Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Which Linux best for router plus firewall

Status
Not open for further replies.
Hungster

Hungster

IS-IT--Management
Mar 6, 2001
830
CA
just wonder if anyone have experience trying differet version of linux as Router optional Firewall

Rather than buying a Cisco Router, just thinking of using a box and put Linux on it, but not sure which one is a good choice

thx
 
Sort by date Sort by votes
Does smoothwall incorporate zebra for doing IGMP, BGP, OSPF, etc.?
 
Upvote 0 Downvote
Smoothwall is initially intended as a firewall without much in the way of routing. However, there are hundreds of mods you can add to it, check out their website.
 
Upvote 0 Downvote
I only spent a few minutes on their site, but I didn't links to any mods. I also googled for "smoothwall mods" and "smoothwall ospf", but didn't find any useful links in the first 2 or 3 pages of results.

Do you have a link to lists of mods, or more specific information on routing protocols available in smoothwall?
 
Upvote 0 Downvote
iptables is recognized as being very good, although configuring it can be a pain (or maybe I'm just lazy).
In case you're curious, this is what Gentoo has in its package tree for firewalls.

[N] net-firewall/firestorm (): Network IDS
[N] net-firewall/firestarter ():
[N] net-firewall/ipsec-tools (): IPsec-Tools is a port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation.
[N] net-firewall/dshieldpy (): Python script to submit firewall logs to dshield.org
[N] net-firewall/firehol (): iptables firewall generator
[N] net-firewall/psad (): Port Scanning Attack Detection daemon
[N] net-firewall/ipchains-firewall (): IP-Chains Firewall Script
[N] net-firewall/ipkungfu (): A nice iptables firewall script
[N] net-firewall/ipchains (): legacy Linux firewall/packet mangling tools
net-firewall/iptables (1.3.3-r2): Linux kernel (2.4+) firewall, NAT and packet mangling tools
[N] net-firewall/knetfilter (): Manage Iptables firewalls with this KDE app
[N] net-firewall/ipp2p (): Netfilter module for dealing with P2P Applications.
[N] net-firewall/arptables (): set up, maintain, and inspect the tables of ARP rules in the Linux kernel
[N] net-firewall/guarddog (): Firewall configuration utility for KDE 3
[N] net-firewall/fwipsec (): Firewall scripts that control iptables, FreeS/WAN, and squid.
net-firewall/fwbuilder (2.0.9): A firewall GUI
[N] net-firewall/kmyfirewall (): Graphical KDE iptables configuration tool
[N] net-firewall/gshield (): iptables firewall configuration system
[N] net-firewall/ipset (): IPset tool for iptables, successor to ippool.
[N] net-firewall/fwanalog (): Script to parse firewall logs and analyze them with Analog
[N] net-firewall/quicktables (): a quick iptables script generator
[N] net-firewall/ebtables (): Utility that enables basic Ethernet frame filtering on a Linux bridge, MAC NAT and brouting.
[N] net-firewall/lutelwall (): High-level tool for firewall configuration
[N] net-firewall/shorewall (): Full state iptables firewall
[N] net-firewall/tuxfrw (): TuxFrw is a complete firewall automation tool for GNU/Linux.
Click to expand...


-Haben sie fosforos?
-No tiengo caballero, but I have un briquet.
 
Upvote 0 Downvote
All linux firewalls rely on iptables to do the underlying packet filtering. The distributions like Smoothwall, system utilities like Redhat-config-firewall and applications like fwbuilder are simply tools to ease the administration the iptables.

I personally use fwbuilder, because it allows me to manage the dozen firewalls I maintain in an object oriented, graphical fashion with groups of services and hosts shared among them. It is also capable of generating configs for iptables, ipfw, cisco pix and a couple of other platforms.

I recently added submission (port 587) to all my servers handling mail and it was as simple as creating a submission service and dragging it into the "mail services" object. fwbuilder then compiled and installed the new rules on each of my mail servers.

Smoothwall seems to be a popular product, I looked at it a little. If you're going to run a limited number of firewall swithout need for advanced routing protocols or central administration, I think it's a no brainer. Nice product, well polished, easy to administrate, commercial support available if required.

 
Upvote 0 Downvote
Quite an impressive list.

There's nothing that would enable smoothwall to administer your routing processes, but there's nothing that would keep you from running them and administering them via their normal config files and command line utils.
 
Upvote 0 Downvote
Nothing at all. Smoothwall is intended for the linux illiterate (all config done via webaccess) but if you know what you're doing it has the full iptables implementation.

The vanilla version is incredibly easy to set up.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Krus1972
  • Locked
  • Question
Rewrite Rule for .htaccess Help
Replies
0
Views
284
Krus1972
Krus1972
kristiandg
  • Locked
  • Question
Linux, "port mirror" between two boxes...
Replies
0
Views
255
kristiandg
kristiandg
Phi_1.618
  • Locked
  • Question
Linux server
Replies
2
Views
316
SamBones
SamBones
bhuv560
  • Locked
  • Question
Postfix Installation on EC2 AWS Linux
Replies
0
Views
163
bhuv560
bhuv560
krabban
  • Locked
  • Question
Dirvish for backup
Replies
0
Views
261
krabban
krabban

Part and Inventory Search

Sponsor

Back
Top