[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Firewall distro



I guess I should clarify my intent. Since the point of a firewall is to
be a security feature of your network, why do all the installs assume you
have internet connections *prior* to setting up the firewall? Go figure.

Does the NSA distro give anyone else the willies?

I ran across a couple of reviews, (MDK, SuSE, and Cayote - the reviewer liked
MDK). Several have noted the flexibility of SuSE's distro.

I'm looking for an out-the-box small-ish distro package that doesn't require
X (although the fwconfig project is tempting).

I want to do NAT, DHCP, and filtering with three nics. The MDK distro only 
understands two - your inside/outside. I've got DSL, WiFi, and internal LAN
segments to work with.

WhiteGlove and IPCop sounded interesting - anyone know anything about them?

A floppy-based system won't work for me, I want to do some logging, 
intrusion detection, and I've got a 1.3GB drive that sounds about right. 
I just put a minimal install with RH7.3 and it filled 650+ MB *without X*.
I have no idea what's taking up all the space. I did notice that there's
tons of doodads that seem to require Python and Tcl for simple stuff.
Mostly configuration tools, so I can't really ditch those until I'm
comfortable with "hand jobs".

Maybe it just sucks and there's no way around the "install lots of crap,
and over time, you'll pare it down to under 100MB" without the "over time"
step.

I looked at LEAP, but it sounds like you need to know what you want
before you build the floppy. Since I don't, I'm in a catch-22.

I'll post back what I find.

Ran across http://www.sweetcode.org/ today. Interesting.

Mike808/
-- 
() Join the ASCII ribbon campaign against HTML email and Microsoft-specific
/\ attachments. If I wanted to read HTML, I would have visited your website!
Support open standards.

-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.