Link to home
Start Free TrialLog in
Avatar of ETXET
ETXET

asked on

Firewall firewall throughput explained calculation

I am planning to replace old firewall, then it comes to firewall throughput, I am not sure whether I get a correct figures, so wanna ask expert here, here is the information

Interface
WAN 1 - 10Mb Broadband
WAN 2 - 2Mb MPLS
DMZ 1 - 100Mb to internal switch
Internal 1 - 100Mb to internal switch
Internal 2 - 100Mb to internal switch
Internal 3 - 100Mb to internal switch
Internal 4 - 100Mb to internal switch
Internal 5 - 100Mb to internal switch

So for traffic in and out, which is
10Mb x 2 + 2Mb x 2 + 600Mb internal x 2
= Total firewall throughput I need is around 1.3Gb say in 64 byte UDP packet.

Am I correct?

Thanks for help.
ASKER CERTIFIED SOLUTION
Avatar of naderz
naderz
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of ETXET
ETXET

ASKER

Thanks, what if the usage as shown below? From there how can I estimate the throughput? I am planning to go for Fortigate FG-100D, their firewall throughput is

Firewall Throughput
(1518/512/64 byte UDP)
2500 / 1000 / 200 Mbps

I am thinking whether my estimation is on the right track.

Thanks

Usage
WAN 1 - 15 x Site to Site VPN, Internet Surfing
WAN 2 - Video Conference
DMZ 1 - "Fileserver, Internet Surfing and Internal Applications"
Internal 1 - Fileserver and Internet Surfing
Internal 2 - Internet Surfing
Internal 3 - Fileserver and Internet Surfing
Internal 4 - Internet Surfing
Internal 5 - Fileserver and Internet Surfing
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of ETXET

ASKER

Honestly I am a bit lost, I will only have the AV and IPS applied on all those interface that need internet surfing, so the 100D have 700Mbps in flowbased and 950Mb on IPS, so should i  assume it is enough since i only have 10Mb for a WAN link?

I think I need to call vendor to ask, but before that just want to ask experts here for more information.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial