School of Ocean and Earth Science and Technology
Univ. of Hawaii at Manoa

InfoWorld Shootout Information (Creative Commons Attribution)

This information is changing rapidly, it is advised to check back often for adjustments to the test plan and testing infrastructure.  It is also highly suggested that you email contact information to Brian Chee <chee@hawaii.edu>.

There will be other rounds of testing in the future, this test methodology is designed to be scaled both up and down. Updates on future rounds of testing will be posted here.

August 2008: Distributed Enterprise Firewall Shootout

First round of firewall (WatchGuard, Astaro, SonicWall and Zyxel) now published

Test invitation letter as of August 8, 2008 (PDF)

Mu Dynamics test plan as of July 16, 2008 (PDF)

Mu Dynamics XML templates for the non-PVA portions (as of 8-8-2008)

Ixia test plan as of July 16, 2008 (PDF)

Diagrams for VPN setup that should help clarify things

These diagrams are only for context and concept...the addresses dont' match but should help on terminology

 

oops...for the WAN I used 10.20.0.0/16 which is an overlapping subnet. My bad. Instead let's use 128.171.0.0/16 for the WAN subnet to make it clear. Sorry folks...

*NOTE: it is NOT specifically spelled out in the test plan, but let's terminate the VPN's on the LAN 8-6-2008

*IMPORTANT NOTE: At this moment the Ixia IXLoad/IxVPN can ONLY be an IPSec Initiator, so you MUST make sure your configs for the VPN's are responder ONLY.

Firewall Rules can be subject to debate and can be discussed if you have a different philosophy, however this is a starting point:

  1. LAN to WAN should be allow all and NAT
  2. DMZ to WAN could be all, but we’re going to have HTTP, SMTP, POP, IMAP, SSH, SSL minimum.
  3. LAN to DMZ could be all, but also could be same as above but add FTP
  4. WAN to DMZ should be like #2

 

 

Don't forget to get me your dates if you're coming to the lab...parking is a royal pain and if you don't have a parking pass you'll be turned away at the gate. This is a commuter campus and you'll be fighting with 37,000 students for roughly 12,000 parking spots. Get hold of me now now now so that I can get that memo done for you.

Editorial Contacts:

Doug Dineley doug_dineley@infoworld.com
Executive Editor, Reviews
InfoWorld
415-978-3258

Curtis Franklin curtis_franklin@infoworld.com
Senior Analyst, InfoWorld Test Center
352.331.1311
AIM: curtf2001

Brian Chee brian_chee@infoworld.com
Senior Contributing Editor
InfoWorld
808-956-5797

AIM: advnetlab

Skype: advnetlab

 

Shipping information for Hawaii Lab:


University of Hawaii at Manoa SOEST
Attn: Brian Chee
Advanced Network Computing Laboratory
2525 Correa Road, HIG 500

Honolulu, HI 96822
Tel: 808-956-5797, Fax: 877-284-1934 (Venali eFax)

How to get to the lab:

Parking is a total hassle on campus...please please please give me your arrival and departure dates so that I can cut a memo asking that a parking permit be issued for the duration of your stay. While it's only $3.00/day, the visitor lots fill up early and if you don't have a permit you end up searching several miles away for parking.
Click here for parking information:

Tourist Stuff:
Excel spreadsheet of cool stuff to see and do while here
PDF of cool stuff to see and do while here

Hotel suggestions:
due the close proximity to the lab, and preferential rates,
we recomend the New Otani Kaimana Beach Hotel...

mention "InfoWorld discount"....

Click here for Live Webcam!


hosted at the University of Hawai'i Manoa Campus
School of Ocean and Earth Sciences and Technology (SOEST)
Advanced Network Computing Laboratory
2525 Correa Road, HIG 500
Honolulu, HI  96822