Re: [Hardware] dual-nic MB for firewall box.
- Original Message - From: Michael Heironimus [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, March 04, 2003 2:49 AM Subject: Re: [Hardware] dual-nic MB for firewall box. On Mon, Mar 03, 2003 at 04:10:52PM -0800, Bill Moseley wrote: I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. I think most of the PC motherboards I've seen with dual NICs on-board have been expensive boards aimed at the high-end workstation and low-end server market. When they go on sale (every other week) you can pick up a cheap PCI card for $5-10, so that might very well be more economical. Most of these cheap cards are based on Realtek chips (so are most of the cheap on-board NICs), they're not exactly the best cards around but they do work. -- Michael Heironimus -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] If you're builing a firewall, have a look at http://www.linitx.com --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.445 / Virus Database: 250 - Release Date: 1/21/2003 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[Hardware] dual-nic MB for firewall box.
Anyone built up a small firewall/mail machine lately? I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. Via C3 would be good. I'm going to try to make the machine somewhat silent, so the C3 would be nice. But for this machine CPU power is not critical, although it may run an imap server. -- Bill Moseley [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [Hardware] dual-nic MB for firewall box.
On Mon, Mar 03, 2003 at 04:10:52PM -0800, Bill Moseley wrote: I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. I think most of the PC motherboards I've seen with dual NICs on-board have been expensive boards aimed at the high-end workstation and low-end server market. When they go on sale (every other week) you can pick up a cheap PCI card for $5-10, so that might very well be more economical. Most of these cheap cards are based on Realtek chips (so are most of the cheap on-board NICs), they're not exactly the best cards around but they do work. -- Michael Heironimus -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [Hardware] dual-nic MB for firewall box.
On Mon, 3 Mar 2003, Michael Heironimus wrote: On Mon, Mar 03, 2003 at 04:10:52PM -0800, Bill Moseley wrote: I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. I think most of the PC motherboards I've seen with dual NICs on-board have been expensive boards aimed at the high-end workstation and low-end server market. I see that. For example, I was just looking at an Intel Entry S845WD1-E board which sells for around $200 and wondering just what makes those server borards more expensive. It has dual nics, and Promise RAID, but still seems expensive. BTW -- on seller I was on the phone with commented that they are seeing less support for linux form Intel (for the intel boards) in the last six months. Don't know if that means linux is lagging on support or if (as he suggested) pressure from Microsoft. -- Bill Moseley [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [Hardware] dual-nic MB for firewall box.
hi ya On Mon, 3 Mar 2003, Michael Heironimus wrote: On Mon, Mar 03, 2003 at 04:10:52PM -0800, Bill Moseley wrote: I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. your looking for a tyan dual nic S2080GN mb .. about $125 .. w/ tualatin p3 cpu other mb that has onboard nic, onboard svga http://www.Linux-1U.net/1U_Features/MotherBoards - not many options w/ dual nics ... esp for low end c ya alvin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [Hardware] dual-nic MB for firewall box.
On Mon, Mar 03, 2003 at 04:10:52PM -0800, Bill Moseley wrote: Anyone built up a small firewall/mail machine lately? I'm looking for a motherboard replacement for a firewall machine on a small lan. I'd like to go all on-board for simplicity and cost, so on-board video, and dual nics (but I'm open to other suggestions). Something the bf2.4-xfs net install CD will work with. Via C3 would be good. I'm going to try to make the machine somewhat silent, so the C3 would be nice. But for this machine CPU power is not critical, although it may run an imap server. Is this for work or home. The quietest will be to get old note-PC with 2 PCMCIA slots or one nic on main body. (few hundred $$ or free from your friend) That way you have UPS build in :-) I use i486 50MHz which is good enough for home use. -- ~\^o^/~~~ ~\^.^/~~~ ~\^*^/~~~ ~\^_^/~~~ ~\^+^/~~~ ~\^:^/~~~ ~\^v^/~~~ + Osamu Aoki [EMAIL PROTECTED] Cupertino CA USA, GPG-key: A8061F32 .''`. Debian Reference: post-installation user's guide for non-developers : :' : http://qref.sf.net and http://people.debian.org/~osamu `. `' Our Priorities are Our Users and Free Software --- Social Contract -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Firewall Box
