Re: is iptables enough?
Hi!
On Wednesday 19 March 2003 20:44, Jones wrote:
> Am I right in assuming that iptabes is enough as a firewall solution
> and that I would not need to buy any additional software.
Well, I'm primarily responding to your second question, but the way I
would do it, if I had the resources, would be to get a small Pentium
133 MHz box, booting from a floppy and use it as a router and firewall.
No harddrive, a complete wasteland. But then, I'm really a newbie in
all this, so you might want to listen to the pros... :-)
> Most of them are 1.x Ghz Pentium systems with 256MB RAM and 10
> GB IDE hard drives. After increasing the RAM to 512MB, I think this
> should more than adequate for a system doing nothing but HTTP and
> SMTP/POP requests.
My main server is a Pentium PRO 180 MHz with 96 MB RAM. It gets a lot of
e-mail, and has a whole bunch of mailinglists distributing many hundred
messages a day. It had some problems when it was overwhelmed by a old
Mailman bug that resulted in it receiving a few ~200 KB messages a
second, and tried to scan all those with SpamAssassin (it took me half
an hour to type "reboot" :-) ), but other than that, the CPU is mostly
idle.
Also, I tried to run Apache Cocoon on it, it worked, but it clearly had
too little RAM for that. If you plan to run Cocoon, then 512 MB would
be nice, but similar solutions, like AxKit, demands much less.
So, I think you would be fine with a much smaller box than that, but a 1
GHz with 256 MB is cool, if that is what you've got.
Cheers,
Kjetil
--
Kjetil Kjernsmo
Astrophysicist/IT Consultant/Skeptic/Ski-orienteer/Orienteer/Mountaineer
kjetil@kjernsmo.net webmaster@skepsis.no editor@learn-orienteering.org
Homepage: http://www.kjetil.kjernsmo.net/ OpenPGP KeyID: 6A6A0BBC
Reply to: