Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have a computer that i'd like to turn into a firewall for my network, it has the following specs: 200mhz proccessor, 32mb RAM, and 4 gig hard drive, Netgear FA310TX NIC and a 3Com NIC.
What software is the best to use for a computer with those specs?
It's currently running RH 7.2, but I can replace that with whatever is nescessary.
I also have a wireless Linksys NAT/Router, would I plug the 2nd NIC into the Uplink port of the NAT, or the WAN port?
well the system you have is not really related to the software, the only thing worth thikning about is that you are running a 2.4 kernel, which redhat 7.2 does. All firewalls on linux are created under the same software, and what you would think to be the firewall software is actually just a front end to iptables and netfilter, it's all kept very much under the hood.
i like the firestarter front end, does everythign i need it to, and makes iiptables configuration so much less painful
OpenBSD is a unix variant, like linux, not a firewall. the advantage of somethign like firestarter is that it's extremely easy, rather than extremely hard. an average iptables script can easily be a few hundred lines if you're doing it meticulously, and if you're not comfortable with iptables that's a non starter... ultimatley though having a good knowledge of iptables will help you no end.
Yeah, it is meant to be quite good actually, but naturally it ends up at a point where it's horses for courses and all that. there is always a level you can find to suit your needs against your abilites. i'm still chickening out personally....
Hmm...
This is just for a home network, but i'd like to have as much security as possible without buying expensive firewall appliances.
Do you have any links with information on firewalls in OpenBSD, and do you know how similar it is to Linux?
I might as well at least look into it, i'm not in a rush to replace my NAT and I have alot of time on my hands so I might as well make the best firewall I possibly can.
Take a look at ClarkConnect 1.2 (1.2 is based on RedHat 7.3. They'll have a newer version next month based on RedHat 8.0). This is ideal for a home network. When you get it registered (FREE), you get a dynamic dns entry at their *.pointclark.net ... the "*" being the username that you choose when registering. It makes a nice little firewall (Frontend to IPTABLES), also capable of having a DMZ, Samba shares, E-mail, multiple Domains for Apache web hosting, FTP, and includes SNORT pre-configured
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.