On 06/29/2015 10:43 AM, m.r...@5-cent.us wrote:
James B. Byrne wrote:
On Mon, June 29, 2015 02:14, Sorin Srbu wrote:
OS 6?
Please note: I'm not criticizing, just curious about the argument
behind using a regular OS to do firewall-stuff.
Maintenance.
A consistent set of expectations does won
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of Gordon Messmer
> Sent: den 29 juni 2015 19:40
> To: CentOS mailing list
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of m.r...@5-cent.us
> Sent: den 29 juni 2015 17:25
> To: CentOS mailing list
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
Am 29.06.2015 um 19:40 schrieb Gordon Messmer :
> On 06/29/2015 06:46 AM, Sorin Srbu wrote:
>> Even considering a minimal CentOS install, is that still less minimal than
>> e.g. Smoothwall or Ipcop?
>
> Yes, a minimal install of CentOS is probably larger (less minimal) than a
> specialized distri
> I get good results with IPCop on an older box. I happened to already
> have my WAP set up, similar to David, with ethernet cable into my
> Netgear gigabit switch. But IPCop has a zone now for wifi and I could
> hook it into my IPCop and and get all it's benefits.
>
> I haven't bothered because I'
On Mon, 2015-06-29 at 08:17 -0700, david wrote:
>
> >
> >Yup. For, um, about a dozen years, I ran RH 7.1,7.2, 7.3, and eventually 9
> >on an old box that was nothing but a firewall router. I was seriously
> >paranoid - no gcc or any development tools, no X, not much of anything. To
> >the best of
On 06/29/2015 06:46 AM, Sorin Srbu wrote:
Even considering a minimal CentOS install, is that still less minimal than
e.g. Smoothwall or Ipcop?
Yes, a minimal install of CentOS is probably larger (less minimal) than
a specialized distribution.
In my world, security has a price and, and that
On 6/29/2015 7:43 AM, m.r...@5-cent.us wrote:
At some point, I may just get a PI, and run CentOS, or some
firewall/router distro, though that would mean not having WiFi for guests.
I'm using a UniFi AP for my wireless, actually, I have two of them at
home for full coverage. it works SO much s
On 06/28/2015 03:49 PM, Max Pyziur wrote:
From several sources, code, the stock CentOS iptables I've cobbled the
following /etc/sysconfig/iptables; while it works, I suspect that
there are holes:
# Firewall configuration written by system-config-firewall
# Manual customization of this file is n
On Mon, 29 Jun 2015, Tris Hoar wrote:
On 29/06/2015 16:59, Max Pyziur wrote:
On Sun, 28 Jun 2015, John R Pierce wrote:
> On 6/28/2015 3:49 PM, Max Pyziur wrote:
> > I also seem to need to load
> > iptable_nat
> > nf_nat_ftp
> >
> > via rc.local
> >
> > Is this correct?
>
> only
On 29/06/2015 16:59, Max Pyziur wrote:
On Sun, 28 Jun 2015, John R Pierce wrote:
On 6/28/2015 3:49 PM, Max Pyziur wrote:
I also seem to need to load
iptable_nat
nf_nat_ftp
via rc.local
Is this correct?
only if you're running some Linux build from the 1990s.
nothing on RHEL/CentOS sho
On Sun, 28 Jun 2015, John R Pierce wrote:
On 6/28/2015 3:49 PM, Max Pyziur wrote:
I also seem to need to load
iptable_nat
nf_nat_ftp
via rc.local
Is this correct?
only if you're running some Linux build from the 1990s.
nothing on RHEL/CentOS should need anything in rc.local
Then w
david wrote:
> At 07:43 AM 6/29/2015, you wrote:
>>James B. Byrne wrote:
>> > On Mon, June 29, 2015 02:14, Sorin Srbu wrote:
>> > OS 6?
>> >>
>> >> Please note: I'm not criticizing, just curious about the argument
>> >> behind using a regular OS to do firewall-stuff.
>> >
>> > Maintenance.
>> >
>>
At 07:43 AM 6/29/2015, you wrote:
James B. Byrne wrote:
> On Mon, June 29, 2015 02:14, Sorin Srbu wrote:
> OS 6?
>>
>> Please note: I'm not criticizing, just curious about the argument
>> behind using a regular OS to do firewall-stuff.
>
> Maintenance.
>
> A consistent set of expectations does wo
James B. Byrne wrote:
> On Mon, June 29, 2015 02:14, Sorin Srbu wrote:
> OS 6?
>>
>> Please note: I'm not criticizing, just curious about the argument
>> behind using a regular OS to do firewall-stuff.
>
> Maintenance.
>
> A consistent set of expectations does wonders for debugging odd-ball
> occur
Am 29.06.2015 um 15:46 schrieb Sorin Srbu :
>>
>>> Please note: I'm not criticizing, just curious about the argument
>>> behind using a regular OS to do firewall-stuff.