On Wed, Sep 13, 2000 at 09:07:22AM -0500, Matt Kopishke ([EMAIL PROTECTED]) wrote: Hi, I need to implement a firewall at work. It will be for the most part a pretty simple set up. I am going to set one of our Linux Boxes between the Router and the Switch. The Box has 3 NICs, one for the router side, one for the switch, and one for a backup cable connection. We have a block of IPs, and we will need to get to machines behind the firewall from the out side so I don't want to use ipmasq. What I plan on doing is just using ipchains to shutoff any unused ports, and strip the box of any questionable software (ie ssh instead of telnet). Has any one tried such a set up? And if they have could you pass on any pointers or things to watch out for? I also see there are a few packages out there to aid setup, how well do they work? Though I run Debian for my workstations (and a few servers), when it came time to put up a masquerading firewall proxy server at home, I turned to OpenBSD. Wes Sonnenreich and Tom Yates have written a really good book on the topic, _Building Linux and OpenBSD Firewalls_. Highly recommended. Note that there are a coupld of version issues with the book and current software (OpenBSD is now at 2.8pre, book was written to 2.5). There's a website for more detailed and up-to-date info. OpenBSD also has an excellent FAQ and very helpful mailing list. -- Karsten M. Self kmself@ix.netcom.com http://www.netcom.com/~kmself Evangelist, Opensales, Inc.http://www.opensales.org What part of Gestalt don't you understand? Debian GNU/Linux rocks! http://gestalt-system.sourceforge.net/K5: http://www.kuro5hin.org GPG fingerprint: F932 8B25 5FDD 2528 D595 DC61 3847 889F 55F2 B9B0 pgp8CzXUrQBn4.pgp Description: PGP signature
Firewall Box
Hi, I need to implement a firewall at work. It will be for the most part a pretty simple set up. I am going to set one of our Linux Boxes between the Router and the Switch. The Box has 3 NICs, one for the router side, one for the switch, and one for a backup cable connection. We have a block of IPs, and we will need to get to machines behind the firewall from the out side so I don't want to use ipmasq. What I plan on doing is just using ipchains to shutoff any unused ports, and strip the box of any questionable software (ie ssh instead of telnet). Has any one tried such a set up? And if they have could you pass on any pointers or things to watch out for? I also see there are a few packages out there to aid setup, how well do they work? Thanks, -Matt- ---+--+ [EMAIL PROTECTED] | | http://www.flni.com| A long time ago, in a state far, far away... | Web Guru, Perl jocky, | OKLAHOMA!| Linux bum, etc... |http://www.waldotheatre.org | --Debian GNU/Linux-- | | ---+--+
Re: Firewall Box
Try looking at the section on firewalling at the link pretty good info on testing and rule design. http://www.oreilly.com/catalog/linag2/book/index.html -- Original Message -- From: Matt Kopishke [EMAIL PROTECTED] Date: Wed, 13 Sep 2000 09:07:22 -0500 (EST) Hi, I need to implement a firewall at work. It will be for the most part a pretty simple set up. I am going to set one of our Linux Boxes between the Router and the Switch. The Box has 3 NICs, one for the router side, one for the switch, and one for a backup cable connection. We have a block of IPs, and we will need to get to machines behind the firewall from the out side so I don't want to use ipmasq. What I plan on doing is just using ipchains to shutoff any unused ports, and strip the box of any questionable software (ie ssh instead of telnet). Has any one tried such a set up? And if they have could you pass on any pointers or things to watch out for? I also see there are a few packages out there to aid setup, how well do they work? Thanks, -Matt- ---+--+ [EMAIL PROTECTED] | | http://www.flni.com| A long time ago, in a state far, far away... | Web Guru, Perl jocky, |OKLAHOMA!| Linux bum, etc... |http://www.waldotheatre.org | --Debian GNU/Linux-- | | ---+--+ -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: Firewall Box
Check out the debian firewall list. It will tell all. Matt Kopishke wrote: Hi, I need to implement a firewall at work. It will be for the most part a pretty simple set up. I am going to set one of our Linux Boxes between the Router and the Switch. The Box has 3 NICs, one for the router side, one for the switch, and one for a backup cable connection. We have a block of IPs, and we will need to get to machines behind the firewall from the out side so I don't want to use ipmasq. What I plan on doing is just using ipchains to shutoff any unused ports, and strip the box of any questionable software (ie ssh instead of telnet). Has any one tried such a set up? And if they have could you pass on any pointers or things to watch out for? I also see there are a few packages out there to aid setup, how well do they work? Thanks, -Matt- ---+--+ [EMAIL PROTECTED] | | http://www.flni.com| A long time ago, in a state far, far away... | Web Guru, Perl jocky, | OKLAHOMA!| Linux bum, etc... |http://www.waldotheatre.org | --Debian GNU/Linux-- | | ---+--+ -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
