Symantec 1U VelociRaptor Firewall
-
I got my hands on a couple of VelociRaptor firewall's. I was wondering if anyone had tried to put PF sense or M0n0Wall on this box. I wll post pictues and as much detail as possible later tonight.
RC -
Ok, here is what I got my hands on.
1U VelociRaptor 700
128 MB of RAM
1 socket 7 processor -
1 - PCI slot - currently has a dual 100 port ehternet adapter in it
ide connection to a 20 gb hard drive
Connection to a front mounted lcd panel
No visable keyboard and mouse connectionI have pictures taken and will post later tonight.
-
The memory is on the low side, but within spec. The mention of Socket7 means it (should be) basically compatible, though the network card may not be. The lack of keyboard/mouse (and presumably VGA) means you'll have to use the embedded image over a serial console.
-
thanks. i build a image and see if it will fireup tonight. I let everyone know. What is the smallest HD that you can use? I have a 30 GB drive and I also have a 64 CF to IDE HD converter. I was wondering if I could use the CF drive.
RC -
See the page titled "Minimum requirements" from the pfsense.com homepage ;)
-
I have tried the m0n0wall and trhe pfsense embedded image and get the following results in my terminal screen:
ÎB†O¥BBPOù_SQS¼ÏgóEk"cöw¡ÿç‡
ç'÷ÇÖÂgÆo…kä×Ç_BBcä§g¥çÇzû—ÍCîOïdó
¥ÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþÿÿþþ
ÿÿþþÿÎI am researching the terminal type I should be using with the symantec system. I am still scratching my head on this one.
RC -
Could be a mis-match with the serial port settings.
-
The VR 500, 700 and 1000 are Cobalt raq3i and 4i's respectively. The latest flashrom (These units have no bios) which has to be flashed in, can handle linux and netbsd only and I'm sure the latter has to have a different filesystem than the default bsd. I made a custom version of IPCop that has the Cobalt drivers in it and I am using the 1MB ext3 rom image, not the xfs version. We can run even the latest Linux 2.6 kernels on these if need be when IPCop 2.0 is getting closer to being usable, as I and others have been successful in patching the cobalt drivers in. They are great units that draw about 40 watts when up and running as a firewall though and can be jumpered up to a 5.5 multiplier and whatever core voltage is needed with a soldering iron of course.
-
I had just began wondering about the possibility of loading up Pfsense onto a Velociraptor myself.. Im using a okia IP330 right now with great results..however I'd love to have a bit faster box and more interfaces.
Tell me fastcon68.. have you had any additional luck with yours?
Can you post up or link to some pics of the units.. outside, inside, etc..?
What about the Symantec (Axent) Raptor OS?..does anyone have any experience with it?
-
Davesworld, lets get some documentation and a file on how to get the kernal on there. That would be a step in the right direction. I would love to get that working.
Allanon,
I will post pictures on my web site tonight. I got them taken. I just need to get them posted.Provided we can get a kernal running on it, what is the next logial step in making this hardware run PF-Sense. I have 4 interfaces(2 on-board/Intel dual port server nic) and and going to put as much ram in the box as possible.
Will it handle 4 to 6 vpn ipsec vpn tunnels? I need a 1U box so that I can get my server back so I can run some 64 bit applications.
RC -
Work has been killer. I try to get the pictures online tomorrow night. too much going on.
-
I just got the pictures posted. The http address to see them is as follows:
http://www.cartersweb.net/raptor/default.htmLet me know if the link works.
RC -
I had just began wondering about the possibility of loading up Pfsense onto a Velociraptor myself.. Im using a okia IP330 right now with great results..however I'd love to have a bit faster box and more interfaces.
Tell me fastcon68.. have you had any additional luck with yours?
Can you post up or link to some pics of the units.. outside, inside, etc..?
What about the Symantec (Axent) Raptor OS?..does anyone have any experience with it?
Yes, I have two Raptor 500's that are basically the same gen III platform. I got hold of some K6-III 1.8v core 500mhz processors with 256KB cache. If you are good with soldering, you can clock these at 5.5 multiplier and lower the core down to 1.8 or much lower if such a processor exists and higher as well. The VR 500's were clocked at 300 but actually came with a 400mhz processor. The 3i and 4i are the exact same hardware, just clocked differently. My low voltage 500's run cool at 550 and have gone a week thus far with no trouble. I don't use the jumper wire in the processor socket trick, too kludgy for my tastes. As far as the os, the Raptor used an old 2.2 Linux kernel and I saved an image of one of them before I wiped the 20GB drive and have studied it somewhat. Nothing unusual here, perl to run the lcd display and front buttons. I feel that these gen III units make a much better gateway appliance than a server since they are limited to two non lba48 drives at ata33, not a screaming server! I use VMWare to install my version of IPCop to VMWare, I then use Winimage to transfer that to hard drive. Winimage handles dynamically expanding virtual disks to physical hard drives just fine. I use a usb to ide adapter to do it so I can slave a drive in with no host machine shutdown needed.
BTW, the Velociraptor 500, 700, 1000 and I believe the 1100 as well, are all Gen III Cobalts with different clock speeds with the price at that time going up exponentially with the clock speed and number of users they were rated at.
We started an IPCop project which is very humble at this point at raqcop.com. It is not for the masses yet but one day we'll have a similar install cd as the original Cobalt machines had where you boot up from a cd and set the rom in the cobalt. For now, it gets installed by imaging with winimage or using VMWare yourself and the lcd just displays the hostname and lan ip. Brian, who hosts the site and offers the web space and domain name, is working the perl to get full front panel functionality. We will glady accept any help as well.
Hopefully, pfsense will be an option if future flash roms support other forms of bsd besides netbsd.
-
Dave, I going to build out your build on my unit tonight. I let you know how it works.
RC