I've been looking over the LEAF distros for a candidate to build a set
of border firewall/routers. They are to replace existing devices built
with PC hardware and commercial DOS-based firewall software.
I have several questions. Here are a few to start:
1. Given the details below, which distro wo
Calvin,
Too give some extra information about Bering-uClibc packages that can
be used for the asked functionality.
> Here is a summary of the functionality required:
>
> Firewall:
> stateful packet inspection
shorwall.lrp
> NAT/PAT
iptables.lrp/shorwall.lrp
> IPSEC Auth
> IPS
On Fri, 2004-03-19 at 15:01, Eric Spakman wrote:
> Calvin,
>
> Too give some extra information about Bering-uClibc packages that can
> be used for the asked functionality.
>
> > Here is a summary of the functionality required:
> >
Thank you very much for pointing to the specific modules. That
Cal,
> > > Port Knocking to trigger remote vpn/ssh access
> > ?
> >
>
> I'm referring to the method of accessing closed external ports using a
> predefined sequence of connection attempts across one or more ports. As
> described in the Jun 2003 SysAdmin article, "The log is monitored for
> speci
Cal
At 09:47 22.03.2004 -0500, you wrote:
>On Fri, 2004-03-19 at 15:01, Eric Spakman wrote:
>> Calvin,
>>
>> Too give some extra information about Bering-uClibc packages that can
>> be used for the asked functionality.
>>
>> > Here is a summary of the functionality required:
>> >
>
>Thank you
On Mon, 2004-03-22 at 10:57, Eric Spakman wrote:
> Cal,
>
> > > > Port Knocking to trigger remote vpn/ssh access
> > > ?
> > >
> >
> > I'm referring to the method of accessing closed external ports using a
> > predefined sequence of connection attempts across one or more ports. As
> > described
On Mon, 2004-03-22 at 11:39, michiel wrote:
> Dear cal.
>
> My few cent for this layout.
> Hardware:
> I had some problems with a incompatble 3com 3C905 carts.(don't now wy)
> check them before you start.
3Com NICs have proven pretty reliable for me, but I always take them
through the diagnostics
On Mon, 2004-03-22 at 11:37, Erich Titl wrote:
> >> > Port Knocking to trigger remote vpn/ssh access
> >> ?
> >>
> >
> >I'm referring to the method of accessing closed external ports using a
> >predefined sequence of connection attempts across one or more ports. As
> >described in the Jun 2003 Sys
Cal,
> > > I'm referring to the method of accessing closed external ports using a
> > > predefined sequence of connection attempts across one or more ports. As
> > > described in the Jun 2003 SysAdmin article, "The log is monitored for
> > > specific port sequences that encode information used to
On Mon, 2004-03-22 at 14:33, Eric Spakman wrote:
> Cal,
>
> > > > I'm referring to the method of accessing closed external ports using a
> > > > predefined sequence of connection attempts across one or more ports. As
> > > > described in the Jun 2003 SysAdmin article, "The log is monitored for
> >
Cal,
> > > I've written Perl scripts to monitor logs in the past. Should just be a
> > > matter of triggering the "rule-mod" event on log content, then getting
> > > the daemon to re-read the rules.
> > >
> > We don't have perl packages for Bering-uClibc
>
> Well, that could be a problem then
> I was going to model the entire project on VMware, but I found that
> VMware limits number of NICs to 3, too few for most of my routers. I
I don't think user-mode-linux has that built-in restriction.
http://user-mode-linux.sourceforge.net/
-
Hello Michiel,
Wow! I guess you were serious about helping. I really appreciate the
time and thought you have put into this, Michiel. I'm curious why you
have not been cc'ing the LEAF list. This information might be helpful to
someone else like me. If you would prefer I leave the list off my
repli
13 matches
Mail list logo
