[tclug-list] DIY Router/Firewall/Media Server

Wed Apr 1 10:37:59 CDT 2009

>> Additionally, would it be too much to include a media server in  
>> such a
>> box?
>
> Abort mission on this.  Although what you propose is possible, it  
> kinda
> defeats the purpose of the firewall.  Keep the media server separate,
> and safely behind the firwall.

If you can find a little more box to work with, there is a way that  
you can do this mostly safely and get some more experience out of it:  
VMware Server. Setup the host system with nothing but hardware console  
access, then assign separate NICs to each guest system. Though not as  
secure as separate hardware, it's pretty close and is enough for a lot  
of larger companies to use the concept.

--
Kristopher Browne
kris dot browne at gmail dot com
612-353-6969 home
612-408-4431 cell
--
-  -
Ban the bomb.  Save the world for conventional warfare.

On Apr 1, 2009, at 09:32:44, Bob De Mars wrote:

>> I'm interested in building my own router/firewall box. Do any of you
>> know of a good tutorial or resources?
>
> That depends.  Are you looking to build a firewall/router from scratch
> for learning purposes, or are you looking for an easy throw in disk,
> wait 12 minutes, reboot & you have a firewall solution?
>
> If you are looking to learn, then grab your favorite distro & do a
> google search (ie: Slackware firewall, or what ever) and you will find
> what you seek.  Or simply search Linux firewall, and you will be busy
> for awhile.
>
> If you are looking for an all in one situation, then I would recommend
> checking out
>
> www.smoothwall.org
>
> www.ipcop.org
>
> www.freesco.org
>
> I have been running smoothwall at my home for about 7 or 8 years,  
> and I
> like it a lot.  It supports 4 NIC's to separate your internet, dmz,  
> LAN,
> and wireless (if you want to be paranoid about it like me).  For  
> home it
> rocks.  I have even used it to connect three offices at work via vpn  
> in
> the pastas well.  This setup was kicked to the curb one day when a
> handful of Cisco PIX 501's fell into my lap however.  I have been
> running Smoothwall on a Pent Pro 200 w/ 128Megs of ram with out
> problems.  Runs nice, and has a web gui config if you like that kinda
> stuff. I would recommend this one.
>
> IPCop is good too.  This project started as a fork from Smoothwall
> several years back.  Not sure why anymore, but a couple friends of  
> mine
> use it and have nothing but kind things to say about it.
>
> If all you can dig up is a 100Mhz processor or less check out fresco.
> This is a nice & easy solution that can run on hardware picked up in  
> the
> back alley somewhere.
>
> There are more, but I have never tried them so I cannot say.
>
> Good Hunting!
>
> Bob De Mars
> IT Manager
> T: 651 925 1510       bob at grunners.com
> Cell: 612 850 6940   www.grunners.com
>
> _______________________________________________
> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
> tclug-list at mn-linux.org
> http://mailman.mn-linux.org/mailman/listinfo/tclug-list

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mn-linux.org/pipermail/tclug-list/attachments/20090401/96b295e6/attachment.htm 