On Thu, 01 Jul 2004 15:20:11 +1200 Yuri de Groot <[EMAIL PROTECTED]> wrote:
> Nick Rout wrote: > > Sorry to Roger and anyone else that I did not get that > > demo up and running last night, the meeting seemed to > > degenerate into a free for all after the short and fairly > > inconclusive installfest discussion. > > Darn - missed it. Hard to work until 9pm last night. > > > IPCOP is fairly easy to set up (says me who has done it > > many times). If anyone wants help with doing it then I am > > happy to come around and set it up for you, depending on > > time etc. or I will do it for you at the installfest. > > What he said. > For me it was the easiest distro I've ever installed. > Probably because it's a dedicated-single-purpose distro > rather than a general purpose, so no X or sound or CUPS etc > to configure. Also no need to select packages etc. > > The web interface is fairly simple too. > There was one gotcha - for dial-up it only allowed you to > chose a modem connected to com1, com2, com3 or com4. For > *nix folks, that means ttyS0 to ttyS3. My internal PCI > modem's UART registered as ttyS4, which corresponds to com5. > It was eventually fixed with a symbolic link > /dev/ttyS3->ttyS4 as I've mentioned on a post a few months > ago when I did it. > > I don't know how you'd get on with a winmodem - my hunt for > a real PCI hardware modem is chronicled on the list > archives. > AFAICT ipcop does not have gcc or make installed, so a > source tarball of your favourite modem driver needs to be > compiled on another box that has the same lib versions. true, in fact the best way would be to build an ipcop system from source. This produces and entire tree of an install, ie a "virtual" distro. it then picks the eyes out of it and places the bits it wants into an iso. Bingo ipcop from scratch (it is based on Linux From Scratch) It leaves the tree behind so you could chroot in at any time and compile various drivers, then just load them onto the firewall. Alternatively you could change the tedious makefiles and compile your own custom version of ipcop. > IMHO firewalls should not have compilers to aid those > hackers who do manage to get through. > > If you are on dial-up it's a good idea to set the homepage > of your browsers on machines behind the firewall to point to > the ipcop "connect" page. > > Yuri -- Nick Rout <[EMAIL PROTECTED]>
