LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-20-2003, 11:29 AM   #1
markstevens
Member
 
Registered: Jun 2003
Posts: 86

Rep: Reputation: 15
Starting from the begining


OK... well first I want to say thanks to everyone that has helped me so far.

Now I just finished getting our RH9 server up and running. Now I get to move on to what I have wanted to do for a while SECURITY.

Let me start by saying that I am a self taught IT person. Everything I know I learned on demand because we needed to do something or because something happened. I cover a wide range from running cables, MAC support, NT server, Linux Server, PHP/MySQL based web developement and so on. I know a little about a whole lot of subjects but don't know a whole lot about anything. I am very logical and have found so far that there is nothing I can't figure out. Maybe it takes a bottle of Exedrin but I can do it.

So... here is what we have.

T1 -Gateway
RH 9 - serves mail (sendmail), web (apache), FTP (vsftp), DNS (bind), and SSH.
NT4 server - file sharing and windows domain controller.
Win2K workstations (about 30)
Mac os9 workstations (5)

Everyone right now is on static IPs.

My goal. Stop all traffic from getting anywhere unless I want it to. Nothing in or out without my permission. Total Virus protection.

What I am wondering is what is my best option. Server/workstation based firewall and Virus scan? OR Firewall appliance right after teh T1 router?

I know I can get ZoneAlarm ( a great Firewal app) for all the workstations but I want to manage the rules centrally.

Norton Antivirus for the workstations sure... but I would rather have sendmail scan all the mail... or procmail actually I guess (right?).

I have seen Unspawns post and would love to read all the links he has... but the reality is... I am in a programming crunch, have no time to work on this, so I make time, and need to have a plan by early next week. If I can get some direction I will start reading and learn what I need to. That is how I have to work so I am used to it.

One thing I would like to avoid is using NAT. Reconfiguring everyones machine would be a pain? I know the theory of it but not sure how they work. Anyway, DHCP would be an adequate option for me I guess... Just some random thoughts anyway...

The nice thing is that at this point I have the chance to start off doing it right rather than hacking in fixes later on.

Thanks in advance to everyone.
 
Old 06-25-2003, 03:07 PM   #2
manthram
Member
 
Registered: Feb 2002
Location: Fairfax, VA
Distribution: RedHat 8, Mandrake9.1, Slack9
Posts: 456

Rep: Reputation: 31
you dont want to use nat, but you want to manage the rules centerally! you have static ips for the clients, but you are thinking about DHCP!


the best way to do this would be to put a machine with smoothwall after the t1 link and before the internal network. read the smoothwall documents and you will get a very good idea
 
Old 06-26-2003, 12:52 PM   #3
nxny
Member
 
Registered: May 2002
Location: AK - The last frontier.
Distribution: Red Hat 8.0, Slackware 8.1, Knoppix 3.7, Lunar 1.3, Sorcerer
Posts: 771

Rep: Reputation: 30
I second the smoothwall recommendation. I have never used it personally, but from my linux sysadmin friends, I do hear very good things about it.

manthram, did you mean www.smoothwall.org ?
 
Old 06-27-2003, 12:05 PM   #4
garth_s
LQ Newbie
 
Registered: Jun 2003
Location: Toronto
Posts: 27

Rep: Reputation: 15
Quote:
Originally posted by manthram
you dont want to use nat, but you want to manage the rules centerally! you have static ips for the clients, but you are thinking about DHCP!


the best way to do this would be to put a machine with smoothwall after the t1 link and before the internal network. read the smoothwall documents and you will get a very good idea
On a similar note, put AntiVir mail gate on the same box and that will solve your sendmail problem.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to get rid of the begining and end space of a string for PERL?? cqmyg5 Slackware 2 04-28-2005 05:34 PM
starting xprogram without starting X server. bruse Linux - Newbie 9 04-26-2005 08:05 PM
+ at the begining of a line in password file jimieee Linux - General 3 04-03-2005 03:40 PM
Won't Boot - Starting Printer Service - Starting CUPS jeansond Linux - Newbie 0 10-11-2004 07:39 PM
what is the most common begining of a thread bosewicht Linux - Newbie 0 03-04-2004 05:40 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:11 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration