micro-firewalls

Contributed by jose on 2002-10-26 from the small-is-beautiful dept.

"Haven't seen this here, but have been offline for some time and search turned up nothing.
This looks pretty neat as an alternative to soekris, especially for us europeans, if anyone knows other expandable micro-pc's with multiple network interfaces please post."

"OpenBrick is a very small (180x118x40mm) and light (about 900g) and completely silent open platform which can be used as a micro-server, as a router or as a thin client. It contains a fanless 300 Mhz x86 compatible 300Mhz Geode processor and 128 MB SDRAM.
Default OpenBrick systems contain 128 MB SDRAM and a 32MB compact flash.
Options include :

bigger compact flash (up to 640MB)
2.5" hard disk (from 10GB to 60GB)
PCMCIA card (Ethernet, Wireless LAN)
dual onboard LAN

The OpenBrick E is the "entreprise" version of the OpenBrick, based on the VIA C3/Eden platform to provide more CPU power. It includes 3x RJ45 LAN connectors.
OpenBrick E is a small ( 220 x 165 x 42 mm ) and light (about 1200 g) and completely silent open platform which can be used as a powerful server, as an advanced router or as an active thin client. It contains a fanless 533 Mhz x86 compatible VIA C3 processor and 256 MB SDRAM. "
http://www.openbrick.org/
http://www.camne.net/obrick.txt (dmesg for obsd 3.1)"

This is actually quite tempting to replace my large, clunky, and slow firewall I use at home.

(Comments are closed)

Comments

By Anonymous Coward () on 2002-10-26 05:46

I wish I could see something like this already in Canada (Calgary, AB). Might cost a fortune with exchange, duties, shipping, taxes, etc.
By Anonymous Coward () on 2002-10-26 06:32

Take a look at Mynix Technologies they are in Canada; Montreal, Ottawa, and Toronto. They sell mini pc(s) and IPC
Comments
1. By Anonymous Coward () on 2002-10-26 18:35
  
  kewl! Do they sell the cases too, or show how the small cases look like?
2. By Anonymous Coward () on 2002-11-01 16:51
  
  www.tri-m.com is based out of BC. They like to push their PC104+ stuff, but they carry a lot of other vendors as well.
By zil0g () on 2002-10-26 14:16

533MHz C3 "a powerful server", oh please...
I'd choose my 400MHz k6-II anyday.
Comments
1. By Matt Ostiguy () mostiguy####netnumina.com on 2002-10-26 17:01 mailto:mostiguy####netnumina.com
  
  The point of the c3 is power and heat. I can't find accurate figures for the 533mhz c3, but the 733mhz c3 max uses 11.6 watts. A 733mhz Celeron max uses 19.1 watts.
  
  A 400mhz *mobile* k6-2 can consume max 16-17W. A desktop one maxs at 22.7W.
2. By He who cannot be named () on 2002-10-27 16:02
  
  There wasn't much info in this web site. What I could glean from the specs of their little boards is that they still take ATX power supplies to make them go.
  
  From living with a router in my living room, it's the power supply that makes most of the noiss (that, and the noisy, but dependable, WD hard drive).
  
  The Transmeta board looked very cool, but it is not ready to go out of the box. For example, many of the boards only had pin headers for RJ-45, keyboard & mouse, and USB connectivity. I don't even know where one would get these connectors with the right pin sockets. I'd rather they were on-board.
  
  Having dual LAN at all is a definite plus, though. This leave the PCI slot open for something else. I'm not sure what I'd use the PCMCIA card for.
  
  I wonder if one could salvage a power supply from an old laptop to use? Of course, there are always the quiet PSUs from PC Power and Cooling.
  Comments
  1. By zil0g () on 2002-10-27 17:02
    
    about the sound; if you're not worried about breaking insurance and warranties - mod the PSU ;)
    I didn't have any suitable resistor at home at the time I "sent my fw to sleep" so I just used 3 standard 1N4148 diodes in series, gave me like 12-0.6*3 or some 10 volts to the fan, it's quiet now :)
    
    except when that biatch seagate logs a nmap -T5 ...
By Justin () on 2002-10-26 14:53

Also check out . They seem to having technical difficulties so here is the Google Cache .
Comments
1. By rlotz () on 2002-10-26 17:03 http://cat5fetish.net/
  
  emBSD is dead, it hasn't been worked on in at least a year. Check out http://www.microbsd.com/ instead.
2. By Anonymous Coward () on 2002-10-26 18:35
  
  emBSD uses soekris boards. www.soekris.com
By deekayen () on 2002-10-26 18:10 http://openbsddiary.org/

