[KLUG Members] no route to local network?

[Bruce Smith]

> > Or IPCop, or Smoothwall, or Gibraltar, or Astaro, or any number of other 
> > things.  I don't want a firewall-only distro in this case because I'd 
> > like it to do a little bit of samba file sharing too.  It's likely to be 
> > much easier to properly lock down a SuSE box than to unlock a 
> > firewall-only distro and get samba installed on it.
> 
> <obligatory statement>I can't in good conscience ever recommend running
> a service like Samba on an internet connected host,  firewall rules or
> not.  A firewall should be a firewall.  Buy a $10 PC, use it as a
> firewall, and play with things like Samba on another box - inside the
> network, not on the edge.</obligatory statement>

I agree 100%.

Devil-Linux can be used as a very secure server since it comes with
Samba, Squid, Apache/PHP/MySQL/Postgresql, Postfix/Spamassassin/Clamav,
and a ton of other server processes which I would never run on a
firewall.  (ftp.kalamazoolinux.org is a Devil-Linux server, and a
different Devil-Linux box serves as a firewall on the same network)

Use it for a server _or_ a firewall, NOT both on the same box.

 - BS