[IOML] Re: IOM Digest, Vol 26, Issue 1
Simon Slaytor
sslaytor at iom.com
Mon Jan 17 13:20:40 GMT 2005
Can't say I've tried smoothwall, another good option for a 'pre
packaged' firewall you might want to check out is m0n0wall. It's a
'Live' cd system using FreeBSD 4 as it's underpinnigs.
As to trusting the protection of my home LAN I'm with Dylan on the
OpenBSD soap box, PF is a gem. Couple this to isakmpd being one of the
most reliable IPSec implementations around and it's unbeatable.
Dylan you could really turn things on their head at work and replace
IPSO on your Nokia with OpenBSD. I'm using an old IP120 cast off from
work and it's a corker. It's feable processor even manages a decent
throughput when using IPSec and the most important part, well as far as
my wife concerned is that apart from the 2.5" disc it's silent.
As for connecting to the ADSL line I've gone a different route, mainly
as the IP120 hardware allowed no other means. I'm using an external
ethernet ADSL modem configured as a transparent bridge between the ADSL
line and the external ethernet interface on my OpenBSD firewall. The
modem aquires the IP address from the ADSL provider, it then uses it's
built in DHCP server to relay this IP address to the connected ethernet
device. From this point on it is effectively transparent to the ADSL
provider and the ethernet host. The best bit about it is that no OS
drivers for the device are required, if the OS supports an ethernet
interface and DHCP then you can connect it to the net!
Check them out at http://www.adslnation.co.uk X-Modem CE for only fifty
nine quid they're a steal.
More information about the IOM
mailing list