Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

firewall / mail server advice
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
GuidoJ
Guru
Guru


Joined: 24 Dec 2002
Posts: 444
Location: Netherlands
PostPosted: Wed Feb 05, 2003 4:52 pm    Post subject: firewall / mail server advice Reply with quote
Hi all,

At home I have a small LAN consisting of 2 workstations running Gentoo and Wintendo respectively. A 3rd machine connects the other 2 to the internet and is running SmoothWall. The essential services I use on the latter machine are the packet filtering firewall, IP masquerading and the intrusion detection stuff, I could do without the webmin, proxy, VPN, etc. So I'm thinking of ditching SmoothWall and replacing it by Gentoo. Since my firewall box is a PII, just the firewalling it is having some spare time, so I want to add a few services at the same time.

I'd like some advice on this:
- Is Gentoo a good choice for this kind of system? I'm very happy with it as a workstation, but I have no experience with Gentoo otherwise.
- Basically I will be merging the DMZ into my firewall box. Are there any significant drawbacks to this approach?
- I will start by adding a mail server, including web mail stuff, so that I will be able to read/write/send/receive mail even if I'm on the other side of the planet. What software do you suggest for that?

TIA Guido
Back to top
View user's profile Send private message
BackSeat
Apprentice
Apprentice


Joined: 12 Apr 2002
Posts: 242
Location: Reading, UK
PostPosted: Thu Feb 06, 2003 12:00 am    Post subject: Re: firewall / mail server advice Reply with quote
GuidoJ wrote:
Is Gentoo a good choice for this kind of system? I'm very happy with it as a workstation, but I have no experience with Gentoo otherwise.
Absolutely. We are running Gentoo firewalls in customers' premises (and our own) with no problem.
GuidoJ wrote:
Basically I will be merging the DMZ into my firewall box. Are there any significant drawbacks to this approach?
I would keep the minimum number of services on the firewall. The fewer services there are the less likely a vulnerability will open up your firewall.
GuidoJ wrote:
I will start by adding a mail server, including web mail stuff, so that I will be able to read/write/send/receive mail even if I'm on the other side of the planet. What software do you suggest for that?
You'll get a number of different answers to that question, but we use Postfix and Squirrelmail. You can make it more secure by putting Postfix/Apache/Squirellmail on a box other than your firewall, and port forwarding a port (not necessarily 80) on the firewall to the other box. If you know what IP address, or subnet, you will be connecting from you can limit access to just that address or subnet.

It isn't too hard to do, although you may have a few challenges ahead. Shout if you need help: as I say, we do this all the time.

BS
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy