What are the factors that need to be considered to calculate the required throughput of the perimeter firewall?
One thing to look at is the throughput. This can be determined with a packet sniffer like Wireshark. First, you will want to span a port on the switch that is connected to the firewall so that you can capture the same traffic the firewall is processing. Next, open Wireshark and start a capture. Set up a capture filter to look at only the firewall's MAC address. Let the capture run for as long as possible to get a good baseline. Once the capture finishes, place the relative time column next to the cumulative bytes column, and mark the first packet of data capture. Divide this by the number of seconds from the cumulative bytes at end of capture. This equation will calculate perimeter firewall throughput.
Dig Deeper on Network management and monitoring
Related Q&A from Michael Gregg
Enterprise security expert, Michael Gregg answers a question regarding port 3389 issues when a user tries to open port 3389 RDP on their router to ... Continue Reading
Security expert Michael Gregg discusses the disadvantages to a layered approach to enterprise security. Continue Reading
Security expert Michael Gregg fields a question about unknown network cards gaining access to a user's network. Continue Reading