Submission + - High Performance Linux Firewalling 1
LinuxOps writes: I have an opportunity to introduce Linux to a large client which is currently a 100% MS shop. They are upgrading their internet link to a whopping 10Gb (yes, _ten_gigabit_ to the internet) and are looking for a high performance firewall solution. They know it's going to be a major task but projected bandwidth requirement to support their multiple worldwide sites means any slower link is not enough. Obviously it needs firewalled but the firewall needs to be fast enough not to become the bottleneck and, effectively, reduce the link throughput to unacceptable levels. I've built firewalls on links up to 1Gb but this is an order of magnitude greater and I wanted to throw it open to the /. crowd to make suggestions for how I could use this as an opportunity to show Linux performing ahead of all the other options. This 100% MS shop is looking to how this performs to make OS decisions for their future strategy, so there is a lot riding on this. What recommendations do you have to get a 10Gb firewall running at maximum throughput on Linux ? Hardware, Intel/AMD, distro etc. ? What about making it HA ?