[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Firewall distro



Hi one more time Mike808. Smoothwall does everything you want, no x, 3 nic's
etc. I am not familiar with any of the other  distros
started using smoothwall, didnt see any need for anything else. Only a 20
meg download. Has snort for ids, but only uses kernal 2.2.19 (I think,
havent looked) and there are no tools included to get into it, if you want
to make a change, you have to do it on
another box and copy it over. I only use 1 nic since I only have a 56k
connection. Got to get off here. c u l
----- Original Message -----
From: "Mike808" <mike808@users.sourceforge.net>
To: <silug-discuss@silug.org>
Sent: Saturday, June 01, 2002 1:50 AM
Subject: Re: Firewall distro


> I guess I should clarify my intent. Since the point of a firewall is to
> be a security feature of your network, why do all the installs assume you
> have internet connections *prior* to setting up the firewall? Go figure.
>
> Does the NSA distro give anyone else the willies?
>
> I ran across a couple of reviews, (MDK, SuSE, and Cayote - the reviewer
liked
> MDK). Several have noted the flexibility of SuSE's distro.
>
> I'm looking for an out-the-box small-ish distro package that doesn't
require
> X (although the fwconfig project is tempting).
>
> I want to do NAT, DHCP, and filtering with three nics. The MDK distro only
> understands two - your inside/outside. I've got DSL, WiFi, and internal
LAN
> segments to work with.
>
> WhiteGlove and IPCop sounded interesting - anyone know anything about
them?
>
> A floppy-based system won't work for me, I want to do some logging,
> intrusion detection, and I've got a 1.3GB drive that sounds about right.
> I just put a minimal install with RH7.3 and it filled 650+ MB *without X*.
> I have no idea what's taking up all the space. I did notice that there's
> tons of doodads that seem to require Python and Tcl for simple stuff.
> Mostly configuration tools, so I can't really ditch those until I'm
> comfortable with "hand jobs".
>
> Maybe it just sucks and there's no way around the "install lots of crap,
> and over time, you'll pare it down to under 100MB" without the "over time"
> step.
>
> I looked at LEAP, but it sounds like you need to know what you want
> before you build the floppy. Since I don't, I'm in a catch-22.
>
> I'll post back what I find.
>
> Ran across http://www.sweetcode.org/ today. Interesting.
>
> Mike808/
> --
> () Join the ASCII ribbon campaign against HTML email and
Microsoft-specific
> /\ attachments. If I wanted to read HTML, I would have visited your
website!
> Support open standards.
>
> -
> To unsubscribe, send email to majordomo@silug.org with
> "unsubscribe silug-discuss" in the body.


-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.