>>>
>>
>> Maintenance.
>>
>> A consistent set of expectations does wonders for debugging odd-ball
>> occurrences. Why learn t
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of James B. Byrne
> Sent: den 29 juni 2015 15:10
> To: CentOS mailing list
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
>
On Mon, June 29, 2015 02:14, Sorin Srbu wrote:
OS 6?
>
> Please note: I'm not criticizing, just curious about the argument
> behind using a regular OS to do firewall-stuff.
>
Maintenance.
A consistent set of expectations does wonders for debugging odd-ball
occurrences. Why learn the idiosyncras
15 08:11
> > To: CentOS mailing list
> > Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> > server
> >
> > > -Original Message-
> > > From: centos-boun...@centos.org [mailto:centos-boun...@centos.org]
> > On
>
On 6/29/2015 12:04 AM, Sorin Srbu wrote:
Gotcha'. Fewer watts may be worth it in the long run, as this is a device
that's always on for obvious reasons.
depends entirely on your performance requirements. the APU has no fans
AND no vents, the case sheet metal is the heatsink. this means it
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of John R Pierce
> Sent: den 29 juni 2015 09:03
> To: centos@centos.org
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
> O
On 6/28/2015 11:50 PM, Sorin Srbu wrote:
That DIY Kit was pretty cool, thanks for the info!
I note everyone is moving over to the Intel Avoton/Rangley 'system on a
chip', this is the Xeon Atom C2xx8 series, like this...
http://store.netgate.com/ADI/RCC-VE-2440-board.aspx
(other versions of Ra
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of John R Pierce
> Sent: den 29 juni 2015 08:29
> To: centos@centos.org
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
> O
On 6/28/2015 11:11 PM, Sorin Srbu wrote:
May I ask why you don't just use a made-for-the-purpose-distro like
Smoothwall to do this?
indeed, I use pfSense, running on a APU1D4 [1] router board as my
firewall, and a separate home server on a HP Microserver [2]. IMHO,
keeping the firewall functi
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of Sorin Srbu
> Sent: den 29 juni 2015 08:11
> To: CentOS mailing list
> Subject: Re: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
&
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of Max Pyziur
> Sent: den 28 juni 2015 20:50
> To: centos@centos.org
> Subject: [CentOS] Using a CentOS 6 Machine as a gateway/router/home
> server
>
>
On 6/28/2015 3:49 PM, Max Pyziur wrote:
I also seem to need to load
iptable_nat
nf_nat_ftp
via rc.local
Is this correct?
only if you're running some Linux build from the 1990s.
nothing on RHEL/CentOS should need anything in rc.local
--
john r pierce, recycling bits in santa cruz
___
On 06/28/2015 03:20 PM, Alexander Dalloz wrote:
> Am 28.06.2015 um 20:50 schrieb Max Pyziur:
>
>
> Part of the firewall setup (iptables) is to configure masquerading.
> That's you issue, the missing masquerading of the traffic from the LAN
> hosts through the gateway.
>
>> I'm obviously overlooki
On Sun, 28 Jun 2015, Brian Miller wrote:
On Sun, 2015-06-28 at 14:50 -0400, Max Pyziur wrote:
I haven't setup the firewall yet (dangerous, I know) until I get the
connectivity working.
I'm obviously overlooking some other configuration settings required for
machines inside the network being a
On Sun, 2015-06-28 at 14:50 -0400, Max Pyziur wrote:
> I haven't setup the firewall yet (dangerous, I know) until I get the
> connectivity working.
>
> I'm obviously overlooking some other configuration settings required for
> machines inside the network being able to connect through the
> gat
Am 28.06.2015 um 20:50 schrieb Max Pyziur:
[ ... ]
I can't connect from the home machines directly to the Internet.
I have set
net.ipv4.ip_forward = 1
in /etc/sysctl.conf
I haven't setup the firewall yet (dangerous, I know) until I get the
connectivity working.
Part of the firewall setup (i
You need NAT setup on the server.
ZK
> On Jun 28, 2015, at 2:50 PM, Max Pyziur wrote:
>
>
> Greetings,
>
> I'm rebuilding a machine to function as a gateway/router to Verizon DSL.
>
> It has two NICs eth0 and eth1 (static set to 192.168.1.1).
>
> eth0 connects to the DSL modem.
>
> I've
Greetings,
I'm rebuilding a machine to function as a gateway/router to Verizon DSL.
It has two NICs eth0 and eth1 (static set to 192.168.1.1).
eth0 connects to the DSL modem.
I've setup Verizon DSL usine pppoe-setup, and it works.
I can connect from home machines to the server (192.168.1.1)
33 matches
Mail list logo
