| View previous topic :: View next topic |
| Author |
Message |
peterjk
n00b
Joined: 19 Aug 2005
Posts: 37
Location: Wolverhampton
|
 Posted: Mon Sep 05, 2005 3:46 pm Post subject: Heavy firewall - is it enough |
 |
|
Hi,
I have a gentoo box that is behind a PC setup as a SMOOTHWALL FIREWALL, then a LINKSYS ROUTER,
then of course my cable modem. Everything works just fine.
My questions:
Is this setup ok, for a secure system?
Do I have to consider setting up a firewall on the linux box itself?
I'm going to install Samba, to get to a Windows PC, via a HUB. Do I have to do anything as far as security is concerned?
I do intend having a web/ftp facility up and going in the future, on the linux box. Are there any easy tutorials on setup?
_________________
Many thanks in advance.
I appreciate your help.
Pete |
|
| Back to top |
|
 |
trbecker
Tux's lil' helper
Joined: 19 Sep 2003
Posts: 136
Location: Novo Hamburgo, RS, Brazil
|
| Posted: Mon Sep 05, 2005 4:24 pm Post subject: |
|
|
No, unless you fear an attack from your internal network or if you don't trust the other firewalls in front of your machine.
_________________
If you see any violations to the Guidelines, please report it. |
|
| Back to top |
|
|
sloof3
Tux's lil' helper
Joined: 09 Sep 2004
Posts: 75
|
| Posted: Mon Sep 05, 2005 7:05 pm Post subject: |
|
|
It would be better to have the web/ftp setup between the Linksys and Smoothwall firewalls. That way if you intend to have public access to those servers and they would become compromised you would have a layer of protection between the server and the desktops. This page here might clear it up a bit. http://grc.com/nat/nat.htm
-sloof3 |
|
| Back to top |
|
|
peterjk
n00b
Joined: 19 Aug 2005
Posts: 37
Location: Wolverhampton
|
| Posted: Mon Sep 05, 2005 8:00 pm Post subject: |
|
|
| sloof3 wrote: | It would be better to have the web/ftp setup between the Linksys and Smoothwall firewalls. That way if you intend to have public access to those servers and they would become compromised you would have a layer of protection between the server and the desktops. This page here might clear it up a bit. http://grc.com/nat/nat.htm
-sloof3 |
Another PC running Web/FTP Server between my Router and Smoothwall Firewall. Setup as DMZ PC on router.
Is the above correct?
_________________
Many thanks in advance.
I appreciate your help.
Pete |
|
| Back to top |
|
|
sloof3
Tux's lil' helper
Joined: 09 Sep 2004
Posts: 75
|
| Posted: Mon Sep 05, 2005 8:12 pm Post subject: |
|
|
That is correct. The idea being that the web/ftp server cannot talk to directly to the desktops behind the Smoothwall firewall, unless you allow it.
-sloof3 |
|
| Back to top |
|
|
peterjk
n00b
Joined: 19 Aug 2005
Posts: 37
Location: Wolverhampton
|
| Posted: Tue Sep 06, 2005 5:46 am Post subject: |
|
|
| sloof3 wrote: | That is correct. The idea being that the web/ftp server cannot talk to directly to the desktops behind the Smoothwall firewall, unless you allow it.
-sloof3 |
Ok - another PC for Web/FTP
Q1. Can Gentoo be setup with the above, just with the required facilities?
Q2. Are there any resources out there that you know about, regarding the setup, and config.
_________________
Many thanks in advance.
I appreciate your help.
Pete |
|
| Back to top |
|
|
sloof3
Tux's lil' helper
Joined: 09 Sep 2004
Posts: 75
|
| Posted: Tue Sep 06, 2005 4:11 pm Post subject: |
|
|
SmoothWall I never used but try their documentation they have listed: http://www.smoothwall.org/docs/
Basically just check the documentation that comes with the respective packages.
-sloof3 |
|
| Back to top |
|
|
peterjk
n00b
Joined: 19 Aug 2005
Posts: 37
Location: Wolverhampton
|
| Posted: Tue Sep 06, 2005 9:36 pm Post subject: |
|
|
| sloof3 wrote: | It would be better to have the web/ftp setup between the Linksys and Smoothwall firewalls. That way if you intend to have public access to those servers and they would become compromised you would have a layer of protection between the server and the desktops. This page here might clear it up a bit. http://grc.com/nat/nat.htm
-sloof3 |
I cannot afford to get another PC at moment, but I have an urgent need to have home WWW server, asap.
Given the setup I talk about above, what would need to be done to secure my workstation, which would be the public WWW server, as well as for work - dangerous I know - but only temporary.
What would I need to do?
_________________
Many thanks in advance.
I appreciate your help.
Pete |
|
| Back to top |
|
|
|
Networking & Security
