[ale] OT: Firewall purchase
    Bob Toxen 
    bob at verysecurelinux.com
       
    Wed Jul  7 00:16:15 EDT 2004
    
    
  
On Sun, Jul 04, 2004 at 04:26:51PM -0400, Dow Hurst wrote:
> Dow Hurst wrote:
...
> >Look at building it yourself using Slackware, Bob Toxen's second 
> >edition of his book, and a Epia based fanless supersmall machine with 
> >dual builtin NICs.  His book has drop in iptables rules that are 
> >excellent.  Once you get that far then going thru the IPSEC Howto is 
> >not too difficult.  Just involves a kernel module compile and insertion.
> >Links:
> >http://www.tldp.org/HOWTO/VPN-Masquerade-HOWTO.html#toc3
> >http://www.impsec.org/linux/masquerade/ip_masq_vpn.html
> >http://www.onlamp.com/pub/a/bsd/2004/03/11/Big_Scary_Daemons.html 
> >(this is one idea)
http://www.realworldlinuxsecurity.com
> Oh, I just realized my booboo.  Use Bob's first edition and the ipchains 
> ruleset since I am not sure of the iptables and IPSEC module compatibility.
The second edition has both IP Chains and IP Tables and more information
on IP Chains -- including debugging -- than the first edition.
> But the Epia M based motherboard has a dual NIC version 
> IIRC.
> Dow
Bob Toxen
bob at verysecurelinux.com               [Please use for email to me]
http://www.verysecurelinux.com        [Network&Linux/Unix security consulting]
http://www.realworldlinuxsecurity.com [My book:"Real World Linux Security 2/e"]
Quality Linux & UNIX security and SysAdmin & software consulting since 1990.
"Microsoft: Unsafe at any clock speed!"
   -- Bob Toxen 10/03/2002
    
    
More information about the Ale
mailing list