Re: Should I propose a Debian Firewall?
"Michael W. Shaffer" wrote:
> If you are interested, I just spent a couple days whittling
> down a Debian system to provide WAN routing, dial on demand,
> dns, dhcp, and firewalling all on one floppy. I have been looking
> for an excuse to organize all my notes in a presentable manner,
> and I'd be happy to try and answer any questions you might
> have. My intention was basically what you stated, to produce
> a simple box with absolutely nothing except the kernel, a few
> selected daemons, and a couple other necessary things like
> ash and init just for processing startup scripts. No interactive
> or network logins, no logging except to console or remote,
> everything runs from a 4MB ramdisk once booted. Using this
> sort of setup you can provide quick and dirty emergency
> reserve systems on just a floppy; set up new boxes with almost
> no installation; or just make a really cheap routers with a
> scavenged motherboard, 16MB RAM, a floppy, and ethernet cards
> or a modem. I also have managed to fit a complete working
> 'winserver' with dhcp and samba on one floppy, although this
> one would really like to have some disk in the machine for
> meaningful print spooling and file shares.
I am very interested in your selection of daemons and tools that are
needed on a firewall. Maybe we can share some ideas in this area.
We always use a harddisk for the firewalls (mainly for logging purposes)
and protect the system files with tripwire.
greets,
Rene
Reply to: