[IOML] Re: IOM Digest, Vol 26, Issue 1

Simon Slaytor sslaytor at iom.com
Mon Jan 17 13:20:40 GMT 2005


Can't say I've tried smoothwall, another good option for a 'pre 
packaged' firewall you might want to check out is m0n0wall. It's a 
'Live' cd system using FreeBSD 4 as it's underpinnigs.

As to trusting the protection of my home LAN I'm with Dylan on the 
OpenBSD soap box, PF is a gem. Couple this to isakmpd being one of the 
most reliable IPSec implementations around and it's unbeatable.

Dylan you could really turn things on their head at work and replace 
IPSO on your Nokia with OpenBSD. I'm using an old IP120 cast off from 
work and it's a corker. It's feable processor even manages a decent 
throughput when using IPSec and the most important part, well as far as 
my wife concerned is that apart from the 2.5" disc it's silent.

As for connecting to the ADSL line I've gone a different route, mainly 
as the IP120 hardware allowed no other means. I'm using an external 
ethernet ADSL modem configured as a transparent bridge between the ADSL 
line and the external ethernet interface on my OpenBSD firewall. The 
modem aquires the IP address from the ADSL provider, it then uses it's 
built in DHCP server to relay this IP address to the connected ethernet 
device. From this point on it is effectively transparent to the ADSL 
provider and the ethernet host. The best bit about it is that no OS 
drivers for the device are required, if the OS supports an ethernet 
interface and DHCP then you can connect it to the net!

Check them out at http://www.adslnation.co.uk X-Modem CE for only fifty 
nine quid they're a steal.






More information about the IOM mailing list