OpenBSD on ISS-102 single board computer
Latest news
| (Jul 22, 2002) |
Forwarding 34 Mb/s as a bridge.. Still, what is wrong with this board? |
| (Jul 21, 2002) |
The IP forwarding performance of ISS-102 sucks, only
about 26 Mb/s with pf and 32 Mb/s without..
Something to do with the Realtek 8139 chips?
|
| (Jul 16, 2002) |
First boot from CF. See the dmesg from running system. |
1. Hardware
My ISS-102 is a i386-compatible single board computer with
- NS Geode GX1-300 CPU (300 MHz 586-class CPU with MMX set)
- Three Realtek 8139 ethernet chips
- VGA, keyboard and mouse (!)
- 64MB of RAM
- SanDisk SDCFB-64 compact flash card for mass storage
It is enclosed in EB-3800 case that
- fits directly in 5,25 drive bay
- has built-in 2x20 characters LCD display module
It's a very cool board and suitable for router, firewall or VPN gateway.
2. Software
The ISS-102 board is running a stripped down version of
OpenBSD. The kernel supports
- Stateful packet filtering (pf)
- IEEE 802.1Q VLANs
- Ethernet and VLAN bridging
- QoS services (ALTQ)
- IPsec (ESP, AH, IKE)
See the kernel config file and dmesg from running system.
Instead of installing the software directly, I use a development machine
that has enough power for fast kernel and userland compiling and a PCMCIA
slot for compact flash adapter. I follow the 3.1-STABLE on development
machine and basically just copy all the needed userland binaries and the
ISS102 kernel to CF card. To be more specific, I
- Compile the ISS102 kernel
- Edit rc, pf.conf, nat.conf etc. configuration files under /etc
- Copy the kernel, configuration files and userland binaries using flashdist.sh
Chris Cappuccio's work on Soekris net4501 has been a great help.
3. Future work
- Web interface for pf and isakmpd
- mini_httpd is small enough and has SSL and CGI support.
- CGIC can be used to write CGI modules (Yes, apache+perl+php is too bloat..)
- Command line interface (nsh looks very promising)
- Print some diagnostics on the LCD display (or consider a completely new enclosure)
4. Related sites
- Chris Cappuccio's Soekris net4501 page
- www.embsd.org
Last updated Jul 22, 2002
Home