FAQ
eRacks Frequently Asked Questions
Ordering Questions
How can I make a special request?
How long will my order take to arrive?
What shipping carriers and methods do you use?
What are the usual reliability-test procedures?
Network Design and Firewall Questions
How do I do web-based administration on my eRacks system?
How do I collect usage statistics on my eRacks web server?
How should the network be designed in order to tolerate a firewall failure?
What does NAT stand for?
In the eRacks/NAT Firewall, Is NAT used for incoming or outgoing traffic?
How does a VPN work? Why do I need a matched pair and where should they be?
Will the eRacks/VPN work with a Windows VPN client, such as a PGP client?
Can we order just one eRacks/VPN, rather than a peer VPN configuration?
Can eRacks help us out with some network design consulting?
System Design Questions
How much memory do I need for firewall and web systems?
Is it enough to use software RAID or should I add a RAID card to my system?
Can I upgrade the memory/harddrive/other components later on after I purchase my computer?
Hardware Questions
What are the outer dimensions of rackmount servers and how are they mounted in a shelf?
How Many PCI slots are available in your 1U systems?
What about other systems? Other slot types, such as ISA, AGP, etc?
Software Questions
Where can I find out more about the software that eRacks recommends?
Which operating systems are recommended for which purposes?
Will a backup server running Linux be able to see and backup my Windows and other machines?
How does eRacks' software configuration ensure the security of a firewall?
How do I view our Windows machine from OpenBSD eRacks servers and vice versa?
Questions about the eRacks website
What tools were used to build this website?
How can I make a special request?
You may enter a special request for your order in the "Special Request" field when you check out.
You may always also email us with a request, a human will read it and reply.
We ship only fully-insured, via UPS , FedEx , and other well-known carriers.
For international shipments, we can also arrange containers and freight forwarding, contact us for details.
Priority treatment is given to orders with expedited shipping chosen.
Photos and more information is given on the Packaging Description page.
Network Design and Firewall Questions
How do I do web-based administration on my eRacks system?
Most features of our systems can be administered via the web using WebMin which comes preinstalled with most of our systems.
WebMin is easy to use, and works well on most open-source operating systems, including OpenBSD, FreeBSD, and Linuces.
Following are examples of just a few packages supported by WebMin, there are many more:
- Apache
- Samba
- DNS/BIND
- mySQL
We recommend and use Webalizer.
Webalizer shows daily usage statistics summarized by month, and is preinstalled on all our systems which include a web server or application server, including:
or upon request.
- Enable filtering rules (which were pre-set up for firewall replacement) on dns2
- Switch over your domains in the the DNS database on dns1 to point to dns2 instead of the firewall.
For more information, see our network services page or email us at consulting@eracks.com .
When used on outgoing connections from a LAN to the internet, this accomplishes several goals:
1) Allows exposing fewer or no IP addresses on the open internet
2) provides a casual measure of security and privacy by hiding internal IP addresses
3) uses as few as one (possibly scarce) official IP address for an entire internal network.
Note that (2) is not real security, and is no substitute for a full-blown firewall with a well-thought-out set of firewall rules, done by a knowledgable security architect .
NAT is generally used for outgoing traffic only.
There are advantages and disadvantages of both approaches - and your needs may determine which one is best for you. This is a good topic for our Network Review Services .
A matched pair is necessary because the two VPN servers must have their keys configured to allow each other access - they must "know" each other in advance.
Yes, there is a list of compatible VPN clients at:
http://www.openbsd.org/faq/faq13.html#IKEcl
If you'd like to order just one eRacks/VPN, configured and qualified to run with a specific client or list of clients, and don't really need a LAN-to-LAN peer-connected VPN,we will certainly consider your request on a case-by-case basis - please email us with the details of your requirements.
See our Services page for details.
How much memory do I need for firewall and web systems?
Web/database servers will perform better with more memory.
What are the outer dimensions of rackmount servers and how are they mounted in a shelf?
See our rackmount servers info page for further details.
Most of our 1U systems have 1 PCI low-profile slot available. If you require more than one PCI slot in a 1U system, please email us for details or for a quote on a custom system.
Our 2U chassis have either 2 or 3 PCI slots, depending on the model.
We may also integrate an ISA, ACP, or CNR slot into one of our 1U chassis by custom design and special order - email us for details.
Where can I find out more about the software that eRacks recommends?
eRacks maintains an open source links page.
For example, eRacks advisors recommend OpenBSD for its security and it is the recommended operating system for any server exposed on the Internet.
Operating systems variations in their strengths, Samba support, multiprocessor support, as well as cost and licensing. We'll add more notes here soon; meanwhile please email if you would like specific recommendations from eRacks.
Yes, when Samba or similar client is installed on the backup server
By default, we preinstall OpenBSD, WebMin, OpenSSH, bash, and various other tools to make operation of your firewall simpler and easier. We don't enable FTP, Finger, or any other protocols which would compromise the security of your firewall. The WebMin remote management is accessed via SSH-port remapping. We include an open-source MS Windows SSH client with configuration instructions on how to access WebMin. This avoids opening up the firewall to additional ports such as WebMin's port 10000.
Questions about the eRacks website
What tools were used to build this website?
The eRacks web server uses: Apache , OpenSSL , Zope , and PostgreSQL . It is running on Debian Linux .