[Pauldotcom] home firewall/server
Chris Clymer
cclymer at gmail.com
Thu Jul 9 14:29:00 UTC 2009
I second that. Ive been using pfsense for years in environments
ranging from a small soekris serving a few users to redundant
rackmount boxes serving hundreds.
Easily the best open source firewall appliance ive used...its got more
features and a better interface than many of the commercial ones.
Sent from my iPhone
On Jul 8, 2009, at 11:59 PM, Brian H <binarynomad at gmail.com> wrote:
> I've had a nice amount of success with pfSense (http://
> www.pfsense.com/) which is a bootable CD, based off of FreeBSD, which
> can be installed to a HD.
>
> It comes with some nice built in features like, Vlan support, QoS,
> load balancing, VPN, traffic monitoring, RRD Graphs, live connection
> status and bandwidth usage, and it allows you to install modules that
> let you a extend it with things like: ntop, squid, captive portal,
> WoL, darkstat, freeradius, snort, etc.
>
> ----
> Brian H
> binarynomad at gmail.com
> http://www.binarynomad.com
>
> On Jul 8, 2009, at 4:31 PM, Dale Stirling wrote:
>
>> For a Firewall Gateway device that I use at home is the community
>> edition of Astaro.
>>
>> http://www.astaro.com
>>
>> It has heaps of features and I have deployed the commercial software
>> and appliance versions in many organisations.
>>
>> Dale
>>
>> On Thu, Jul 9, 2009 at 2:14 AM, Vincent Lape <vlape at me.com> wrote:
>> Have not played with it in a couple years but try taking a look at
>> ClarkConnect
>>
>> http://www.clarkconnect.com/
>>
>> On Jul 8, 2009, at 7:41 AM, Nils wrote:
>>
>>> For file/web and quite some other services I recommend the eisfair
>>> project .
>>> It has a decent package and update management.
>>> http://www.eisfair.org/en/eisfair/news/
>>> I have it running and serving Samba shares for quite some years on a
>>> -->
>>> Pentium II 333Mhz <-- ;-)
>>>
>>> I doubt it could be used as firewall. And if, I'd never recommend
>>> having the
>>> firewall on the same system as the data.
>>>
>>> Cheers,
>>> Nils
>>>
>>> -----Original Message-----
>>> From: pauldotcom-bounces at mail.pauldotcom.com
>>> [mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of Dmitry
>>> Nedospasov
>>> Sent: Wednesday, July 08, 2009 2:31 PM
>>> To: PaulDotCom Security Weekly Mailing List
>>> Subject: Re: [Pauldotcom] home firewall/server
>>>
>>> -----BEGIN PGP SIGNED MESSAGE-----
>>> Hash: SHA1
>>>
>>> If you want to have some fun, I run openwrt x86 in a xen VM on my
>> home
>>> server. You just have to custom compile a kernel from the svn and
>>> enable
>>> paravirtualization.
>>>
>>> Works great, and i get full performance out of my connection (as
>>> opposed to
>>> my wrt54gl which would top out at 30-40Mbit/s)
>>>
>>> D.
>>>
>>> On Jul 8, 2009, at 11:02 , Bert Van Kets wrote:
>>>
>>>> Hi guys,
>>>>
>>>> I'm a newbie when it come to setting up a server with enterprise
>>>> services. I have been using Linux for several years now and have a
>>>> MythTV box running. I have four PCs running and there's no
>> Windows in
>>>> this house. :-D
>>>>
>>>> I was playing with the idea of setting up a multi purpose server
>>>> (file
>>>> sharing, print server, proxy, DNS, ...). The terms multi-purpose
>> and
>>>> security do not go hand in hand, but that is a trade off I have to
>>>> take because I can not afford to run a full rack.
>>>>
>>>> The main question is: Can I use the one machine as a firewall,
>> using
>>>> multiple network cards on different subnets, and at the same time
>> run
>>>> Squid, SMTP, DNS, DHCPD, CUPS, etc.. on it?
>>>> What is the take of the experts on a situation like this? Keep in
>>>> mind
>>>> this is a home situation with a limited budget.
>>>>
>>>> Thanks.
>>>>
>>>> Bert
>>>> _______________________________________________
>>>> Pauldotcom mailing list
>>>> Pauldotcom at mail.pauldotcom.com
>>>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
>>>> Main Web Site: http://pauldotcom.com
>>>
>>> -----BEGIN PGP SIGNATURE-----
>>> Version: GnuPG v1.4.9 (Darwin)
>>>
>>> iEYEARECAAYFAkpUkZcACgkQdm82SADo56pjpgCfbSNXfAHqM1fAsPR1mFFKl0Bh
>>> fRYAoMVy9Ny/tN++npjoKZPY/bzr95mr
>>> =rdQ6
>>> -----END PGP SIGNATURE-----
>>> _______________________________________________
>>> Pauldotcom mailing list
>>> Pauldotcom at mail.pauldotcom.com
>>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
>>> Main Web Site: http://pauldotcom.com
>>>
>>> _______________________________________________
>>> Pauldotcom mailing list
>>> Pauldotcom at mail.pauldotcom.com
>>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
>>> Main Web Site: http://pauldotcom.com
>>
>> _______________________________________________
>> Pauldotcom mailing list
>> Pauldotcom at mail.pauldotcom.com
>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
>> Main Web Site: http://pauldotcom.com
>>
>> _______________________________________________
>> Pauldotcom mailing list
>> Pauldotcom at mail.pauldotcom.com
>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
>> Main Web Site: http://pauldotcom.com
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
More information about the Pauldotcom
mailing list