AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > OS, Software, Firmware, and BIOS


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 29th October, 2004, 08:11 AM
jimbobaggies's Avatar
Member
 
Join Date: April 2003
Location: Torbay, UK. The English Riviera!
Posts: 432
Send a message via ICQ to jimbobaggies Send a message via MSN to jimbobaggies Send a message via Yahoo to jimbobaggies

Post Linux firewall / router etc....

I'm just buying myself a little machine to run as firewall / mail server / print server / router (and possibly other stuff), and Im getting Mandrake 10 to put on it! I have 9.1 & 9.2, but I read that in versions earlier than 10 there are problems with shorewall setup (although I considered using IPCOP).

Anyways, the system is as follows;

ASUS Terminator A7VT DDR barebones system (w/ CD-ROM / Floppy Drive)
AMD Semperon 2200+ 1.5GHz
2*256Mb Crucial PC2700

Got a 20Gb hard disk to start with, will probably use this as dual boot, cause I'm learning networking at the moment, so I will need to load various OS, and I wouldn't mind having a go at Longhorn as well, later I might add a bigger hard disk so I can use it as storage when I expand my home network.

It has on-board LAN, which I will use to connect to my Windoze machine, then I've got an NIC to connect to my Ethernet modem, and I've purchased a KVM 2-Port switch so I can swap between the two boxes.

So, what do you guys think, anything I've forgotten, stuff I need to know, tips with set-up and software, help appreciated!!
__________________

DFI LanpartyUT nF4 Ultra-D [BIOS N4LD406]
AMD Athlon 64 X2 4200+ Zalman CNPS8700 LED Cooler
OCZ (2 x 1GB) PC3200 Platinum Series EL-DDR [2-3-2-5]
XFX GeForce 7800GT Extreme LED Edition [480/1200]
Seagate Barracuda 250GB SATA II 16MB Cache
Seagate Barracuda 320GB SATA II 16MB Cache
Samsung CDDVDW SH-S203B
Antec Sonata - TruePower 2.0 550W
Samsung SyncMaster 172x



Last edited by jimbobaggies; 29th October, 2004 at 10:03 AM.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 29th October, 2004, 10:29 AM
Chief Systems Administrator
 
Join Date: September 2001
Location: Europe
Posts: 13,075

Remember you should NOT expose any unprotected system to the internet, even during installation. It doesn't take long for a machine to be infected.

Personally, I'm using a mini-ITX board with a 600MHz processor (the slowest I could find!), and with just firewall/DHCP on the machine, I struggle to get the processor load above 2%. This is using OpenBSD rather than Linux however. This whole setup will fit happily in less than 128Mbyte of disk space, and really doesn't need much memory to run.

However, I used FWBuilder to build the ruleset for my OpenBSD firewall. I have a requirement for support for multiple IP addresses, and the OpenBSD firewall (pf) is pretty powerful.
__________________
Any views, thoughts and opinions are entirely my own. They don't necessarily represent those of my employer (BlackBerry).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 29th October, 2004, 03:44 PM
Gizmo's Avatar
Chief BBS Administrator
BassTeroids Champion, Global Player Champion, Aim & Fire Champion, Puzzle Maniax Champion, Othello Champion, Canyon Glider Champion, Unicycle Challenge Champion, YetiSports 9: Final Spit Champion, Zed Champion
 
Join Date: May 2003
Location: Webb City, Mo
Posts: 16,178
Send a message via ICQ to Gizmo Send a message via AIM to Gizmo Send a message via MSN to Gizmo Send a message via Yahoo to Gizmo Send a message via Skype™ to Gizmo

For maximum security, you should make sure that your policy is 'default deny'. In other words, if the firewall hasn't got a specific requirement in its rules to allow the packet, it should drop it.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 29th October, 2004, 07:06 PM
GrahamGarside's Avatar
Member/Contributer
 
Join Date: September 2004
Location: England
Posts: 4,572

bsd is definately more secure but thats something you can move onto when you have some experience with linux
Are you only conecting the one system to it?
Also that system is quite powerful for those needs, I'm currently setting up my home to share with 2-4 systems and I'm only using a 400mhz celeron with 128mb of ram
even with print/mail/file server tasks that will still be overkill really
a refurbished pc may be a much better option, my celeron only cost me £18 and my switch 50p so I have a 7 port firewall router for less than the cost of an actual 4 port boradband router and much more flexability
if you want a new system then I recomend something like Áedán has done with a mini-itx board, it will use much less power be silent and save you quite a bit
__________________
"Well yes but I'm afraid I prematurely shot my wod on what was supposed to be a dry run if you will, so now I'm afraid I have something of a mess on my hands."

Tobias Fünke, M.D.

AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 29th October, 2004, 07:38 PM
jimbobaggies's Avatar
Member
 
Join Date: April 2003
Location: Torbay, UK. The English Riviera!
Posts: 432
Send a message via ICQ to jimbobaggies Send a message via MSN to jimbobaggies Send a message via Yahoo to jimbobaggies

I plan on partitioning off the hard drive, and installing stuff like longhorn, and windows server software for playing around, and educational purposes, plus it will be portable if I want to take it anywhere (LAN's for instance), so it will be powerful enough to cope with games.
__________________

DFI LanpartyUT nF4 Ultra-D [BIOS N4LD406]
AMD Athlon 64 X2 4200+ Zalman CNPS8700 LED Cooler
OCZ (2 x 1GB) PC3200 Platinum Series EL-DDR [2-3-2-5]
XFX GeForce 7800GT Extreme LED Edition [480/1200]
Seagate Barracuda 250GB SATA II 16MB Cache
Seagate Barracuda 320GB SATA II 16MB Cache
Samsung CDDVDW SH-S203B
Antec Sonata - TruePower 2.0 550W
Samsung SyncMaster 172x


Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #6 (permalink)  
Old 30th October, 2004, 12:00 AM
GrahamGarside's Avatar
Member/Contributer
 
Join Date: September 2004
Location: England
Posts: 4,572

maybe you could consider a refurbished pc as well to be the firewall/router and build the other sytem as a file/media/print server, it would only cost £10-20 for such a system and it could always be on rather than being disrupted when you take it to lans or dual boot
__________________
"Well yes but I'm afraid I prematurely shot my wod on what was supposed to be a dry run if you will, so now I'm afraid I have something of a mess on my hands."

Tobias Fünke, M.D.

AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
wireless router/cabled router issues andrew726 Mobile Devices and Networking 6 23rd June, 2005 09:56 PM
Router, Firewall, Webserver, small scale. Advice please stigweed Data Security 6 5th July, 2004 05:52 PM
Uplink router to router? LP Mobile Devices and Networking 6 24th August, 2003 03:53 PM
router firewall (NAT) kat ThunderRd's AOA FOLDING@HOME Team 3 16th June, 2002 09:24 PM
ICQ and firewall / router Mr Swede Mobile Devices and Networking 13 3rd January, 2002 10:07 PM


All times are GMT +1. The time now is 05:55 PM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0