Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm thinking of using a Celeron 500mHz, 64MB Ram, 3.2Gb Harddrive as a Firewall Box. What do you suggest that I run for a distribution that won't slow this old machine down? Thanks!
Depending on how familiar you are with making a custom kernel or building packages, of the major names, you could try Slackware, Debian, even Gentoo.
I suggest these coz they don't automatically drown you with gui tools or unecessary packages.
I would avoid Fedora, Mandrake/Mandriva and SuSe coz you won't get any easy upgrade option, especially when the distro version jumps. Package maintenance will always be an issue with a firewall.
If you just want a quick and easy firewall with some tweaking, look at www.smoothwall.org
I've never built a custom kernel but it would provide a good opportunity for me to learn a few things. How would you suggest I go about it? Also, would those distro's you suggested run on the machine specs I gave?
Also one other quick question. Do I have to rebuild the custom kernel everytime I upgrade? It sounds like a lot of work.
You would only need to redo a kernel to add features not in earlier versions, or fix bugs.
They don't take too long to do, so long as you cut out all the unecessary stuff, eg graphics, sound, unused drivers, usb etc.
I suggest reading the http://iptables-tutorial.frozentux.n...-tutorial.html then download and install smoothwall, take a good look and decide how to do the same in a full distro. At this stage I'd recommend Debian Sarge until you get used to building in one fast pc and transferring packages to the slower box. Try to drop in 256MB ram if you can. The more the merrier.. Makes Snort and Squid run faster.
i dont think it will slow down the connection but that depends on your NICs compared to the rest of your setup. Since most PCs come with at least a 100mb nic nowadays the cable/dsl tend to be the bottleneck due to the restrictions placed by ISPs. i have an old k6-2 300mhz with 512Mb RAM and a couple 10/100 NICs acting as my firewall with no noticable decrease.
ram is the answer to speed.. the more ram, the more conntrack entries, the less page file swapping.
Actually, once the box is running, you can test the throughput with a large file. Test tcp and udp, and also the drivers. I have several lethargic Realtek chipsets under standard drivers that are v.quick under basic drivers.. Time to recompile and test some more..
i have to agree with peter_robb on RAM. if you notice you hit swap often then time to increase. in my config and number of systems behind my firewall i usually sit near the top of my ram usage but manage to refrain from swapping. i also have a lot of connection tracking/logging (stave off those ssh intrusion attempts among other things) so your mileage will vary.
I'm definitely really new to this and linux in general. I'm just trying to soak it all in. I think it would be a good exercise for me to learn to setup a firewall because I really hit two birds with one stone. 1. I get to compile a kernel 2. I learn more about how the internet / networking really works.
A slow machine won't hurt you're internet any.
My current firewall is a P166 with 32meg ram running "FloppyFW"
and it's fine.
I'm currently testing a 450celeron machine with 128meg ram.
It's running Slackware 10.1 with KDE 3.3.x . It's a little slow but not bad for
every day stuff. I'm using "Firestarter" to set up firewall and routing.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.