looking for suggestions

To: <debian-firewall@lists.debian.org>
Subject: looking for suggestions
From: "Edward Chase" <echase@postoffice.providence.edu>
Date: Mon, 10 May 2004 17:21:25 -0400
Message-id: <[🔎] 027d01c436d4$c0521cf0$0232010a@providence.col>

Thanks to those who've already helped me getting dual NICs working in my
newly setup woody box.

I want to setup this box to sit between our colleges internal network and a
switch that our tech guys use in their "chop shop".  There have been several
instances where they have plugged in a virused computer into our network.
What I'm looking to avoid is having any unnecessary traffic pass thru the
box.  Pretty much I'd like to block all traffic heading into the switch.  I
don't want virused machines infecting potentially unpatched machines in the
tech room.  It really stinks when you reset up a machine and it's virused
even before you get the patches on it to protect it.  The tech guys do need
some internet connectivity do download patches and the sort.

I was thinking iptables (that's the one for kernel 2.4, yes?) and ipmasq.  I
was going to have the machine be a caching DNS server and dhcpd server as
well for the machines on the tech bench.

One person suggested ipcop.

Am I just reinventing the wheel here when I could just DL the ipcop iso and
be done with everything I'm looking for?

All feedback is appreciated.

-- 
Edward Chase
Providence College
Information Technology 

Protect your PC
http://www.microsoft.com/security/protect/

Reply to:

Follow-Ups:
- Re: looking for suggestions
  - From: Mike Mestnik <cheako911@yahoo.com>

Prev by Date: Re: firewall setup - firewall newbie
Next by Date: Re: firewall setup - firewall newbie
Previous by thread: Re: firewall setup - firewall newbie
Next by thread: Re: looking for suggestions
Index(es):
- Date
- Thread