tag:blogger.com,1999:blog-4088979.post113837390462862262..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Soekris Dies, What Replacement?Richard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger15125tag:blogger.com,1999:blog-4088979.post-1146537526428709452006-05-01T22:38:00.000-04:002006-05-01T22:38:00.000-04:00I never did buy a replacement for the Soekris. I'...I never did buy a replacement for the Soekris. I'm waiting for their next generation model since I don't have a pressing requirement. I did try a bigger form factor in the Hacom Lex box, documented in this blog.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1146533416350705672006-05-01T21:30:00.000-04:002006-05-01T21:30:00.000-04:00Dunno if you have comments to old threads forward...Dunno if you have comments to old threads forwarded so you hear about them, but...<BR/><BR/>what did you wind up going with?<BR/><BR/>A very windows-centric coworker hacked his Buffalo Technologies Linkstation and runs Debian on it. It was so compellingly cool that he had to do it. He streams his mp3s to his pc at work, among other things.<BR/><BR/>It doesn't fit your specs - only one NIC, for example. Cheap storage, though.JimmytheGeekhttps://www.blogger.com/profile/14515949902737764574noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1141093263613976652006-02-27T21:21:00.000-05:002006-02-27T21:21:00.000-05:00It's not necessary to remove the CF card from the ...It's not necessary to remove the CF card from the WRAP unit. Just use PXE boot (built into the WRAP's BIOS) in conjunction with a DHCP and TFTP server to fresh boot the system. From there you can repartition or 'dd' the CF card with a new image.<BR/><BR/>I order my units from www.yawarra.com.au. Their service is excellent.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138738687838010912006-01-31T15:18:00.000-05:002006-01-31T15:18:00.000-05:00+1 on the WRAP. They're the same speed as a 4801,...+1 on the WRAP. They're the same speed as a 4801, and roughly the same price as a 4501. <BR/><BR/>They aren't as flexible as 4801 (no SFF IDE, so no HD, and no PCI slot), but they're nice solid boards. I have about two dozen in production as firewalls. They're smaller than a Soekris too (think the 4801 board, minus the PCI slot, and that's the size of the entire WRAP case.) But, the WRAP case is very tight, and you have to remove the board (or at least tilt it up) to remove the CF. Maybe not an issue, depending on how much you swap CF cards, but it's a pain when you're messing with something. I usually end up with my test board sitting bare on top of my Mac mini on my test bench. The board is just the right size to sit on top of the mini. <BR/><BR/>I get mine from Netgate.com.<BR/>http://www.netgate.com/product_info.php?products_id=311&osCsid=29b860ceafcc6bec90febcc6f1a9be7b<BR/><BR/>Also available in the US from mini-box.com<BR/>http://www.mini-box.com/s.nl/sc.8/search.wrap/.fChris Buechlerhttps://www.blogger.com/profile/14915136057838042206noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138694190476859342006-01-31T02:56:00.000-05:002006-01-31T02:56:00.000-05:00Hi,We use LEX NEO systems for our consulting servi...Hi,<BR/><BR/>We use LEX NEO systems for our consulting services as well as IDS probes.<BR/>You can get a model with 3 100Mblan cards, or 1Gb lan card, up to 512Mb of ram, laptop HD or Compact Flash, etc...<BR/><BR/>We've installed a Debian GNU/linux OS (testing) on HD (but you can get a small CompactFLash Debian from Hacom I think).<BR/><BR/>You can also contact directly Lex at http://www.lex.com.tw:8080/.<BR/><BR/>These are GREAT computers: no fan, no heat and powerfull. We're running on each (24/7) without any issue:<BR/><BR/>- Snort on two network interfaces for IDS,<BR/>- Fprobe and nfdump for netflow analysis,<BR/>- Snmp for Cacti monitoring,<BR/>- Remote X display on a Windows Workstation with XLive-CD in order to run Ethereal, Drifnet, etc...<BR/>- on demand for in-depth analysis: tcpdump, tcptrack, tcpxtract, ngrep, assniffer, potion...<BR/><BR/>Sometimes we're running a lot of tools at the same time, increasing load up to 8, but system is still reactive ;-)<BR/><BR/>You can contact me if you want more information (we currently bye these full-equipped systems in for about 500€) at: Mordread.Wallas@gmail.com<BR/><BR/>@+Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138642654504610642006-01-30T12:37:00.000-05:002006-01-30T12:37:00.000-05:00Cool -- I just emailed Sean Comeau asking him wher...Cool -- I just emailed Sean Comeau asking him where he bought his.