[rescue] RFA: firewall

Phil Stracchino alaric at caerllewys.net
Thu Jan 6 15:44:02 CST 2005

On Thu, Jan 06, 2005 at 01:24:50PM -0700, Barry Keeney wrote:
> On Thu, 6 Jan 2005, Phil Stracchino wrote:
> > I humbly request advice, opinions, whatever, from the Collective.  :)
> > 
> > The hardware: Ultra5, USIIi/333, 256M, 9.1G, three 10/100 interfaces
> > (the built-in hme plus a dual EEPro100), didn't really pay attention to
> > what framebuffer and can't say I particularly care.
> > 
> > The application: firewall between wired internal net, wireless DMZ, and
> > DSL to the 'net.  Right now there'll only be one machine on the wired
> > net and one on wireless, both running Win2K Pro, but real boxen running
> > real OSen will be shipped out here later.
>   Is this for home use, home office, small company? 

This is home use.

>   Either way I'd look really hard at OpenBSD, And I a bigtime
> Sun fan! (Does OpenBSD have a floppy/CD boot read only distro?)

Not to my knowledge, though I'm sure it would be feasible.

>   As another option, put together a low end pc and use one of
> the Linux boot from floppy/CD firewalls. The hardware is easier
> to find/replace if somethings fails and it's harder to hack 
> write protected media :^) Reboots wipe out any backdoors/hacks
> needed to gain access. Use the Sun as the loghost and watch 
> it for entries from the firewall rebooting/hacking attempts.

That, too, is an option for later.  Right now, though, I'm short on
hardware to deploy.

  ========== Fight Back!  It may not be just YOUR life at risk. ==========
  alaric at caerllewys.net : phil-stracchino at earthlink.net : phil at novylen.net
   phil stracchino : unix ronin : renaissance man : mystic zen biker geek
     2000 CBR929RR, 1991 VFR750F3 (foully murdered), 1986 VF500F (sold)
           Linux Now!  ...Friends don't let friends use Microsoft.

More information about the rescue mailing list