I know it's kind of a late response but I agree with Jason. There is also a distro that boots from a CDROM and uses a locked fdd as the config files for firewalls called DevilLinux. It may do what you need in that aspect, but ONLY if you are going to use a second machine like Jason recommends.
On Monday 10 March 2003 7:52 pm, Jason Tower wrote: > > This server is going to do way too > > many things (I generally like to keep my internal and external services > > separate), but I only have one and won't be able to segment just yet. > > i would *strongly* suggest getting an old pentium 100 to handle the > firewall/vpn duties (i'm assuming that's what you need when you mention > iptables and freeswan). it's not that a single machine isn't capable of > doing everything you mention, but configuration and troubleshooting become > much more difficult, and it's harder to keep network security and server > security seperate. > > something like smoothwall or openbsd on a old stripped down box make > excellent firewall boxes, and since you can use "obsolete" hardware the > cost is virtually nil (i'll sell you a suitable box for $50 if it will > help). once you do that, your choice of distros for the main server > becomes more flexible. redhat, suse, mandrake, debian: they all have their > pros and cons, everyone has a favorite, and all are capable of doing what > you want. take your pick, if you get into trouble that's what the list is > for. good luck! > > jason > _______________________________________________ > TriLUG mailing list > http://www.trilug.org/mailman/listinfo/trilug > TriLUG Organizational FAQ: > http://www.trilug.org/~lovelace/faq/TriLUG-faq.html -- --------------------------------------------------------------------- Roy Vestal [EMAIL PROTECTED] http://www.trilug.org http://www.trilug.org/~rvestal Just another want-to-be geek... _______________________________________________ TriLUG mailing list http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ: http://www.trilug.org/~lovelace/faq/TriLUG-faq.html
