Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
08-15-2006, 11:27 AM
|
#1
|
LQ Newbie
Registered: Aug 2006
Posts: 2
Rep:
|
Firewall / ICS
I need your advice about something-
I want to built a firewall/Internet gateway with Linux in my pap office.
I want to manage the incoming and the out coming traffic in the local LAN.
And i want it to have some kind of proxy that can do application level firewall (Anti spy ware etc).
My main idea is using CentOS or ubuntu server (What do you think?)
* Shorewall for easily manege the Iptable rules.
* Snort for the IDS.
* Squid for the proxy (Does it have application level filtering?).
* Tripwire for file integrate.
* SSH for "VPN" to get into the internal network from the outside.
I am missing a good WIndows iptable log viewer to detect abnormality's.
Help needed,
Asaf
|
|
|
08-16-2006, 02:09 PM
|
#2
|
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870
|
just curious: how much linux experience do you have?? also, i'm kinda wondering why you've chosen generic distros for this, when there's several specially-tailored firewall distros out there...
as for viewing iptables logs from windoze, if you SSH into the linux box using putty, you can pretty much less and grep your logs just as if you were on linux...
PS: squid doesn't do application level... but (for example) zorp does...
Last edited by win32sux; 08-16-2006 at 02:12 PM.
|
|
|
08-17-2006, 11:03 AM
|
#3
|
LQ Newbie
Registered: Aug 2006
Posts: 2
Original Poster
Rep:
|
I think i am above avarage user..
Do you think ubnutu will do a better job then CentOS?
|
|
|
08-17-2006, 01:28 PM
|
#4
|
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870
|
Quote:
Originally Posted by asafku
I think i am above avarage user..
Do you think ubnutu will do a better job then CentOS?
|
objectively speaking, the distro shouldn't make any difference - they should both do their jobs fine - you should instead focus on picking the one that lets you do *your* job fine... having said that, i'd still like to know why you have chosen a generic distro instead of a firewall distro, such as (for example) smoothwall, ipcop, devil linux, redwall, etc...
Last edited by win32sux; 08-17-2006 at 01:54 PM.
|
|
|
All times are GMT -5. The time now is 04:49 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|