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138636686409750802006-01-30T10:58:00.000-05:002006-01-30T10:58:00.000-05:00I saw this device mentioned in an online OpenBSD p...I saw this device mentioned in an online OpenBSD presentation, but I haven't yet found a US distributor: http://www.commell-sys.com/Product/IPC/EMB-564.htm<BR/><BR/>I believe the device meets your requirements, but note only one of the four NICs is GbE.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138424961224405962006-01-28T00:09:00.000-05:002006-01-28T00:09:00.000-05:00I like via boards. I used 2 pd10000 boards side-by...I like via boards. I used 2 pd10000 boards side-by-side in a 1u case for a failover firewall. I used CF but it can take a HD. It looks like via has a new board (vt-310dp) out now with 3 nics (one is gig) that I'm sure would fit into a small, soekris style case. I actually bought the above rackmount from caseoutlet.com. It looks like they stock a lot of different cases.<BR/><BR/>http://caseoutlet.com/via-mb.html<BR/><BR/>--<BR/>michaelAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138392775886593192006-01-27T15:12:00.000-05:002006-01-27T15:12:00.000-05:00We initially bought directly from the manufacturer...We initially bought directly from the manufacturer in single unit quantities, 'cause our company is headquartered in Switzerland and PC Engines was kinda down the street from one our security gurus. Now, we buy in 100 unit lots from the manufacturer.<BR/><BR/>SteveAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138391506893292892006-01-27T14:51:00.000-05:002006-01-27T14:51:00.000-05:00Monitoring low bandwidth links.Monitoring low bandwidth links.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138391092980971892006-01-27T14:44:00.000-05:002006-01-27T14:44:00.000-05:00What do you use such a device for?What do you use such a device for?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138386404867077702006-01-27T13:26:00.000-05:002006-01-27T13:26:00.000-05:00Hi Steve,From whom did you buy the WRAP?Hi Steve,<BR/><BR/>From whom did you buy the WRAP?Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138386161276428952006-01-27T13:22:00.000-05:002006-01-27T13:22:00.000-05:00My company has put customized software on top of t...My company has put customized software on top of this PC Engines hardware (http://www.pcengines.ch/wrap.htm). At home, I've been personally running M0n0wall (http://www.m0n0.ch/wall/ - FreeBSD-based firewall/VPN/Captive Portal) on the WRAP as my SOHO firewall for over a year with no problems.<BR/><BR/>Y # Very small and flat -- ideally something that would fit in a consultant's brief case for carrying on a plane, along with a laptop.<BR/><BR/>Y (only 100Mb though) # 3 NICs, preferably one or more with Gigabit capability<BR/><BR/>Y (only flash) # Can use flash or a laptop HDD<BR/><BR/>? (Runs 4.x and 5.x) # Runs FreeBSD 6.x<BR/><BR/>N # Video and keyboard outputs are not required, but I'm starting to like that option<BR/><BR/>Y (64 or 128) # At least 128 MB RAM, preferably 256 MB or more<BR/><BR/><BR/>Steve Lodin (steven.lodin @ Google's mail service)Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138385432617713732006-01-27T13:10:00.000-05:002006-01-27T13:10:00.000-05:00Hi Tyler,I have two Shuttles. This is the newest....Hi Tyler,<BR/><BR/>I have two Shuttles. <A HREF="http://taosecurity.blogspot.com/2005/08/freebsd-on-shuttle-sb81p-i-bought-new.html" REL="nofollow">This</A> is the newest.<BR/><BR/>The Shuttle is far too big to meet my expectations. Although I do carry it on a plane with me, I want a box small enough to fit in my consulting case.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1138384497393901872006-01-27T12:54:00.000-05:002006-01-27T12:54:00.000-05:00Have you looked at Shuttle XPC systems? You may b...Have you looked at <A HREF="http://us.shuttle.com" REL="nofollow">Shuttle XPC</A> systems? You may be doing a little more buying individual parts, depending on what you get, but it may be what you want.Anonymousnoreply@blogger.com