You'll have a bunch of issues to deal with here, and it'd probably be best to handle each one individually.
First, basic connectivity/firewall IPCop is an excellent firewall which will stop most windows based attacks from getting into your network (at the port level that is). However, it is dedicated to a specific task of providing routing/firewall capabilities. Adding other capabilities to it (at least the ones you're looking for) wouldn't be overly easy. If you were to build a second server to sit behind IPCop, then the task is a fair bit simpler (this is how I have my network setup at home). If you truly want one box, then you're looking at working with IPTables and snort to provide the same functionallity that IPCop offers. But now you can add in the other options you're looking for as well. (I'm sure you can do the same with IPCop, but I imagine it'd be a little tougher to get in place and keep stable). Second, Email - antivirus and spam blocking. There are a bunch of ways this can be handled. Mark has already suggested fetchmail and procmail. You can also setup your own email server, and configure it to handle these things for you as well. However doing this typically means you need a domain name, and also need a DNS MX record somewhere pointing to your server. If this is acceptable to you, then my own experience suggests that qmail is easier to get up and running, and add the antivirus and spamassassin to it. I've played with sendmail and postfix before settling on qmail - sendmail is a pain to get setup and/or understand, postfix is simpler to configure and understand, until you want to add in an "out of process" routine like spamassassin. qmail is very simple to get setup and a nifty guide will walk you through every step of making it work. Once you have the basic qmail installed, you install the qmail-scanner package (and whatever antivirus package you want to use, and spamassassin). I have the qmail part setup and have yet to see a virus come through to my windows workstations via email, and spam is suitably marked (when I'm satisfied that legitimate mail is not getting tagged as spam, I'll change the config to just delete the spam). Third, Web Filtering. This type of functionality can be provided by some proxy servers (I think Squid can do this for you, but I have no experience with squid). Failing that, there are tools like Net-Nanny that can filter content. I have to admit that I don't have a lot of knowledge in this area as it's something I haven't had to worrry about yet. Hope all this helps in some way... good luck with it... Shawn -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Pete Sent: Thursday, May 20, 2004 10:01 AM To: CLUG General Subject: [clug-talk] Which programs to use ? Hi All : I would like to set up a single pc with 2 nic that does : firewall / spam filter / virus scanner and optionally web content filtering . The idea is to have something like this : +---------------+ +----------------------+ | ISP's servers |...-[modem]--| My filter it all box |-->Internal network | | | (NAT) (Proxy) | with some | POP mail | +----------------------+ WinBlows +---------------+ Is there OSS that try to stop WinBlows viruses in e-mails/web pages? Can I get spamassassin between a pop server and a m$ outlook pop client? I know it is NOT a good thing to have other apps running on your firewall but multiple boxes is not a good thing for my wallet :-S Ideas / suggestion appreciated. Thanks Peter _______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca _______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca
