I'm configuring an OpenBSD (version 4.3) as a dedicated firewall. I have 1 gig in RAM and a 4 gig compact flash card. I want to store 31 days worth of logs. "Building Firewalls with OpenBSD and PF, 2nd ed" says that the swap space should be at least 2x the amount of RAM, which would mean 2 gigs for swap space. Some other people say that it's being used as a dedicated firewall and it should never use the swap space, so we should allocate as little swap space as possible.
Which side is right (and why)?