[adsl] Looking for ADSL VPN Router recommendations
Volker Kuhlmann
list0570 at paradise.net.nz
Sat Dec 16 14:01:02 EST 2006
On Sun 17 Dec 2006 07:23:56 NZDT +1300, David Hawke wrote:
> All true - the most time consuming bit is getting iptables set up ...
No, setting up iptables is very easy. In SuSEfirewall2 it amounts to
setting a number of variables to what you want the firewall to do. There
are other programs similar to SuSEfirewall2, but this is one of the best
I've seen. Chances of getting it right when starting iptables rules from
scratch are slim, for less than well-experienced iptables hackers. Even
then it may be of questionable economics.
The most time consuming bit of going the $DISTRO way is setting up
proxies, a dhcp server, a dns forwarder, linking the dhcp server with
the dns forwarder (on small LANs I find it by far the easiest to link a
few fixed desktops to fixed IPs in the dhcp server), traffic graphing
tools, log file handling, email filtering, you name it. A few clicks
away in pfsense, and no distracting distro clutter.
> Certainly the advantage of going down the Linux path is the flexibility
True! Although should you really be running the web proxy, mail
filtering etc on the firewall?? Or should that be on your file server?
Volker
PS Please refrain from CC'ing me on list postings, thanks.
--
Volker Kuhlmann is list0570 with the domain in header
http://volker.dnsalias.net/ Please do not CC list postings to me.
More information about the adsl
mailing list