Originally Posted by Decarn
I have very little experience with Linux. We have a challenge to seek an alternative to our costly checkpoint firewall and I'm wondering if it is possible to configure a Linux server to serve as a firewall. If it's possible, what distro should I go for? My company's standard is RedHat and it would be great if RedHat can be used.
Rather than just tossing in a product name let's see
what features you seek. If just blocking of certain
ports or narrowing traffic to certain ports down to
certain IPs, or forwarding certain traffic to "internal"
(e.g., a DMZed webhost) machines is all you need, IPtables
will do just fine. If you need application layer protection,
you can use proxies for certain things. And there's
... of course one can
also chuck snort into the mix, and psad and fwsnort.
The question is: is your company happy to pay for their
staff to tailor their solution?