LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-19-2002, 09:42 AM   #1
ScreeminChikin
Member
 
Registered: Aug 2002
Location: Kansas City
Distribution: Mandrake 9.2 and a couple of RH7.3 Apache servers
Posts: 153

Rep: Reputation: 30
Hardware or software firewall?


On my small home network I use a cablemodem and an SMC cable router with a built in firewall/print server and 4 port switch. I was thinking about using one of my old boxes to set up a Linux based firewall, Freesco to be nore precise because I heard that it is easy to set up and I dont know much about firewalls. My question is weather there is an advantage or disadvantage for that matter to using the Linux firewall over the one built into my router. Also, does the processor speed of the firewall box have any affect on your internet access speed? Like if I stick a p133 between my P4-1.4 and the outside world will it slow me down?
 
Old 09-19-2002, 11:34 AM   #2
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
It really depends on how paranoid you are. An extra layer of security never hurts. I would not recommend relying totally on a single layer. I decided not to put my wireless Linksys in the front simply because performance degraded every time that I got port scanned. The amount performance degradation would obviously depend on the hardware that you use. Using old ISA NICs in the firewall could hurt in some situations.
 
Old 09-19-2002, 05:25 PM   #3
ScreeminChikin
Member
 
Registered: Aug 2002
Location: Kansas City
Distribution: Mandrake 9.2 and a couple of RH7.3 Apache servers
Posts: 153

Original Poster
Rep: Reputation: 30
I would say that I'm pretty damn paranoid. Would it hurt to put a Linux firewall between my cable router/firewall and my cable modem, and on the same token would my internet access speed suffer by havin to pass through 2 firewalls? As for nics I would be using a pair of Linksys PCI cards in either a p133/48meg or a p233/24meg.
 
Old 09-19-2002, 08:28 PM   #4
g_rat
LQ Newbie
 
Registered: Mar 2002
Location: Wisconsin
Distribution: Suse 7.1
Posts: 6

Rep: Reputation: 0
No performance problems

I am running pretty much the exact configuration. I am running Linux on a p133/ and Cable Modem and had no problems with overloading the process, even with multiple internal hosts on the same internet connection.
I did disable filtering at the router (If you do, lock down configuration options from the external port) and it made no difference.
Good luck
 
Old 09-22-2002, 11:42 AM   #5
crabboy
Senior Member
 
Registered: Feb 2001
Location: Atlanta, GA
Distribution: Slackware
Posts: 1,821

Rep: Reputation: 121Reputation: 121
I use a Linux box running iptables for my firewall. My decision between hardware and software firewall was cost. [at the time] I could either spend $300 on a hardware router or bring an old P60 back to life for free. Possibly in the long run, I will spend more on electricity, but I am happy with the Linux firewall now and I will not switch. The Linux firewall is more configurable (not as easy at times) and keeps very good logs (depends on the setup). The P60 w/32MB has no problem with keeping up with my connection, ADSL 1.4Mb down and 256K up, the machine is always idle. The box is completely stripped, just a MB, floppy, tape, one 800M HD and 2 NICs.
 
Old 10-05-2002, 05:28 AM   #6
grubjo
LQ Newbie
 
Registered: Jul 2002
Posts: 19

Rep: Reputation: 0
Hi,
I think it depends on how secure your network should be. A Linux firewall is very cheap (I use a P100, 800MB HD, 32MB RAM) but you have always to pay attention to some security holes concerning kernel, iptables etc. Most of the time a hardware firewall use a very secure operating system and you need not any updates (but I don't know your firewall).

Ciao, Hannes
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
I am buying a hardware firewall Ephracis Linux - Networking 3 11-23-2004 01:04 PM
Hardware switching to Firewall/Software HadesThunder General 6 08-12-2004 08:17 PM
firewall hardware and software ziggie216 Linux - Software 0 03-11-2004 04:15 PM
Opinions: Hardware versus Software Firewall oxleyk Linux - Security 2 01-27-2004 12:07 AM
Firewall: hardware or software sluggo Linux - Security 5 01-20-2002 01:37 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:09 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration