Quote:
Originally Posted by spitfire_ak
Given the NSA's current press to exploit ALL possible security holes, and unlimited funding to do so, one ought to consider what can/should be done about these issues.
|
Design your hardware and OS from ground up with security in mind. I doubt that anybody except few nation states can effort to do this but for people who are interested in the topic should try to get their hand on anything by RAND corporation written about the topic.
@OP
I just noticed your post. You are just throwing your money because as someone observer OpenBSD PF can't take advantage of multi core. I would also like to add that multi core benefits are debatable as OpenBSD PF is circa 4 times faster than FreeBSD PF version optimized for multi core as Henning Brouer explained in this thread
http://marc.info/?l=openbsd-misc&m=140481161526390&w=2
It is also interesting to note that PF probably has no future at least on FreeBSD (finally an interesting thread on questions@freebsd)
http://lists.freebsd.org/pipermail/f...ly/007391.html
which was clear to many of us who flee FreeBSD long time ago.
As of hardware recommendation I have great experience with the one I listed in this thread
http://marc.info/?l=openbsd-misc&m=139139524604521&w=2
If your network is 10 gigabyte capable I would invest in the really high end network card.