PaulDotCom mailing list archives
home firewall/server
From: cclymer at gmail.com (Chris Clymer)
Date: Fri, 10 Jul 2009 11:01:29 -0400
There is an embedded version of pfsense designed for flash media to limit reads/writes. Download that, dd it to a cf card, pop that in your soekris. Connect a laptop up to the lan port, IIRC it defaults to 192.168.1.1 and serves up DHCP. Default creds might be pfsense/ admin, thats documented on their site somewhere. Should be able to do all the setup from there in the web gui Sent from my iPhone On Jul 9, 2009, at 11:20 AM, Bradley McMahon <bradmcmahon at gmail.com> wrote:
I have a soekris 4801 and I have been meaning to get pfsense on it. What method did you use to get it on. -Brad On Thu, Jul 9, 2009 at 10:29 AM, Chris Clymer <cclymer at gmail.com> wrote: I second that. Ive been using pfsense for years in environments ranging from a small soekris serving a few users to redundant rackmount boxes serving hundreds. Easily the best open source firewall appliance ive used...its got more features and a better interface than many of the commercial ones. Sent from my iPhone On Jul 8, 2009, at 11:59 PM, Brian H <binarynomad at gmail.com> wrote:I've had a nice amount of success with pfSense (http:// www.pfsense.com/) which is a bootable CD, based off of FreeBSD,whichcan be installed to a HD. It comes with some nice built in features like, Vlan support, QoS, load balancing, VPN, traffic monitoring, RRD Graphs, live connection status and bandwidth usage, and it allows you to install modulesthatlet you a extend it with things like: ntop, squid, captive portal, WoL, darkstat, freeradius, snort, etc. ---- Brian H binarynomad at gmail.com http://www.binarynomad.com On Jul 8, 2009, at 4:31 PM, Dale Stirling wrote:For a Firewall Gateway device that I use at home is the community edition of Astaro. http://www.astaro.com It has heaps of features and I have deployed the commercialsoftwareand appliance versions in many organisations. Dale On Thu, Jul 9, 2009 at 2:14 AM, Vincent Lape <vlape at me.com> wrote: Have not played with it in a couple years but try taking a look at ClarkConnect http://www.clarkconnect.com/ On Jul 8, 2009, at 7:41 AM, Nils wrote:For file/web and quite some other services I recommend the eisfair project . It has a decent package and update management. http://www.eisfair.org/en/eisfair/news/ I have it running and serving Samba shares for quite some yearson a--> Pentium II 333Mhz <-- ;-) I doubt it could be used as firewall. And if, I'd never recommend having the firewall on the same system as the data. Cheers, Nils -----Original Message----- From: pauldotcom-bounces at mail.pauldotcom.com [mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf OfDmitryNedospasov Sent: Wednesday, July 08, 2009 2:31 PM To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] home firewall/server -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 If you want to have some fun, I run openwrt x86 in a xen VM on myhomeserver. You just have to custom compile a kernel from the svn and enable paravirtualization. Works great, and i get full performance out of my connection (as opposed to my wrt54gl which would top out at 30-40Mbit/s) D. On Jul 8, 2009, at 11:02 , Bert Van Kets wrote:Hi guys, I'm a newbie when it come to setting up a server with enterprise services. I have been using Linux for several years now andhave aMythTV box running. I have four PCs running and there's noWindows inthis house. :-D I was playing with the idea of setting up a multi purpose server (file sharing, print server, proxy, DNS, ...). The terms multi-purposeandsecurity do not go hand in hand, but that is a trade off I havetotake because I can not afford to run a full rack. The main question is: Can I use the one machine as a firewall,usingmultiple network cards on different subnets, and at the same timerunSquid, SMTP, DNS, DHCPD, CUPS, etc.. on it? What is the take of the experts on a situation like this? Keep in mind this is a home situation with a limited budget. Thanks. Bert _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) iEYEARECAAYFAkpUkZcACgkQdm82SADo56pjpgCfbSNXfAHqM1fAsPR1mFFKl0Bh fRYAoMVy9Ny/tN++npjoKZPY/bzr95mr =rdQ6 -----END PGP SIGNATURE----- _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090710/acf54f84/attachment.htm
Current thread:
- home firewall/server, (continued)
- home firewall/server Carlos Perez (Jul 08)
- home firewall/server Cezar Spatariu Neagu (Jul 08)
- home firewall/server Bradley McMahon (Jul 08)
- home firewall/server Dmitry Nedospasov (Jul 08)
- home firewall/server Nils (Jul 08)
- home firewall/server Vincent Lape (Jul 08)
- home firewall/server Dale Stirling (Jul 08)
- home firewall/server Brian H (Jul 08)
- home firewall/server Chris Clymer (Jul 09)
- home firewall/server Bradley McMahon (Jul 09)
- home firewall/server Chris Clymer (Jul 10)
- home firewall/server infolookup at gmail.com (Jul 10)
- home firewall/server Carlos Perez (Jul 10)
- home firewall/server Chris Clymer (Jul 10)
- home firewall/server gameman733 (Jul 13)
- home firewall/server infolookup at gmail.com (Jul 13)
- home firewall/server Colin Vallance (Jul 13)
- home firewall/server Colin Vallance (Jul 13)
- home firewall/server gameman733 (Jul 13)
- home firewall/server Nils (Jul 08)
- home firewall/server Carlos Perez (Jul 08)
- home firewall/server Jack Daniel (Jul 10)