[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Sheflug] Firewalls

To: "Sheflug" <sheflug [at] vuw.ac.nz>
Subject: RE: [Sheflug] Firewalls
From: "David Bottrill" <nospam [at] ntlworld.com>
Date: Mon, 6 Aug 2001 21:22:59 +0100
Importance: Normal
List-help: <http://www.sheflug.co.uk>
List-owner: <mailto:sheflug-admins [at] vuw.ac.nz>
List-post: <mailto:sheflug [at] vuw.ac.nz>
List-subscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=subscribe>
List-unsubscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=unsubscribe>
Reply-to: "Sheflug" <sheflug [at] vuw.ac.nz>
Sender: sheflug-bounce [at] vuw.ac.nz

David,

Have a look a www.smoothwall.org they are just about to release the latest
version 0.9.9 that has a web configuration tool for freeswan. I have run
some tests on the current version and was put off with the pain of
configuring freeswan. However even the current version of Smoothwall is a
pleasure to install and configure as a router / firewall with it's web/SSH
interface and the soon to be released version has great prospects. Well
worth checking out IMHO.

David Bottrill

-----Original Message-----
From: nospam [at] vuw.ac.nz]On
Behalf Of David Morris
Sent: 06 August 2001 14:14
To: Sheflug (E-mail)
Subject: [Sheflug] Firewalls


I'm looking for an opinion or three before I get started...

My boss (nice man) has just agreed to have the company pay for ADSL to my
home so I can continue working on company systems whilst the missus is
browsing the web (!). As I'll be getting a no-nat solution (so I can
reliably punch through the company firewalls), I want to set up a firewall
here at home on an old P133 that's kicking around in my study. Never having
done a firewall with Linux before (I generally use Cisco PIX boxes), I was
wondering if anyone has any positive or negative experiences to pass on, or
whether there's anything I need to watch for?

Ideally, I'd like to implement IPSec to create an encrypted VPN between home
and work if possible (it's going to be secure and low latency because I'm
also getting ADSL from the same ISP that we use for our leased line into
work).

What I'll probably do is set up two firewalls, one at home, and another one
in the office that offers an alternative route bypassing our PIX in the
office so if necessary, I can talk *nix to *nix to establish the VPN. Before
anyone suggests IPSec on the PIX, ours is an old box with Cisco proprietary
VPN, so IPSec is out of the question with that route.

Suggestions on the back of a postcard please...

Finally, perhaps I should add that I'll be using SuSE 7.2 Pro for the
builds.

TIA,


--
David Morris, IT Manager, ALLVAC Ltd, Sheffield
work: david [at] allvac.co.uk
home: david [at] brassedoff.net
http://www.davidm.demon.co.uk

---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word
 "unsubscribe" in the body of the message.

  GNU the choice of a complete generation.



---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.

Follow-Ups:
- [Sheflug] Re: Firewalls
  - From: Richard Ibbotson <nospam [at] sheflug.co.uk>

References:
- [Sheflug] Firewalls
  - From: "David Morris" <nospam [at] allvac.co.uk>

Prev by Date: Re: [Sheflug] Firewalls
Next by Date: Re: [Sheflug] farewell sheflug
Prev by thread: Re: [Sheflug] Firewalls
Next by thread: [Sheflug] Re: Firewalls
Index(es):
- Date
- Thread