Re: Need Help Building Linux Based Firewall

[j m <security () wirerats org>]

In-Reply-To: <018001c295bc$2d30ac30$4f03150a () sc org>

Hello,

> From my experience and knowledge that I have gathered throughout the net I 
believe that OpenBSD is prolly the best OS to use as a firewall.  If you 
are looking at Redhat linux I would go with a Server install without X and 
use Bastille to harden your box (http://www.bastille-linux.org).  If I was 
you I would scour through the last few days of posts and look at some of 
the interesting posts regarding *nix firewall setup.  There have been some 
real good posts that should be able to answer more of your in-depth 
questions.

jm

> Received: (qmail 26375 invoked from network); 27 Nov 2002 20:40:44 -0000
> Received: from outgoing2.securityfocus.com (HELO 
outgoing.securityfocus.com) (205.206.231.26)
>  by mail.securityfocus.com with SMTP; 27 Nov 2002 20:40:44 -0000
> Received: from lists.securityfocus.com (lists.securityfocus.com 
[205.206.231.19])
>       by outgoing.securityfocus.com (Postfix) with QMQP
>       id C73AA8F309; Wed, 27 Nov 2002 10:48:47 -0700 (MST)
> Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm
> Precedence: bulk
> List-Id: <security-basics.list-id.securityfocus.com>
> List-Post: <mailto:security-basics () securityfocus com>
> List-Help: <mailto:security-basics-help () securityfocus com>
> List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com>
> List-Subscribe: <mailto:security-basics-subscribe () securityfocus com>
> Delivered-To: mailing list security-basics () securityfocus com
> Delivered-To: moderator for security-basics () securityfocus com
> Received: (qmail 12278 invoked from network); 27 Nov 2002 02:05:40 -0000
> Message-ID: <018001c295bc$2d30ac30$4f03150a () sc org>
> From: "Khuzairi Yahaya" <khuzairi () seccom com my>
> To: <security-basics () securityfocus com>
> References: <HHEPLPKJCLHPLFEPDCPBGEJKCEAA.burntcircuit () phreaker net>
> Subject: Need Help Building Linux Based Firewall
> Date: Wed, 27 Nov 2002 10:24:54 +0800
> MIME-Version: 1.0
> Content-Type: text/plain;
>       charset="iso-8859-1"
> Content-Transfer-Encoding: 7bit
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Mailer: Microsoft Outlook Express 6.00.2600.0000
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
>
> Dear Tech Gurus,
>
> I was given the responsibility to setup a Linux Based Firewall.  I am
> looking at either Redhat, Mandrake and Suse
> on intel platform and Sparc based.
>
> I need your opinion on the following:
> 1.  Which OS is considered the best suited for a firewall?
> 2.  What are the application/software required to be installed?
> 3.  What security conserns/issues I need to address?
> 4.  Should I use multiple processors?
> 5.  Any website for reference?
>
> Any help is very much appreciated here.
>
> Many thanks.
>
> Kuzek