other laptops to use. Too bad too, because I've actually wanted to play with something like that. I've even thought it using of my my existing machines at the house that has Server 2003 on it as the router/firewall. I know it can do IPSec but I've never had much luck getting it to work right. Nothing like using existing hardware for another purpose (essentially free). |
|
smunro622
join:2006-02-15
Madison Heights, MI | joel
I have used pfsense and packet fence with great results, it ran it on a p3 512 mb memory and dual 100mb nics. it is easy to setup and configure it can be up and running in now time at all. |
|
