Re: Why choose Kerio instead of ZA?

From: Lamers Goin' Down (CupCheck_at_Staples.Center)
Date: 02/27/04 

Date: Fri, 27 Feb 2004 22:37:24 GMT

X-No-Archive: yes
"Kerodo" <kerodokenny@hotmail.com> wrote in message
news:Mrz%b.16720$aZ3.2290@fed1read04...
> Lamers Goin' Down wrote:
>
> >>Version 4 uses considerably
> >>more RAM and CPU resources, as well as disk space, which while perhaps
> >>not that important, just means that it's bloated.
> >
> > I'm curious what tools you used to measure that?
>
> Just a little utility called CachemanXP. It shows processes running and
> how much RAM they're using as well as CPU %. Kerio 4 looked to be using
> about 11 or 12 megs of RAM compared to about 5 in 2.1.5. CPU % was 1
> with Kerio 2.1.5 and more like 4% with Kerio 4.

Perhaps the 11 or 12 vs 5 was the number of threads used, not megs of RAM. I
used Process Explorer(SysInternals) and PrcView to get info and those are
the # of threads they came up with when I tested. Interesting that both
KerioPF 2 and 4 have the cookies and history "index.dat" files open all the
time. Why would KPF2 have those open? I know KPF4 tries to manage cookies,
but KPF2?

> > I did notice that KPF4 is constantly reading and writing to the network
via
> > inter-process communication (KPF < - > localhost), whereas KPF2 only
does
> > that when you open the Firewall Status window.
>
> Both Kerios also do constant disk i/o. Kerio 2.1.5 is messing with
> PERSFW.EXE doing something or other every second, but I assume that the
> i/o is buffered, so it doesn't matter much anyway. Keriod 4 is also
> doing the same thing with another file. I found this out by running
> FileMonitor. You can get it at http://sysinternals.com/ if you care to
> look and see what I'm talking about. I see no reason why this i/o needs
> to go on, but there must be some reason for it.

Ah yes, I've got FileMon, but I hardly use it. I was using TDIMon to
discover how each version uses the net when you are not using the firewall
admin tool.

> >>I also found the Applications section more annoying than useful. Every
> >>time ANY app runs on the system, Kerio adds it to this section. After a
> >>while you wind up with a lot of useless entries for programs and
> >>installers that you only ran once and will never see again. Who needs
> >>all that clutter in there too?
> >
> > KPF2 has that same feature. Check the "Application's MD5" tab. No big
deal
> > when you can just have it check and clean out obsolete entries.
>
> Well, it's not quite the same thing. KPF2 doesn't add EVERY single app
> that executes to the list like KPF4 does. KPF2 only adds apps that
> connect to the internet. KPF4 adds anything, which to me seems like
> lots of clutter for no good reason. Half the apps it added only ran
> once, like installers and that kind of stuff..

Oh, I see. Well, I turned all those extra modules off now and am relying on
just the packet filter now.

> The last thing I want to see here is my firewall crash.. KPF4 didn't
> crash on me though, on my Win2k machine. Seemed stable enough.

Yes, NT platform is much more stable and can isolate a process if it starts
to crash. It enables you to restart the app without rebooting on most
occasions.

> I have a fairly small ruleset here, so I don't notice any difficulties
> like you do in that respect. Yes, I noticed they released a 4.0.13
> today. They'll probably be releasing many more as well..

I sure hope so, as long as there are bugs. I just don't want KPF to become
as buggy and unstable as ZoneAlarm.

Relevant Pages

  • Re: Opinion wanted
    ... the details including the nature of my own app (which you mischaraterized ... correct the current control (provided that control is invalid but invalid ... causes you to validate controls that have already been ... largely discreditted for good reason and has very little use these days. ...
    (microsoft.public.dotnet.framework.windowsforms)
  • Re: edit & continue
    ... > and just run the app in the dubugger to test it. ... there is little realistic way to perform unit tests, ... > solid reason, "If I encounter a simple mistake I can fix it without ... > practice talk that only seems to apply if you are following a certain ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Tablets? - OT
    ... - the main reason for porting was so idiots could maintain the code ... on a yellow legal pad. ... to find anyone to pay me to play with it. ... and an app that calculated the temperature from cricket chirps. ...
    (microsoft.public.vb.general.discussion)
  • [PATCH] Re: UDP recvmsg blocks after select(), 2.6 bug?
    ... -.IR pselect ... +there is no valid reason for a program to do this. ... +indicates that a file descriptor is ready, this is only a strong hint, ... Reasons why the I/O could block include: ...
    (Linux-Kernel)
  • Re: [PATCH/RFC] A method for clearing out page cache
    ... > app designers very frequently think that the VM gets its act wrong (most ... Any left over cache is wrong, ... coupled jobs. ... reason, perhaps this is such a reason. ...
    (Linux-Kernel)