Firewall throughput measurements: OPNsense on APU4d4, OPNsense in a Proxmox VM, and OpenWRT on Turris Omnia

Getting OPNsense to perform well on a low-powered CPU, e.g. the APU4d4 board, can be tricky. As there are some open questions, this post summarizes some measurements taken in a home lab setup.


[Finished Jan. 2008] Relative spatial positioning

Gibraltar firewall

[Finished/closed] A Linux firewall/UTM distribution with read-only root file system.

Josef Ressel Center u'smile

[Finished Sept. 2017] Research Center for User-friendly Secure Mobile Environments

Using the Austrian 'Buergerkarte' under Linux

Disclaimer This web page is written primarily in English, but uses German words originating from the Austrian law. There seems to be little point in artificially translating these terms when they are special definitions of a law written in German. I have tried to explain the terms when I first use them - if something is unclear, feel free to send me an email. Introduction Since the beginning of 2000, the Austrian government has begun introducing its digital signature scheme in form for the so called “Bürgerkarte".

SSD Linux benchmarking: Comparing filesystems and encryption methods

Introduction After (again) suffering under KMail’s recent sluggishness when dealing with my email spool and general Eclipse slowness when run with many plugins (such as the excellent Android ADT or the still-to-mature Scala plugin), I decided that the best update for my Lenovo Thinkpad X201s laptop would be a solid state disk (SSD). Some preliminary web article research yielded the Crucial C300 256GB as one candidate with near top-level performance and reasonable pricing.

Howto use Aladdin eToken under Linux

Introduction After some work on getting the Austrian Bürgerkarte to work under Linux, I have now decided to acquire some know-how about using more general smart cards under Linux. After some quick research, the Aladdin smart cards seem to be supported fairly well, so I ordered a bunch of different types. This page details how to make them work (my principal systems are running Debian or Ubuntu, but most should be applicable to any Linux distribution).

Howto create a Debian chroot on an Android phone

Howto create a Debian chroot on an Android phone (HTC Desire and Motorola Milestone) This page will grow once I have everything running, but this is a starting point:http://www.android-hilfe.de/anleitungen-fuer-motorola-milestone/26870-ho… [HTC Desire, unbranded, European version]: Flashed (pre-rooted and with busybox included) firmware from http://android.modaco.com/content/htc-desire-desire-modaco-com/315108/04…, taking file 2.09.405.8-update-bravo-stock-rooted-busybox-withradio-signed.zip On a Debian squeeze (amd64, but with i386 it will be similar) box: sudo apt-get install debchroot qemu-user Download qemu-arm-static from http://packages.ubuntu.com/lucid/qemu-arm-static (and its dependency) to get the build-arm-chroot script dd if=/dev/zero of=debian.

Running (K)Ubuntu Linux on a Dell Latitude XT

With Kubuntu Intrepid 8.10, I can delightedly say that installing Linux in form of a Debian variant - my kernel/operating system of choice for most tasks - on a new Dell Latitude XT went flawlessly and got most of its hardware to work out-of-the-box. The remaining adaptations that I did on my system are mentioned here. Note: I couldn’t get Kubuntu Hardy 8.04 in its AMD64 version to install the kernel wouldn’t find its installation CD with the Latitude XT attached to its Mediabase.

Howto auto-mount devices under Linux with hotplug

Here is another small thing to make working with Linux more convenient: auto-mounting of hotplug-able devices. This is again specific to Debian GNU/Linux, but might be applicable to other distributions with only slight changes. Quite a few of the following steps have been taken from Ubuntu - well done folks! The whole auto-mounting described here is based upon hald, a daemon that monitors the system’s hardware. Update: As of 2010, none of this is typically required.

Howto make a USB stick bootable

USB sticks are really useful. Not only for transferring files between computers, but also also rescue media, or more generally, to boot from. However, making a USB stick bootable can turn out to be tricky. This small howto describes the tricks that I discovered over the last years. The following commands assume the necessary package to be installed under Linux. It has been tested with Debian GNU/Linux sid (unstable as of 2006-06-26) with packages mbr (1.

Howto use Debian GNU/Linux on a Gericom Phantom notebook

This is just a quick page describing what works on my notebook under Linux and (sometimes) how I got it working :-) It is no longer up-to-date, but might still be of use to somebody. Since about a year, I now work with an IBM/Lenovo Thinkpad T42p. I would not have been able to set all that up without the help of many other webpages like this one. Therefore I want to give a short summary on the infos I have gathered, especially trimmed for the Gericom Phantom notebook (which is IMHO a very nice one).

Howto use Debian GNU/Linux on a Thinkpad T42p

Howto use Debian GNU/Linux on a Thinkpad T42p Many of the hints on this page have actually been collected from similar pages scattered over the web; the Thinkpad series of notebooks already has strong support for running Linux on them and a wealth of information is available. Thanks to all other web authors who provided their experiences that helped me in setting up my machine as it is now. However, a few bits and pieces in here are mine, so it might be helpful to others if I share them.

Howto use the SpeedTouch 330 ADSL USB modem with kernel 2.4

Using the SpeedTouch 330 ADSL USB modem with kernel 2.4 The SpeedTouch 330 USB ADSL modem is becoming quite popular, because a lot of ISPs now give it to customers for free. Therefore, I felt obliged to include out-of-the-box support for it in Gibraltar. For kernels >= 2.6.10, it has now become very simple to use it under Linux with the new kernel driver. One just needs to obtain the matching firmware file from Alcatel/Thomson, extract the two parts of it (boot code and firmware code), install it in the correct directory (e.

Sampling Pulse-Width-Modulation Codes on the Parallel Port

Introduction For an upcoming research project, I needed to get data streams from simple 2-axis accelerometers. There are usually two types of accelerometers: one type with analog outputs that need an ADC (analog-digitial converter) to sample, and another type with pulse-width modulation outputs. The latter has the advantage that it can be sampled with purely digital inputs like the standard parallel port of current PCs. Thus, the crazy idea of attaching accelerometers directly to the parallel port instead of using a micro controller was born.