LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Virtualization - OS, Firewall, RAS/NAS, IDS/IPS on one system? (https://www.linuxquestions.org/questions/linux-security-4/virtualization-os-firewall-ras-nas-ids-ips-on-one-system-870867/)

akakwangkyu 03-24-2011 11:26 PM

Virtualization - OS, Firewall, RAS/NAS, IDS/IPS on one system?
 
Hi all,

I am interested in a solution for an All-in-One package for security. Is it possible to group a firewall, RAS/NAS, IDS/IPS into one system? Today, systems have the memory capability for making an entry point into such a Virtualization system. The system could group all the security services.

I have heard of OS distros that are all in one package, but are there any like what I have described?

I am also interested in home apps, system Virtualizations, or OS distros. I am a newbie to security so please be thorough.

-akakwangkyu

win32sux 03-24-2011 11:41 PM

Yes, it can be done (although whether it's a good idea or not is a separate issue). You'll likely need to set it all up yourself, though, as I don't think there's currently a distro that provides the setup you have in mind out of the box.

Noway2 03-25-2011 07:44 AM

Quote:

I am a newbie to security so please be thorough
If you haven't look at it yet, a good place to start would be here in the security references. Is there a specific area of security that interests you or a topic that you would like to discuss in more detail?

ComputerErik 03-26-2011 11:33 AM

Check out ClearOS (formerly Clark Connect) as it does much of what you are looking for, but not virtualization last time I checked.

I don't know how well a virtualized server would act as an IDS/IPS system since they are generally setup with one NIC in promiscuous mode to capture all traffic on the network. Your host would need to have sufficient NICs to split off for all of the features you want, as well as be running a virtualization software that would allow the VM to then actually have direct access to the hardware to set it up.

win32sux 03-27-2011 01:57 AM

Quote:

Originally Posted by ComputerErik (Post 4304309)
I don't know how well a virtualized server would act as an IDS/IPS system since they are generally setup with one NIC in promiscuous mode to capture all traffic on the network.

Isn't it just a matter of bridging the virtual/physical NICs?


All times are GMT -5. The time now is 12:37 AM.