Basically, all I can tell is that MSI dropped the firewire from the K8NGM2-FID and rebadged it. Hopefully the FID won't dissapear as firewire is actually pretty useful in the HTPC crowd where this board does very nicely.
[quote]
Also , NVIDIA offers the only hardware-based firewall solution for a stable image platform, with a unique anti-hacking technology that secures each PC from network intrusion. Hardware-based firewall technology protects PCs at the network layer from most virus, worm, and spyware attacks. Unlike software-based firewall solutions, ActiveArmor cannot be disabled by malicious code.
[/quote]
Isn't this just 'copy/pasted' from nVidia's propaganda?
If a virus is able to disable your firewall, you're screwed already, ActiveArmor or no ActiveArmor.
And as far as I know, it is possible to disable ActiveArmor in software.
The 'active armor' stuff is pure BS. It's been broken on the nforce4 for a long, long time with no official comment from Nvidia. I don't know what type of corporation is going to adopt a platform which corrupts all zip file downloads.
Shame on Anandtech for not calling nvidia out on this.
Going with this comment, remember that nForce 6150/6200 != nForce4. Something else I have to wonder: are those corrupt Zip files occuring for everyone, or just overclockers, or perhaps only on misconfigured systems? I don't know. I use a NAT/Router and don't bother with the NVIDIA Firewall stuff, but I suppose if a virus ever got loose in my home network I might be in for some trouble. Luckily, the only user on my network is me, and I'm pretty sure I know what I'm doing. Most businesses can't make that claim. :)
How will this platform fare in reality? That's a good question. Obviously, it doesn't matter much if NVIDIA provides a "stable" platform if they don't get partners that properly support the initiative. I don't think that will be a problem, as there should be plenty of system integrators looking for some new ways to market/sell AMD platforms. It sounds decent on paper, at least, and they do have some good features
I saw it first hand on a dfi lanparty Ultra. Checksum offloading/active armor would corrupt every zip/archive file downloaded. This was on a fresh build with two identical systems. Since then, I've never turned it back on for any of the systems I've built. It would be nice if a large tech website did an investigation into it to maybe get nvidia to admit the problem was hardware, or fix their drivers. ;)
quote: I saw it first hand on a dfi lanparty Ultra. Checksum offloading/active armor would corrupt every zip/archive file downloaded. This was on a fresh build with two identical systems. Since then, I've never turned it back on for any of the systems I've built. It would be nice if a large tech website did an investigation into it to maybe get nvidia to admit the problem was hardware, or fix their drivers. ;)
We have investigated this issue several times. We can recreate certain data corruption scenarios while utilizing P2P software, streaming multiple downloads, and then trying to decompress these same files concurrently. We were able to solve or greatly minimize these issues through driver changes or software configurations, though eliminating the use of P2P seemed to work best. ;-) NVIDIA has worked extensively with several of our readers who had issues and solved them. At this time we have one reader who is still having issues after working directly with NVIDIA but the communication cylce just started on his issue.
The latest driver sets from NVIDIA have made changes to the way ActiveArmor handles TCP checksumming in their hardware by offloading more to the CPU, which has increased CPU utilization rates but they are still lower than most Gigabit solutions. These changes have certainly cleared the majority of issues noticed by most users we have communicated with over the last month. The other issue we have noticed is in the initial installation of the ActiveArmor firewall software, some program settings are not correct or clearly defined based upon the system configuration, and this is an area that needs improvement from NVIDIA in the installation scripts. The lack of technical information in most user manuals for setting up ActiveArmor is also not acceptable in our opinion.
The next version of ActiveArmor software along with some hardware tweaks in the upcoming nForce 500 chipsets should solve any outstanding issues.
NVIDIA will be sending us a complete Stable Image Platform system shortly and we will put it through its paces while providing a short "How To" article on setting up or correcting issues within the ActiveArmor software suite.
