csmith wrote:
>
> If you wanted to fire wall a mixed OS environment with a Linux box of
> about 30 to 60 computers that had access to the outside world
> (internet) via a T1 line and router and switch, what would be your
> recommendation for a for the firewall program ( IPChains or something
> else) and the hardware (use one NIC or two).
IPChains is probably your best bet. Although, the iptables code is supposed to
be pretty stable now, and that will replace ipchains in the 2.4 kernels. You
will most likely need to use masquerading, as well as port-forwarding if you
are going to be allowing outgoing services. You might want to take a look at
the Bastille-Linux tool (http://www.bastille-linux.com) which can help secure
the box. It's a series of hardening scripts for Linux (it's not a
distribution). As for the number of NIC's, I wouldn't recommend using any less
than 2, but if you have multiple subnets, you might want a NIC on each of them
(or at least one external, one DMZ, and one internal), depending on what your
internal routing is like. The Linux box should be, in my opinion, a low to
mid-range pentium (between 200-400MHz).
In any event, read the Firewall-Howto, IPMasq-Howto, and as much of the
IPChains documentation as you can! The ipchains man page has almost of of the
information that you need to use it.
FYI,
Kenny
--
Kenny Lussier
Systems Administrator
Mission Critical Linux
******************************
If at first you don't succeed,
destroy all evidence that you
tried
******************************
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************