LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 03-24-2011, 11:26 PM   #1
akakwangkyu
LQ Newbie
 
Registered: Jan 2011
Posts: 6

Rep: Reputation: 0
Virtualization - OS, Firewall, RAS/NAS, IDS/IPS on one system?


Hi all,

I am interested in a solution for an All-in-One package for security. Is it possible to group a firewall, RAS/NAS, IDS/IPS into one system? Today, systems have the memory capability for making an entry point into such a Virtualization system. The system could group all the security services.

I have heard of OS distros that are all in one package, but are there any like what I have described?

I am also interested in home apps, system Virtualizations, or OS distros. I am a newbie to security so please be thorough.

-akakwangkyu
 
Old 03-24-2011, 11:41 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Yes, it can be done (although whether it's a good idea or not is a separate issue). You'll likely need to set it all up yourself, though, as I don't think there's currently a distro that provides the setup you have in mind out of the box.
 
Old 03-25-2011, 07:44 AM   #3
Noway2
Senior Member
 
Registered: Jul 2007
Distribution: Ubuntu 10.10, Slackware 64-current
Posts: 2,124

Rep: Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776
Quote:
I am a newbie to security so please be thorough
If you haven't look at it yet, a good place to start would be here in the security references. Is there a specific area of security that interests you or a topic that you would like to discuss in more detail?
 
Old 03-26-2011, 11:33 AM   #4
ComputerErik
Member
 
Registered: Apr 2005
Location: NYC
Distribution: Debian, RHEL
Posts: 268

Rep: Reputation: 42
Check out ClearOS (formerly Clark Connect) as it does much of what you are looking for, but not virtualization last time I checked.

I don't know how well a virtualized server would act as an IDS/IPS system since they are generally setup with one NIC in promiscuous mode to capture all traffic on the network. Your host would need to have sufficient NICs to split off for all of the features you want, as well as be running a virtualization software that would allow the VM to then actually have direct access to the hardware to set it up.
 
1 members found this post helpful.
Old 03-27-2011, 01:57 AM   #5
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by ComputerErik View Post
I don't know how well a virtualized server would act as an IDS/IPS system since they are generally setup with one NIC in promiscuous mode to capture all traffic on the network.
Isn't it just a matter of bridging the virtual/physical NICs?
 
1 members found this post helpful.
  


Reply

Tags
distros, security, virtualization


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Router/Firewall/IPS system Oxagast Linux - Networking 2 05-23-2009 08:43 PM
IDS/IPS for detecting/preventing unauthorized VPN or encrypted traffic. Maybe SNORT? sipecup Linux - Security 0 09-11-2007 08:23 AM
Linux IDS/Firewall ninjaz Linux - Networking 5 06-19-2006 01:08 PM
IDS and IPS in Linux sharma_arpit Linux - Networking 2 10-11-2005 12:07 AM
help about IDS and firewall Babba Linux - Security 2 02-11-2003 05:35 AM


All times are GMT -5. The time now is 04:08 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration