Re: Linux Firewall Distributions

[Patrick Benson <benson () chello se>]

Skander Ben Mansour wrote:
> Hi Firewall-Wizards,
>
> Does anyone have experience with Linux based Firewall/Router distributions ?
>
> I am looking for a cost-effective firewall capable of handling three
> security domains (Internal Network, the Internet, and a DMZ) for a SOHO.
>
> A hardened linux box running NetFilter/IPtables with three network cards
> looks like a good fit.
> However, I would also welcome suggestions regarding low-budget hardware
> firewalls meeting these requirements.
>
> I believe that the now defunct Linux Router Project
> (http://www.linuxrouter.org/) has left some successors:
>
> http://leaf.sourceforge.net/
> http://www.smoothwall.org/
> http://www.devil-linux.org/
>
> Please let me know if you have used one of these linux firewall
> distributions and what your experience was (installation, configuration,
> maintenance).

Since cost seems to be your issue you may want to try LEAF, the Bering
and Bering-uClibc images can be booted from floppies or customized CD's.
If you're interested in using wifi there's the WISP-dist. Some of the
packages included are the djbdns suite (dnscache,tinydns), OpenSSH with
Openssl, OpenVPN, traffic shaping, shorewall, snort, among others. A
quickstart guide for setting up Shorewall with 3 interfaces:
http://www.shorewall.net/1.4/three-interface.htm 
(Note: Current stable version of Shorewall is 2.0.8)
and some hints on setting up a User-mode Linux environment, within your
own system, in order to compile your own binaries/packages. A little bit
outdated but nonetheless quite useful..
http://leaf.sourceforge.net/devel/jnilo/uml.html


Regards,   
-- 
Patrick Benson
Stockholm, Sweden
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards