PaulDotCom mailing list archives

home firewall/server

From: cclymer at gmail.com (Chris Clymer)
Date: Fri, 10 Jul 2009 11:01:29 -0400

There is an embedded version of pfsense designed for flash media to  
limit reads/writes.  Download that, dd it to a cf card, pop that in  
your soekris.  Connect a laptop up to the lan port, IIRC it defaults  
to 192.168.1.1 and serves up DHCP.  Default creds might be pfsense/ 
admin, thats documented on their site somewhere. Should be able to do  
all the setup from there in the web gui

Sent from my iPhone

On Jul 9, 2009, at 11:20 AM, Bradley McMahon <bradmcmahon at gmail.com>  
wrote:

I have a soekris 4801 and I have been meaning to get pfsense on it.  
What method did you use to get it on.
-Brad



On Thu, Jul 9, 2009 at 10:29 AM, Chris Clymer <cclymer at gmail.com>  
wrote:
I second that. Ive been using pfsense for years in environments
ranging from a small soekris serving a few users to redundant
rackmount boxes serving hundreds.

Easily the best open source firewall appliance ive used...its got more
features and a better interface than many of the commercial ones.

Sent from my iPhone

On Jul 8, 2009, at 11:59 PM, Brian H <binarynomad at gmail.com> wrote:

I've had a nice amount of success with pfSense (http://
www.pfsense.com/) which is a bootable CD, based off of FreeBSD,

which

can be installed to a HD.

It comes with some nice built in features like, Vlan support, QoS,
load balancing, VPN, traffic monitoring, RRD Graphs, live connection
status and bandwidth usage, and it allows you to install modules

that

let you a extend it with things like:  ntop, squid, captive portal,
WoL, darkstat, freeradius, snort, etc.

----
Brian H
binarynomad at gmail.com
http://www.binarynomad.com

On Jul 8, 2009, at 4:31 PM, Dale Stirling wrote:

For a Firewall Gateway device that I use at home is the community
edition of Astaro.

http://www.astaro.com

It has heaps of features and I have deployed the commercial

software

and appliance versions in many organisations.

Dale

On Thu, Jul 9, 2009 at 2:14 AM, Vincent Lape <vlape at me.com> wrote:
Have not played with it in a couple years but try taking a look at
ClarkConnect

http://www.clarkconnect.com/

On Jul 8, 2009, at 7:41 AM, Nils wrote:

For file/web and quite some other services I recommend the eisfair
project .
It has a decent package and update management.
http://www.eisfair.org/en/eisfair/news/
I have it running and serving Samba shares for quite some years

on a

-->
Pentium II 333Mhz  <--    ;-)

I doubt it could be used as firewall. And if, I'd never recommend
having the
firewall on the same system as the data.

Cheers,
Nils

-----Original Message-----
From: pauldotcom-bounces at mail.pauldotcom.com
[mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of

Dmitry

Nedospasov
Sent: Wednesday, July 08, 2009 2:31 PM
To: PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] home firewall/server

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If you want to have some fun, I run openwrt x86 in a xen VM on my

home

server. You just have to custom compile a kernel from the svn and
enable
paravirtualization.

Works great, and i get full performance out of my connection (as
opposed to
my wrt54gl which would top out at 30-40Mbit/s)

D.

On Jul 8, 2009, at 11:02 , Bert Van Kets wrote:

Hi guys,

I'm a newbie when it come to setting up a server with enterprise
services. I have been using Linux for several years now and

have a

MythTV box running. I have four PCs running and there's no

Windows in

this house. :-D

I was playing with the idea of setting up a multi purpose server
(file
sharing, print server, proxy, DNS, ...). The terms multi-purpose

and

security do not go hand in hand, but that is a trade off I have

to

take because I can not afford to run a full rack.

The main question is: Can I use the one machine as a firewall,

using

multiple network cards on different subnets, and at the same time

run

Squid, SMTP, DNS, DHCPD, CUPS, etc.. on it?
What is the take of the experts on a situation like this? Keep in
mind
this is a home situation with a limited budget.

Thanks.

Bert
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)

iEYEARECAAYFAkpUkZcACgkQdm82SADo56pjpgCfbSNXfAHqM1fAsPR1mFFKl0Bh
fRYAoMVy9Ny/tN++npjoKZPY/bzr95mr
=rdQ6
-----END PGP SIGNATURE-----
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090710/acf54f84/attachment.htm

Current thread:

home firewall/server, (continued)
- home firewall/server Carlos Perez (Jul 08)
  - home firewall/server Cezar Spatariu Neagu (Jul 08)
  - home firewall/server Bradley McMahon (Jul 08)
- home firewall/server Dmitry Nedospasov (Jul 08)
  - home firewall/server Nils (Jul 08)
    - home firewall/server Vincent Lape (Jul 08)
    - home firewall/server Dale Stirling (Jul 08)
    - home firewall/server Brian H (Jul 08)
    - home firewall/server Chris Clymer (Jul 09)
    - home firewall/server Bradley McMahon (Jul 09)
    - home firewall/server Chris Clymer (Jul 10)
    - home firewall/server infolookup at gmail.com (Jul 10)
    - home firewall/server Carlos Perez (Jul 10)
    - home firewall/server Chris Clymer (Jul 10)
    - home firewall/server gameman733 (Jul 13)
    - home firewall/server infolookup at gmail.com (Jul 13)
    - home firewall/server Colin Vallance (Jul 13)
    - home firewall/server Colin Vallance (Jul 13)
    - home firewall/server gameman733 (Jul 13)
    - home firewall/server Jack Daniel (Jul 10)