Re: Newbie, someone have how-to on from-scratch Debian firewall?

To: IML-debian-firewall <IML-debian-firewall@i405.com>
Cc: debian-firewall@lists.debian.org
Subject: Re: Newbie, someone have how-to on from-scratch Debian firewall?
From: Brian Russo <brusso@phys.hawaii.edu>
Date: Mon, 6 Nov 2000 16:06:27 -1000
Message-id: <[🔎] 20001106160627.A23947@uhhepr.phys.hawaii.edu>
In-reply-to: <[🔎] 0066CB04D783714B88D83397CCBCA0CD4925@spike2.i405.net>; from IML-debian-firewall@i405.com on Mon, Nov 06, 2000 at 05:48:05PM -0800
References: <[🔎] 0066CB04D783714B88D83397CCBCA0CD4925@spike2.i405.net>

On Mon, Nov 06, 2000 at 05:48:05PM -0800, IML-debian-firewall wrote:
> Howdy,
> 
> Does someone have some notes to share on a from-scratch install of Debian
> for firewall purposes?  For those that don't know Debian install and barely
> know Linux? I know this may be asking a lot, but I'm sure that I'm not the
> only one who would benefit.
> 
> I'm talking a basic two-ethernet one-subnet firewall on a dedicated Debian
> box using the latest Debian installed from a CD-ROM.
> 
> If there isn't such a beast... I'm willing to start one.  However, I need
> someone to feed me steps.  Starting with... if you wanted to keep the system
> to a size that could be imaged to CD-ROM (backup)... how would you partition
> 600MB hard disk?  What packages should be installed?
> 

Hm, I think you want something a little more pre-packaged for you but
there's..  the regular Linux firewall HOWTO available at..

http://www.linux.com/howto/Firewall-HOWTO-1.html
or pretty much anywhere that HOWTO's exist

there's also related HOWTO's of course.. the IPCHAINS-HOWTO.. netfilter has
one also.. IIRC

www.linuxdoc.org has all the HOWTO's categorized nicely..

WRT Debian-specific stuff..

Assuming you're going with ipchains (2.2kernel-based production system).
You'd really just want.. 
base + ipchains + sshd (assuming you want remote access to the thing) 
+ no users/other processes/etc + some way to get logs
off the box to another one if you really need that.

You can get all of this WELL under 600mb (under 100mb easily).
Debian starts to get big when you have lots of packages installed (*shock*),
but especially devel stuff... source code.. libraries.. etc.. X stuff.
for a fw you don't need that.. so.. well you get the idea :)

somewhat unrelated note..
anyone know how well linux does transparent filtering? anyone tried this?

 - brian.
 
> Thanks.
> 
>   Stephen Gutknecht
>   Renton, Washington
>   main email mailto:Stephen@i405.com
> 
> 
> --  
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 

-- 
+-------------------------------------------------------------
| Brian Russo   <brusso@phys.hawaii.edu>   GPG ID: 54D81666 
| 404E 87E8 DD0C 275B 742B  09AD 2243 839C 54D8 1666

Reply to:

Follow-Ups:
- Re: Newbie, someone have how-to on from-scratch Debian firewall?
  - From: xsdg <xsdg@softhome.net>

References:
- Newbie, someone have how-to on from-scratch Debian firewall?
  - From: IML-debian-firewall <IML-debian-firewall@i405.com>

Prev by Date: Newbie, someone have how-to on from-scratch Debian firewall?
Next by Date: Re: Newbie, someone have how-to on from-scratch Debian firewall?
Previous by thread: Newbie, someone have how-to on from-scratch Debian firewall?
Next by thread: Re: Newbie, someone have how-to on from-scratch Debian firewall?
Index(es):
- Date
- Thread