 |
 |
Dual-ISP Load balancing firewall?
|
|
|
|
|
Junior Member
Join Date: Jul 2004
Location: Boise, Idaho
Status:
Offline
|
|
Hi All,
I'm hoping for a little help from security-savy gurus out there.
With CableONE Internet's all-day outage 3 days ago, I'm getting ADSL installed in tandem. I'm looking for a load-balancing (both in and out) firewall box.
For me, the quality of the load-balancing is the most important because my OS X is nigh-impregnable.
I'm setting up a dual-ISP setup at home (cable modem and ADSL) and am shopping around a dual-ISP-capable firewall box.
Ideally, I'd like the box to be able to handle:
1) DMZ (at least one zone) because I'll be hooking up a gaming server off of this router
2) Static and Dynamic NAT
3) Load balancing (combining and treating the two ISPs like a single, large data pipe both in and out) for those computers not in the DMZ (that computer is getting a static IP).
4) Web-manageable (not Cisco IOS CLI)
I'm thinking like the Firebox X500 + Fireware Pro or Sonic Wall TZ-170 +SonicOS Upgrade maybe.
I'm open to all ideas; the cheaper, the better.
Thanks,
Curtis
|
|
MBP / 3gig memory / 200gb hard drive / Superdrive
Mac Pro 4x2.66 cores / 8gb memory / ATI 256mb vid / storage---always increasing. :D
|
| |
|
|
|
|
|
|
|
Dedicated MacNNer
Join Date: Sep 2003
Location: Pittsburgh, Pennsylvania
Status:
Offline
|
|
Originally Posted by tastethepain
Hi All,
I'm hoping for a little help from security-savy gurus out there.
With CableONE Internet's all-day outage 3 days ago, I'm getting ADSL installed in tandem. I'm looking for a load-balancing (both in and out) firewall box.
For me, the quality of the load-balancing is the most important because my OS X is nigh-impregnable.
I'm setting up a dual-ISP setup at home (cable modem and ADSL) and am shopping around a dual-ISP-capable firewall box.
Ideally, I'd like the box to be able to handle:
1) DMZ (at least one zone) because I'll be hooking up a gaming server off of this router
2) Static and Dynamic NAT
3) Load balancing (combining and treating the two ISPs like a single, large data pipe both in and out) for those computers not in the DMZ (that computer is getting a static IP).
4) Web-manageable (not Cisco IOS CLI)
I'm thinking like the Firebox X500 + Fireware Pro or Sonic Wall TZ-170 +SonicOS Upgrade maybe.
I'm open to all ideas; the cheaper, the better.
Thanks,
Curtis
How about an old computer running OpenBSD with PF and carp for fail-over? OpenBSD is very secure and is now considered a "Cisco-killer". There are lots of details at http://www.openbsd.org on the FAQ page.
|
|
|
| |
|
|
|
|
|
|
|
Junior Member
Join Date: Jul 2004
Location: Boise, Idaho
Status:
Offline
|
|
That's a pretty good idea, but I don't have an old computer that I want to use in my office.
However, I think this solution would violate my last stipulation which was that I didn't want to have to fiddle around with a CLI.
I will look into that solution, though, for a later point. I'm just not that comfortable with the command line interface.
|
|
MBP / 3gig memory / 200gb hard drive / Superdrive
Mac Pro 4x2.66 cores / 8gb memory / ATI 256mb vid / storage---always increasing. :D
|
| |
|
|
|
|
|
|
|
Junior Member
Join Date: Jul 2004
Location: Boise, Idaho
Status:
Offline
|
|
In the end, I'm going to trying Xincom's DPG-502 dual-wan router. Should be here in a few days.
If anyone can tell me the diference between the DPG-502 and DPG-602, I'd appreciate it. So far, I can just discern a $300 price difference between the two.
Cheers,
Curtis
|
|
MBP / 3gig memory / 200gb hard drive / Superdrive
Mac Pro 4x2.66 cores / 8gb memory / ATI 256mb vid / storage---always increasing. :D
|
| |
|
|
|
|
|
|
|
Senior User
Join Date: Jan 2001
Location: Seattle
Status:
Offline
|
|
I don't know what kind of support the Netgear FVS124G provides for Mac but it's worth a look at $169
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|
Top
