Results 1 to 5 of 5
Hey folks,
I've been searching the forums and will continue to do so, but so far I haven't found any posts pertaining to my question... and no good info on ...
- 12-14-2006 #1Just Joined!
- Join Date
- Dec 2006
- Posts
- 3
Putting together a Router/Firewall/VPN... any suggestions?
Hey folks,
I've been searching the forums and will continue to do so, but so far I haven't found any posts pertaining to my question... and no good info on the net that isn't 4 years old. If I've missed an entire topic devoted to this subject please forgive me and point me in the right direction.
I'm looking to setup a linux box as a firewall/router/VPN endpoint for my company. We have a small network ~18 machines running OSX and Windows XP. We have a static IP and will be running several switches and WAPs behind it, along with a centOS box running trixbox.
As a linux n00b I'm trying to find a solution that maybe isn't completely terminal based, and probably a full distro vs ipcop, since I want to easily add-on stuff in the future. The VPN would need to be able to have remote client's connect from mac or pc, and possibly another VPN endpoint at some point in the future. The distroquiz suggested Mandriva or Ubuntu, but it never asked any questions that referred to using the box as a firewall/router.
Does anyone have any recommendations for which distro to use and whether to download/purchase CDs or ftp install? Suggestions for which software to use would also be helpful... shorewall? iptables? openvpn?
Thanks,
Psy
- 12-14-2006 #2Linux Guru
- Join Date
- Oct 2005
- Location
- Montreal, Canada
- Posts
- 3,212
Pretty much Linux distribution can fill up that role. Some will offer easier configuration/installation utility than others.
I haven't try it personally, but perhaps ClarkConnect would be a good solution for you. They offer 3 different editions, one of them being free of charge.
I'm sure others will present different solutions."To express yourself in freedom, you must die to everything of yesterday. From the 'old', you derive security; from the 'new', you gain the flow."
-Bruce Lee
- 12-14-2006 #3Just Joined!
- Join Date
- Dec 2006
- Posts
- 3
cool, thanks for the input. Clarkconnect does look like it might be pretty nifty. Is there any big downside to running your router/firewall/vpn on a full distro? I kinda like the idea of being able to change parts of it if new and better suited apps become available in the future without starting from scratch...
keep the ideas coming! Thanks!
- 12-15-2006 #4Linux Newbie
- Join Date
- Aug 2004
- Location
- Malvern, UK
- Posts
- 132
psyferre
Have a look here under the "security" section:
http://www.howtoforge.com/
There are several godd tutorials on this subject. May give you some more ideas.
BuboMy Computer Once Beat Me at Chess, but it is No Match for Me at Kickboxing !
Registered Linux User: #417183
- 12-15-2006 #5Just Joined!
- Join Date
- Dec 2006
- Posts
- 3
cool, thanks! I'm checking out the forums now.
Someone on another forum suggested that I use smoothwall. After looking at the documentation I thought I had a winner! I've installed it and now I've run into a bit of a snag. Part of my situation requires that I find a solution that allows multiple concurrent VPN connections - and not from VPN endpoints. It looks like having multiple "road warriors" requires a TON of configuration and patching, not to mention quite a lot of linux knowledge. It does appear that I can install an openvpn mod that will allow what I need, but I'm having a lot of trouble figuring out how to even install it.
Have you guys seen any other distros that work kinda like smoothwall that will allow that sort of functionality?
Reply With Quote 
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts