Re: [LUNI] firewall design

From: Tom Yarrish (tom@yarrish.com)
Date: Fri Mar 23 2001 - 08:16:09 CST

Next message: Richard Reina: "[LUNI] Redhat 7.0 and video cards"

Previous message: Dan Yocum: "Re: [LUNI] journaling file system"
In reply to: alan henn: "[LUNI] firewall design"
Next in thread: Jack Beglinger: "Re: [LUNI] firewall design"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Alan,
Depending on your time frame, I would recommend looking at "Securing and
Optimizing Red Hat" at www.openna.com. It's a pdf file that basically
walks you through setting up a firewall for different needs.

Thanks,
Tom

-- 
#!/usr/bin/perl -w # 526-byte qrpff, Keith Winstein and Marc Horowitz
<sipb-iap-dvd@mit.edu> # MPEG 2 PS VOB file on stdin -> descrambled output
on stdout # arguments: title key bytes in least to most-significant order
$_='while(read+STDIN,$_,2048){$a=29;$c=142;if((@a=unx"C*",$_)[20]&48){$h=5;
$_=unxb24,join"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
unxV,xb25,$_;$b=73;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=($t=255)&($d
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*8^$q<<6))<<9
,$_=(map{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;$t
^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)[$_%8]}(16..271))
[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}print+x"C*",@a}';s/x/pack+/g;eval
On Fri, 23 Mar 2001, alan henn wrote:
> i would like to request some imput about the best design
> for a firewall given my limited resources and needs.
>
> i work at a unviversity with all the security implications
> that go with it.
>
> Equipment:
>
>  firewall: pentium II 64 MB ram, 1.2 GB, 2 NICs. RedHat, 6.2.
>
>  production machine: Pentium II 256 MB ram, two HD (one Linux 13 GB
>  one 4GB Windows.
>
>  a laptop used both in field and office for diverse projects
>
>  4 place hub.
>
> Need a mail server, probably PostFix - unless i hear otherwise.
>
> The best firewall design seems to be a DMZ, but i don't have enough
> machines.
>
> Should the mailserver go on the firewall or on the production
> machine where i will be playing with databases, docbook and
> doing serious writing and minor graphics? And, of course making
> serious mistakes.
>
> Is PMfirewall ok, or is it best to roll your own?
>
>
> Thank you.
>
> alan
>
> alan henn
> Extension Plant Pathologist
> Mississippi State University
> ahenn@ext.msstate.edu
> -=-
> Linux Users Of Northern Illinois: General Discussion Mailing list.
> For unsubscription, archives, and announcements only see http://luni.org
>
>
-=-
Linux Users Of Northern Illinois: General Discussion Mailing list.
For unsubscription, archives, and announcements only see http://luni.org

Next message: Richard Reina: "[LUNI] Redhat 7.0 and video cards"
Previous message: Dan Yocum: "Re: [LUNI] journaling file system"
In reply to: alan henn: "[LUNI] firewall design"
Next in thread: Jack Beglinger: "Re: [LUNI] firewall design"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Fri Mar 23 2001 - 09:21:26 CST