With an announcement of a new program, we do depend on the press announcement and briefings for information on the new product. Until nVidia Business Platforms are available in June, this is the only way to bring this information to IT professionals. However, this review goes a lot further than that by comparing nVidia and Intel Business Platform programs.
Gary also details, for the first time, information on the 2006 Intel Stable Business Platform which will include Conroe and Broadwater.
quote: If so does the current iteration of boards with NVIDIA ActiveArmor support this type of feature?
The NVIDIA nForce boards and software being designed for this stable image platform fully support WOL/PXE. This offering is basically an updated version of the WOL/PXE capabilities provided on the nForce Professional 2050/2200 boards with specialized driver and software support.
They don't support anything close to the level AMT but there is likely an option that will allow ASF to be enabled if the vendor wants it.
AMT is not essentially an IP-KVM because you do not have direct access to the system, keyboard, mouse, video. Rather AMT requires a separate application such as LANDesk to allow you to control the more advanced aspects, when you access the system remotely without any extra software you can do simple things like turn the system on/off, reboot, view temps and check the OS state. Because the Intel LOM (PRO/1000 PM) that has AMT also supports IDE-R and SOL you can do some very useful things like boot from a remote CD to restore the system. Theoretically vendors can create custom software to do a lot more through AMT.
That said I sure hope NVIDIA LOMs will support ASF (preferably 2.0), there are alot of business that use ASF.
We’ve updated our terms. By continuing to use the site and/or by logging into your account, you agree to the Site’s updated Terms of Use and Privacy Policy.
14 Comments
Back to Article
nordicpc - Thursday, March 30, 2006 - link
MSI is shipping their K8NGM2-NBP board currently, as this link to Newegg will show: http://www.newegg.com/Product/Product.asp?Item=N82...">Newegg LinkBasically, all I can tell is that MSI dropped the firewire from the K8NGM2-FID and rebadged it. Hopefully the FID won't dissapear as firewire is actually pretty useful in the HTPC crowd where this board does very nicely.
Gary Key - Wednesday, April 5, 2006 - link
http://www.nvidia.com/object/IO_30667.html">http://www.nvidia.com/object/IO_30667.htmlOlaf van der Spek - Thursday, March 30, 2006 - link
[quote]Also , NVIDIA offers the only hardware-based firewall solution for a stable image platform, with a unique anti-hacking technology that secures each PC from network intrusion. Hardware-based firewall technology protects PCs at the network layer from most virus, worm, and spyware attacks. Unlike software-based firewall solutions, ActiveArmor cannot be disabled by malicious code.
[/quote]
Isn't this just 'copy/pasted' from nVidia's propaganda?
If a virus is able to disable your firewall, you're screwed already, ActiveArmor or no ActiveArmor.
And as far as I know, it is possible to disable ActiveArmor in software.
BigLan - Thursday, March 30, 2006 - link
The 'active armor' stuff is pure BS. It's been broken on the nforce4 for a long, long time with no official comment from Nvidia. I don't know what type of corporation is going to adopt a platform which corrupts all zip file downloads.Shame on Anandtech for not calling nvidia out on this.
