[rescue] RFA: firewall
alaric at caerllewys.net
Thu Jan 6 15:44:02 CST 2005
On Thu, Jan 06, 2005 at 01:24:50PM -0700, Barry Keeney wrote:
> On Thu, 6 Jan 2005, Phil Stracchino wrote:
> > I humbly request advice, opinions, whatever, from the Collective. :)
> > The hardware: Ultra5, USIIi/333, 256M, 9.1G, three 10/100 interfaces
> > (the built-in hme plus a dual EEPro100), didn't really pay attention to
> > what framebuffer and can't say I particularly care.
> > The application: firewall between wired internal net, wireless DMZ, and
> > DSL to the 'net. Right now there'll only be one machine on the wired
> > net and one on wireless, both running Win2K Pro, but real boxen running
> > real OSen will be shipped out here later.
> Is this for home use, home office, small company?
This is home use.
> Either way I'd look really hard at OpenBSD, And I a bigtime
> Sun fan! (Does OpenBSD have a floppy/CD boot read only distro?)
Not to my knowledge, though I'm sure it would be feasible.
> As another option, put together a low end pc and use one of
> the Linux boot from floppy/CD firewalls. The hardware is easier
> to find/replace if somethings fails and it's harder to hack
> write protected media :^) Reboots wipe out any backdoors/hacks
> needed to gain access. Use the Sun as the loghost and watch
> it for entries from the firewall rebooting/hacking attempts.
That, too, is an option for later. Right now, though, I'm short on
hardware to deploy.
========== Fight Back! It may not be just YOUR life at risk. ==========
alaric at caerllewys.net : phil-stracchino at earthlink.net : phil at novylen.net
phil stracchino : unix ronin : renaissance man : mystic zen biker geek
2000 CBR929RR, 1991 VFR750F3 (foully murdered), 1986 VF500F (sold)
Linux Now! ...Friends don't let friends use Microsoft.
More information about the rescue