VectorLinux
April 17, 2014, 12:18:46 am *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Visit our home page for VL info. To search the old message board go to http://vectorlinux.com/forum1. The first VL forum is temporarily offline until we can find a host for it. Thanks for your patience.
 
Now powered by KnowledgeDex.
   Home   Help Search Login Register  
Please support VectorLinux!
Pages: [1]
  Print  
Author Topic: separate firewall machine  (Read 765 times)
sledgehammer
Vectorian
****
Posts: 1397



« on: January 13, 2014, 08:55:54 am »

bigpaws,

In March of last year on another thread you said:

Quote
I use a p II 233 with 32 megs of ram for a firewall.

You should never run a firewall and anything else together.

Could you, someday, when snowed in or otherwise very bored, post a "How tos," showing us how you set up your firewall?

John 
Logged

VL7.0 xfce4 Samsung RF511
bigpaws
Vectorian
****
Posts: 1831


« Reply #1 on: January 13, 2014, 10:06:36 am »

My recommendation for using a hardware firewall is to keep
things isolated.


Generally a hardware firewall only has a firewall and routing. Not
providing other services. There are people who use other services
on their firewalls.  A firewall distribution usually has the developer
and compiling stuff removed. This reduces the chances that should
the firewall get rooted that no programs can be compiled.

After the first firewall then using a firewall on each system adds a
little more security. Depending on your situation could also add
virus scanning. 

I use one of three router setups depending on the hardware and
advances features I need.

A. Freesco is the lightest router. It runs one really old hardware and
    loads using a floppy disk:
    http://www.freesco.org/
    You could run this on a 486 with 12 megs RAM

B. Smoothwall is the next. It needs newer hardware usually a P2 or better
    with about 64 megs of RAM will give you a decent router. The more you
    expect the greater the hardware requirements.
   http://www.smoothwall.org/

C. The more powerful and the one I use most is pfsense.
     It will work from anything from a p2 and above and the same notes
     as above about advanced features.
     http://www.pfsense.org/

I find that the documentation is really good for all of the above and is pretty
easy to setup. Being that my uses vary alot there is no one way to setup the
services that the routers provide. Some of the routers I have setup use multiple
networks connected via one router.

Firewalls are a large subject and no single howto would do real justice to
explaining the ups and downs of them.

Bigpaws
Logged
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2013, Simple Machines Valid XHTML 1.0! Valid CSS!