bob661 - Thursday, March 30, 2006 - link
Where are the results of your testing on these new platforms to support your accusations?JarredWalton - Thursday, March 30, 2006 - link
Going with this comment, remember that nForce 6150/6200 != nForce4. Something else I have to wonder: are those corrupt Zip files occuring for everyone, or just overclockers, or perhaps only on misconfigured systems? I don't know. I use a NAT/Router and don't bother with the NVIDIA Firewall stuff, but I suppose if a virus ever got loose in my home network I might be in for some trouble. Luckily, the only user on my network is me, and I'm pretty sure I know what I'm doing. Most businesses can't make that claim. :)How will this platform fare in reality? That's a good question. Obviously, it doesn't matter much if NVIDIA provides a "stable" platform if they don't get partners that properly support the initiative. I don't think that will be a problem, as there should be plenty of system integrators looking for some new ways to market/sell AMD platforms. It sounds decent on paper, at least, and they do have some good features
BigLan - Friday, March 31, 2006 - link
I saw it first hand on a dfi lanparty Ultra. Checksum offloading/active armor would corrupt every zip/archive file downloaded. This was on a fresh build with two identical systems. Since then, I've never turned it back on for any of the systems I've built. It would be nice if a large tech website did an investigation into it to maybe get nvidia to admit the problem was hardware, or fix their drivers. ;)Gary Key - Friday, March 31, 2006 - link
We have investigated this issue several times. We can recreate certain data corruption scenarios while utilizing P2P software, streaming multiple downloads, and then trying to decompress these same files concurrently. We were able to solve or greatly minimize these issues through driver changes or software configurations, though eliminating the use of P2P seemed to work best. ;-) NVIDIA has worked extensively with several of our readers who had issues and solved them. At this time we have one reader who is still having issues after working directly with NVIDIA but the communication cylce just started on his issue.
The latest driver sets from NVIDIA have made changes to the way ActiveArmor handles TCP checksumming in their hardware by offloading more to the CPU, which has increased CPU utilization rates but they are still lower than most Gigabit solutions. These changes have certainly cleared the majority of issues noticed by most users we have communicated with over the last month. The other issue we have noticed is in the initial installation of the ActiveArmor firewall software, some program settings are not correct or clearly defined based upon the system configuration, and this is an area that needs improvement from NVIDIA in the installation scripts. The lack of technical information in most user manuals for setting up ActiveArmor is also not acceptable in our opinion.
The next version of ActiveArmor software along with some hardware tweaks in the upcoming nForce 500 chipsets should solve any outstanding issues.
NVIDIA will be sending us a complete Stable Image Platform system shortly and we will put it through its paces while providing a short "How To" article on setting up or correcting issues within the ActiveArmor software suite.
Wesley Fink - Thursday, March 30, 2006 - link
With an announcement of a new program, we do depend on the press announcement and briefings for information on the new product. Until nVidia Business Platforms are available in June, this is the only way to bring this information to IT professionals. However, this review goes a lot further than that by comparing nVidia and Intel Business Platform programs.Gary also details, for the first time, information on the 2006 Intel Stable Business Platform which will include Conroe and Broadwater.
DanaGoyette - Thursday, March 30, 2006 - link
You mean BSODs whenever you install the NAM and data corruption if you enable network adapter offloading?
I have no experience with these, but Google will tell you that plenty of people do.
Schadenfroh - Thursday, March 30, 2006 - link
I have been using my nvidia firewall for over a year without any problems.FinFET - Thursday, March 30, 2006 - link
From what I read "AMT enables IT staff to diagnose, repair, and manage remote PCs regardless of OS or system state."So is this basically like ILO (Integrated Lights Out) where I can have BIOS Level access to the machine, essentially IP-KVM?
If so does the current iteration of boards with NVIDIA ActiveArmor support this type of feature?
Gary Key - Thursday, March 30, 2006 - link
The NVIDIA nForce boards and software being designed for this stable image platform fully support WOL/PXE. This offering is basically an updated version of the WOL/PXE capabilities provided on the nForce Professional 2050/2200 boards with specialized driver and software support.
tokath - Thursday, March 30, 2006 - link
They don't support anything close to the level AMT but there is likely an option that will allow ASF to be enabled if the vendor wants it.AMT is not essentially an IP-KVM because you do not have direct access to the system, keyboard, mouse, video. Rather AMT requires a separate application such as LANDesk to allow you to control the more advanced aspects, when you access the system remotely without any extra software you can do simple things like turn the system on/off, reboot, view temps and check the OS state. Because the Intel LOM (PRO/1000 PM) that has AMT also supports IDE-R and SOL you can do some very useful things like boot from a remote CD to restore the system. Theoretically vendors can create custom software to do a lot more through AMT.
That said I sure hope NVIDIA LOMs will support ASF (preferably 2.0), there are alot of business that use ASF.