After trying the Astaro, I think it is a very nice product. I have the following suggestions:
1) Add support for the command hdparm to tune the performance of the IDE harddisk. This is specially important for squid. I have tried it on my machine with Astaro installed on a P166 with 64MB RAM and a 2GB Quantum DMA66 HDD. Here is some test result:
-c0 -d0 gives -t test of 2.70MB/sec
-c1 -d0 gives -t test of 3.91MB/sec
-c0 -d1 gives -t test of 5.33MB/sec
-c1 -d1 gives -t test of 5.71MB/sec
The performance increased by two times. Of course, for some hardware combination, setting c1 and d1 can hang the machine. Setting c to 1 (32bits transfer) is OK for most pentium generation PC as they all run 32 bits anyway. However, setting the d to 1 many cause some problem with old VIA chipsets. In general, Intel FX, VX, HX and 440BX and GX will have no problem setting c and d to 1. I have not tried it on motherboards with new VIA chipsets. I think it may be a good idea to have a GUI for the user to test the performance and choose for themself.
2) Is it possible to add a few more application proxy with good authentication for the product. I have tried the T.Rex firewall. They have a few proxies for ftp, telnet, real media (PNA), inbound application proxy with load balancing and connection authenication, etc. Also, their user authenication is very good (based on cryptocard or SNK). However, they lack statefull packet filtering and a good GUI that Astrao has. I am trying to integrate T.Rex with Astaro which I hope can give a even better firewall.
3) Allow user defined partition size. This helps for letting users to adjust the maximum cache size of squid and some other log files.
4) Support for some WAN cards can help users to save money by eliminating the need for an router which will make the Astaro more cost effective.
Thanks for bringing this wonderful product to the table.
Regards
This thread was automatically locked due to age.
