Trendkill
Guest
|
 Posted: Wed Aug 22, 2007 3:39 pm Post subject: Re: PIX 525 (v7) with Gb interfaces |
 |
|
On Aug 22, 12:44 am, Arthur Brain <arthur_bra...@yahoo.co.uk> wrote:
| Quote: | Is there any point?
Any idea what kind of throughput the PIX itself will support if I put
a couple of Gb interfaces in it?
|
Generally speaking, firewalls are governed by sessions and everything
depends on what kind of services you are running on it. This is taken
from Cisco's 525 site:
"The Cisco PIX 525 modular two-rack-unit design supports up to eight
10/100 Fast Ethernet interfaces or three Gigabit Ethernet interfaces,
making it an ideal appliance for businesses that need a resilient,
high-performance, Gigabit Ethernet-ready solution that provides solid
investment protection. It also delivers more than 330 Mbps of firewall
throughput with the capability to handle more than 280,000
simultaneous sessions."
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/ps2118/index.html
So to answer your question, it most likely depends on sessions more
than anything, and the above statement says something about 330 mbps
of firewall throughput which I'm sure is generic or simple
configurations. Since its limited to 3 interfaces, I would not
suspect that it can handle a ton of bandwidth, but it most likely
depends on a bunch of other factors. The organization I work for
recently went to checkpoint on crossbeam hardware due to their
significantly better performance in terms of sessions. While the
hardware was rated the same between the old platform and the new, the
crossbeams gave us significantly better performance in terms of same
sessions with much less processor (<50% versus <80% I believe). |
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Private messages
Log in