Cappuccino PC s have been talked about on misc@.
By rlotz () on 2002-10-26 20:09

Check out http://www.miniitx.com/ for another small formfactor alternative. IIRC you can get a system with board, proc, memory and case for around $300. They come with a standard PCI socket and some cases have room for a 3.5" HDD.
Comments
1. By Fuper () futurist@directvinternet.com on 2002-10-29 03:19 mailto:futurist@directvinternet.com
  
  I chose the mini-itx to use as my firewall. I'm happy with that decision, and very happy with OpenBSD's support for it. The system is:
  iBox with 800 MHz VIA C3 cpu and thin cd-rom
  (www.idot.com)
  512MB Crucial SDRAM
  60G Seagate Barracuda IV IDE drive
  SMC Dual port ethernet nic
  Total cost was $365, not incl the hard drive, giving me a small filtering router / web server with three ethernet ports --- that fits in a briefcase, draws 20 watts and can run off a 12-volt battery!
  The Oct 2nd snapshot of OpenBSD 3.2 installed without a hitch from my home-made cdrom (using floppy32.fs, cdrom32.fs crashed) and recognized all hardware. It now remains to learn enough BSD stuff to get the third ethernet port configured and pf running.
By Anonymous Coward () on 2002-10-26 20:43

Have also a look at http://www.apsis.ch/asd2v.html. Same price range, National Semi @ 300MHz, Compact Flash, pre-installed stock OpenBSD. Can be used as (filtering) bridge or full firewall/NAT + IPSec. No moving parts, fast, secure.
By Art () art@openbsd.org on 2002-10-26 22:56 mailto:art@openbsd.org

When will people learn that CF is just more trouble than it's worth? Harddrives are cheaper, have more space and are more stable.
Comments
1. By Anonymous Coward () on 2002-10-27 02:18
  
  Harddrives are cheaper, have more space and are more stable
  and make noise, take more power, arent as durable to shock.
  i havent noticed any stability issues w/ my cf devices.
  Comments
  1. By art () art@openbsd.org on 2002-10-28 00:56 mailto:art@openbsd.org
    
    Shock only matters in your mp3 player or if you expect your servers to survive an earthquake. More power is just mariginal. If you want low power consumption, start by changing the cpu. And there are some really good disks out there with very low noise levels (of course you loose performance on low noise, but that's nothing compared to the performance you loose with CF).
2. By Fred () on 2002-10-27 11:20
  
  Exactly what troubles do you have with CF? Detail it out, please.
  Comments
  1. By art () art@openbsd.org on 2002-10-27 13:00 mailto:art@openbsd.org
    
    In my last job I was (among other things) responsible for the filesystem layout and filesystem handling on the routers we were making. We had constant trouble with our CF devices that were corrupting data, losing data if not powered down correctly (correctly means: "perform magic, wait, more magic, wait, more magic, wait, wait, wait, some more magic, wait and pray"). This didn't happen that often, but when you're making hundereds of machines and reboot them often in the lab, it gets visible after a while.
    
    CF are simply not reliable. We tried many different manufacturers, some had more trouble (Sandisk were the worst), some had less (Kingston was the best), but all of them gave us problems sooner or later.
3. By Anonymous Coward () on 2002-10-27 16:07
  
  ....and contain movable parts. See if one of your hard drives will last an Illinois summer and winter inside an outdoor box.
By f () on 2002-10-27 00:11 http://www.blackant.net/

this article on /. covers the openbrick, and this is my post covering some alternatives.
By Will () on 2002-10-27 02:41

How many of these have supported sound in OpenBSD?

Not that it's super important, but I was looking for one of these type boxes for an auto-pc...

-Will
By anoymous howard () yes@ivegotone.com on 2002-10-28 00:07 mailto:yes@ivegotone.com

http://linitx.com/products/light/
By djm () on 2002-10-28 00:12

Avoid them - they are slow and unstable

Latest Articles

Thu, Apr 18
- 05:05 Coming soon to a -current system near you: parallel raw IP input (0)
Wed, Apr 17
- 05:33 In -current, default write format for tar(1) changed to "pax" (10)
Wed, Apr 10
- 18:50 OpenSMTPD 7.5.0p0 Released (2)
Tue, Apr 09
- 04:49 20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09) (13)
Fri, Apr 05
- 06:16 OpenBSD 7.5 released (3)
Thu, Mar 28
- 18:18 LibreSSL 3.8.4 and 3.9.1 released (0)
Tue, Mar 12
- 06:53 OpenSSH 9.7/9.7p1 released! (0)
Mon, Mar 11
- 11:28 Game of Trees 0.97 released (0)
Sun, Mar 10
- 09:06 LibreSSL versions 3.8.3 and 3.9.0 released (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]