I would like to maybe talk a little about RedHat Linux and FW
I agree with most comments that have been said about FW-1 and linux
however, I talk from experience running FW (CP2000) on RedHat Linux has
it's advantages.
We have tested in house now for weeks FW1 and RedHat Linux.
the config was as below
Intrusion.com 8001 Server (Celeron 500) 256Mb Ram
Intel Based system with 2 Intel Nics
RedHat Linux 6.1 with Kernel 2.2.xxx
The hardest thing was getting the kernel stable and fixing all the
services that wer'nt required.
The benefits of running RedHat Linux where the amount of throughput
on such a small machine.
The nice thing was the linux server didn't even flinch.
VPN was quite nice to and we had it talking using DES to a CP Firewall on NT
and Sonicwall using FWZ and IKE.
Our team of linux and firewall guys have written a number of docs on the
setup of RedHat Linux and FW for this scenario as we are going to build
machines for
some of our clients.
If anyone would like a copy of these docs please feel free to email me
directly.
It was hard to setup and get running in the correct environment but once we
did
it was worth the time spent.
Cheers
Justin Derry
IT Manager
Speedwell
email : [EMAIL PROTECTED]
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Thursday, July 20, 2000 2:12 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [FW1] Linux based Checkpoint Installation
Hi !
I tried FW-1 on Linux , but ........ It opened my eyes.
1. The rpm on the FW-1 2000 CD is compatibel only to kernel 2.2.x or kernel
releases before 2.2.14. The means 2.2.13 and before.
2. There is no way u can uppgrade your kernel according to Red Hats own
recommendations. Checkpoint wrote a binary about 700 kb big, wich is linked
to the kernel.
I had some big problems with Linux Red Hat when i wanted to install it on a
Compaq ML350. The PCI slots on the Compaq machine doesnt like kernel 2.2.14
or earlier + it must be a SMP kernel. The binary in the rpm version from
Checkpoint FW-1 2000 CD that i have doesnt support SMP, even thou i think
they are saying it does.
3. Does anyone know if Checkpoint is working with Linux, or related kernel
updates or problems ?!:)( If they were, they could at least write
announcement or news on their web. I havent seen anything.
I downloaded a Linux fix from their web, but it only had some small FW-1
related problems, nothing to do with the OS.
I would never recomend anyone to use Linux and FW-1.
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday,
July 20, 2000 9:24 AM
To: [EMAIL PROTECTED]
Subject: [FW1] Linux based Checkpoint Installation
Hi,
We are planning to install Checkpoint 4.1 on Linux, our concern is
1. As this is security related issue and Linux source code is available
freely to everyone ?
2. Linux is developed by a group of developers and can we trust that what
ever these developers have contributed doesnot have malicious programs built
into it ?
3.Future OS updates will be again thru the same group of develpers ?
4. Is it safe going with linux for security solutions or opt for NT, UNIX ?
regs
Sathish M R
Network Systems Engineer
Euclid India Limited
Bangalore.
<< File: ALTERNATIVE.HTM >>
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
