Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Linux as a firewall 3
- Thread starter rphips
- Start date
-
1
- #2
"'Tis an ill wind that blows no minds." - Malaclypse the Younger
There are at least two pre-configured linux systems which provide firewall functionality
Any spare pentium class machine (even a really old one) should be all you need to run either of these.
--
Any spare pentium class machine (even a really old one) should be all you need to run either of these.
--
Linux is an excellent firewall (trust me i speak from experience.) Despite it being much harder to get past the linux firewall you can enable dynamic i.p.'s so if anyone portscans you, buy the time they even think about trying to get in your server your i.p. will have changed.
I support your move to linux and am sick and tired of windows poor security and horendously overcharged prices.
If you like linux then please buy a copy (if you have the cash of course and are impressed with the service you get from it) as they are extremely cheap.
regards Net_buster
I support your move to linux and am sick and tired of windows poor security and horendously overcharged prices.
If you like linux then please buy a copy (if you have the cash of course and are impressed with the service you get from it) as they are extremely cheap.
regards Net_buster
- Thread starter
- #5
- Thread starter
- #7
-
1
- #8
iSeriesCodePoet
Programmer
I have both built my own and used IPCop. I will tell you what it is a good experience to build you own, but much easier just to use a pre-built one.
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
![[pc2]](/data/assets/smilies/pc2.gif "[pc2] [pc2]")
See my progress to converting to linux.
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
See my progress to converting to linux.
- Thread starter
- #9
iSeriesCodePoet
Programmer
Read my Linux blog. I have entries on some of the things I have done.
I basically used slackware (debian might have been better) then used webmin to set up everything else. The posts start about here ( and I have a few entries on it. If you have any question feel free to email me. My contact info is on my main blog (
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
See my progress to converting to linux.
I basically used slackware (debian might have been better) then used webmin to set up everything else. The posts start about here ( and I have a few entries on it. If you have any question feel free to email me. My contact info is on my main blog (
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
See my progress to converting to linux.
- Thread starter
- #11
The evilsmiley.org firewalling box is a ghetto server (p2 220 with 64 megs of ram ) that i simply automated and completely stopped all network accessible services from working on it.
Add a basic firewalling and port forwarding IPTABLES script and you got yourself something that would cost you a bunch of money in a commercial product, that only cost me the price of the ghetto server ( which i found in the trash).
go linux.
_____________________________
when someone asks for your username and password, and much *clickely clickely* is happening in the background, know enough that you should be worried.
Add a basic firewalling and port forwarding IPTABLES script and you got yourself something that would cost you a bunch of money in a commercial product, that only cost me the price of the ghetto server ( which i found in the trash).
go linux.
_____________________________
when someone asks for your username and password, and much *clickely clickely* is happening in the background, know enough that you should be worried.
There is a wide range of Linux firewalls available (as packages for standard distributions or special firewall distributions)
If you are new to Linux you better choose a firewall distribution like... ipcop, astaro secure linux, trustix, or - werewolf from the makers of coyote linux. Werewolf has stateful firewall, VPN capabilities (interoperates with Windows vpn, it is very small...)
If you are new to Linux you better choose a firewall distribution like... ipcop, astaro secure linux, trustix, or - werewolf from the makers of coyote linux. Werewolf has stateful firewall, VPN capabilities (interoperates with Windows vpn, it is very small...)
iSeriesCodePoet
Programmer
Can you point us to where we can fine Werewolf?
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
See my progress to converting to linux.
iSeriesCodePoet
iSeries Programmer/Lawson Software Administrator
See my progress to converting to linux.
ohh, sorry, not werewolf, I mean Wolverine 
)
)I would recommend SmoothWall ( I have used it for some time now. I am currently using v2 on :
166Mhz Pentium
48Mb RAM
2Gb HDD
2 x NE2000 NICs
All scrap kit thrown out by my employer. It lives up in the attic and I never go near it.
166Mhz Pentium
48Mb RAM
2Gb HDD
2 x NE2000 NICs
All scrap kit thrown out by my employer. It lives up in the attic and I never go near it.
-
1
- #18
You guys should all take a look at m0n0wall.
(those are zero's not O's)
I have been using this linux based firewall and it works great. I used to use IPCop but i got tired of having to always edit the Scripts because the WebGui was kinda iffy. This software is all written in PHP and saves all its config files as XML's. You can run it on all sorts of embedded systems as well as an old Pentium class PC. You can even run it with just a bootable cd-rom version of it and a floppy disk, no hd required. No scripts to edit, just create all your firewall rules over the web gui. It has PPTP, IPSEC, all sorts of advanced NAT, wireles support, multiple interfaces. I am telling you this is probably the best software I have seen yet. I have used IPCop, Smoothwall, Mandrake security firwall, and I think monowall beats them all. Take a look at the link and see for yourselfs. If you have any questions let me know I am running this both at the office and at my home.
Regards,
Eddie Fernandez
CCNA, Network+, A+, MCP
(those are zero's not O's)
I have been using this linux based firewall and it works great. I used to use IPCop but i got tired of having to always edit the Scripts because the WebGui was kinda iffy. This software is all written in PHP and saves all its config files as XML's. You can run it on all sorts of embedded systems as well as an old Pentium class PC. You can even run it with just a bootable cd-rom version of it and a floppy disk, no hd required. No scripts to edit, just create all your firewall rules over the web gui. It has PPTP, IPSEC, all sorts of advanced NAT, wireles support, multiple interfaces. I am telling you this is probably the best software I have seen yet. I have used IPCop, Smoothwall, Mandrake security firwall, and I think monowall beats them all. Take a look at the link and see for yourselfs. If you have any questions let me know I am running this both at the office and at my home.
Regards,
Eddie Fernandez
CCNA, Network+, A+, MCP
azpctech01
Technical User
You might take a gander at I set one up on a old pc last week..worked real well
dilettante
MIS
You might also consider OpenBSD for this role in your network.
Less "lard" than Linux, and inherently more secure. At the same time, those accustomed to Linux may find it a reasonably familiar place to be.
Using OpenBSD 3.3 As A Firewall/Gateway for Home DSL or Cable and many others.
Try Google: [tt]openbsd firewall[/tt]
Less "lard" than Linux, and inherently more secure. At the same time, those accustomed to Linux may find it a reasonably familiar place to be.
Using OpenBSD 3.3 As A Firewall/Gateway for Home DSL or Cable and many others.
Try Google: [tt]openbsd firewall[/tt]
- Status
Similar threads
- Locked
- Question
- Locked
- Question