[KLUG Members] Which Linux Firewall?

[Dirk H Bartley]

This is way to good of a machine for a firewall of a small network.  Maybe to good is not
the right statement but it is a little overkill.  A 120Mhz machine is what I use to
connect my internal lan to the internet with a cable modem.  If you want simple, Bruce
just did a demo on smoothewall which looked very capable to me.  I really like the idea of
an easily configured ipsec.  If your looking for anything from simple to complex as you
want to get with the most recent kernel capable of behaving as a stateful firewall, I'd
suggest iptables from the 2.4 kernel series.

http://www.kalamazoolinux.org/presentations/20010417/

Shameless

Dirk

Michael Morrett wrote:
> 
> RE: Which Linux Firewall?
> 
> I have a three PC network and a HP4MV printer w/JetDirect card.
> 
> Hostname K9: This is the "gateway" PC with a 56K modem (internet),
> and a NIC to a 5 port HUB (intranet).  Currently it is running W2K
> w/ZoneAlarm Pro, but WILL be upgraded to Linux (maybe Mandrake or Red
> Hat or ???).
> 
> Hostname Izzy: This is the family PC running Win98se and will be
> ungraded to W2K.  I know, I know, I know, but they can be a PITA user
> when I change stuff on their machine. (PITA = Pain In The...)
> 
> Hostname Rusty: This is MY PC running, Win98se (for testing) & W2K
> (for testing) & W2K (current) & Mandrake 8.0 (testing).  I plan on
> switching entirely over to Linux as soon as my comfort level (and my
> hardware is supported).
> 
> Question:  What Linux and Firewall is recommended on K9 (400MHz AMD
> with 368MB of memory)?  I would really like to have a firewall that
> can send reports to http://www.mynetwatchman.com, or
> http://www.dshield.org.
> 
> These links list the clients that work with these two sites:
> http://www.dshield.org/howto.html
> http://www.mynetwatchman.com/ftagent.htm
> 
> My preference is the DShield.org site.
> 
> Thanks,
> Mike
> (I'll be at the 1/8/02 meeting)