On Wednesday 04 December 2002 06:04 pm, James Sparenberg wrote: > On Wed, 2002-12-04 at 15:41, Mark Weaver wrote: > > KevinO wrote: > > > <rant> > > > I ran (fought with, suffered with) SNF for several months. Now we use > > > Smoothwall. (IPCop should be similar) > > > Well I must say I did the same about a year ago. Gave up. Then I got hacked and decided to give it another go. Same exact trouble. It would hang on reboot at eth1 (outside interface) Every time. I rebuilt it 4 times and each time same thing. I decided to research some more. I found on the mandrake security list serve. Snort was trying to bring the nic up in promiscous mode. Once I figured out a way around this, I was able to get it working. Some VERy nice features in it. Buggy, yes. It is a wonderful way (once up) to play with snort, snortsnarf, and it has some wonderful web based monitoring tools.
> > > My suggestion: Use smoothwall or something similar. Don't bother with > > > SNF. > > > > > > Sorry Mandrake. I like your distributions and I support you > > > financially. > > > > > > But, SNF was a terrible product. Slow, wouldn't forward UDP (despite > > > allowing you to configure that in without any warnings or complaints.), > > > and too big of a distribution for a firewall. > > > > > > > > > SNF > 300MB download > > > > > > Smoothwall < 30MB download (and it does pretty much everything SNF > > > claims it will) Easier to use/figure out web interface too. > > > > > > I consider the time I spent with SNF to have been a total waste. > > > > > > </rant> > > > > > > KevinO > > > > > > James Sparenberg wrote: > > > > You mean you learned "nothing" about iptables and how to use them during > > that time using SNF? > > > > Mark > > No.... SNF is the 2.2 kernel and uses ipchains..... > > > ---- > > > > > > Want to buy your Pack or Services from MandrakeSoft? > > Go to http://www.mandrakestore.com
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com