On Wed, 28 Jul 2021 12:53:38 +0100 (BST) "G.W. Haywood via clamav-users" <[email protected]> wrote:
> I'd recommend not using any big distro for your perimiter firewall. > I use one of the purpose-built stripped-down firewall distributions. "..our home firewall and gateway -- with iptables, multi-LAN routing (with local DNS), a bit of bridging, encrypted tunnels to elsewhere, etc." I forgot to mention that it also logs to disk all Internet traffic, which is handy for occasional historical analysis of events via Wireshark. As far as being stripped down goes, the firewall/gatewaay has no X-windows stuff at all installed. I think stripped-down distros are often too focused. And from what I've seen of some common firewalls, they're too simple-minded (e.g. firewalld), perhaps aimed at people who are terrified of the command line. (I personally found the CLI to be a great improvement over punched cards, just as the GUI is a wonderful improvement for many -- but not all -- tasks.) Also, Debian, being a major distro which is the basis for Ubuntu and others, has long been very reliable in providing security and bug fixes. How many smaller distros are as future-proof? Finally, do any firewall distros address inter-LAN filtering? We have two major LANs, Black and Red. Black is the trusted LAN, while Red is for Internet TV etc. (on physically separate computers, of course). Red can access the Internet but is not allowed access to Black. Black has limited access to Red (for SSH, VNC and the like). Both are firewalled from the Internet (with Red a bit less so). _______________________________________________ clamav-users mailing list [email protected] https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
