Hi,
I've been trying to find enough time to put together a guide for exactly
what you're asking....
I personally always do a "Custom Install" and "Select Individual Packages"
when it comes to the installer. I'll choose a very minimum system. I don't
have a package list for you, sorry.
As far as the kernel goes, only compile in what you need for your specific
hardware. It should be very minimal. My semi-commented .config looks like
this for 2.2.16:
# general processor stuff, I'm too lazy to list each one
CONFIG_M686=y
CONFIG_X86_WP_WORKS_OK=y
CONFIG_X86_INVLPG=y
CONFIG_X86_BSWAP=y
CONFIG_X86_POPAD_OK=y
CONFIG_X86_TSC=y
CONFIG_X86_GOOD_APIC=y
CONFIG_1GB=y
CONFIG_MTRR=y
# fw1 is a module, so you need to set both of these
CONFIG_MODULES=y
CONFIG_MODVERSIONS=y
CONFIG_NET=y # networking is good on a firewall :)
CONFIG_PCI=y # the nics are on a pci bus
CONFIG_PCI_GOANY=y # how it accesses the pci bus
CONFIG_PCI_BIOS=y # I don't understand the pci stuff
CONFIG_PCI_DIRECT=y # more pci black magic
CONFIG_SYSVIPC=y # interprocess communication: "just say y"
CONFIG_SYSCTL=y # to turn on ip forwarding
CONFIG_BINFMT_ELF=y # to run any programs
CONFIG_BLK_DEV_FD=m # I never use the floppy, so it's a module
CONFIG_PACKET=y # tcpdump needs this
CONFIG_UNIX=y # unix domain sockets like /dev/log
CONFIG_INET=y # tcp/ip networking
CONFIG_IP_ROUTER=y # faster performance for a router (firewall)
CONFIG_SKB_LARGE=y # probably doesn't make a difference - only good
for long lines over 2 megs/sec
CONFIG_SCSI=y # I have scsi disks
CONFIG_BLK_DEV_SD=y # I have scsi hard disks
CONFIG_SCSI_AACRAID=y # It's a Dell with an Adaptec Raid Card
CONFIG_NETDEVICES=y # for network cards
CONFIG_NET_ETHERNET=y # for ethernet network cards
CONFIG_NET_EISA=y # for my ethernet card
CONFIG_EEXPRESS_PRO100=y # I have Intel ether express pro cards
CONFIG_VT=y # virtual terminal, to use a monitor - actually not
useful since it doesn't have a montor :)
CONFIG_VT_CONSOLE=y # prints kernel messages to my non existent monitor :)
CONFIG_UNIX98_PTYS=y # pseudo terminals for telnet, I think I could
actually live without them and use the old style devices
CONFIG_UNIX98_PTY_COUNT=256 # the num of pseudo terminals
CONFIG_PROC_FS=y # the proc filesystem, for things like
ip_forwarding
CONFIG_DEVPTS_FS=y # the pseudo terminal filesystem
CONFIG_EXT2_FS=y # ext2 filesystem, what everything is
written to on disk
CONFIG_VGA_CONSOLE=y # use a plain old vga display on my non-existant
monitor :)
Good Luck - Mark Ingles
At 02:09 PM 1/9/01 , frustis kellons wrote:
>Hi,
>
>I need to install Firewall-1 v.4.1 over Linux Red Had 6.1 on a HP Netserver
>LPR.
>
>Anybody knows where can I find a guide so I can optimize the Linux kernel
>compilation and minimise the number of packages to install?
>
>
>Best regards and thank you in advance,
>
>Frustis.
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
