Jump to content

Partitioning HDD for linux (Ubuntu,Smoothwall, m0n0wall)


Which firewall would be best for protecting 1 windows XP(Home use) PC?  

6 members have voted

  1. 1.

    • SmoothWall?(what about it?)
      2
    • M0n0Wall?(What About it?)
      1
    • other(please tell, and why)
      0
    • Just use a couple software firewalls(Like ZA or MFP)
      0


Recommended Posts

Posted

Hello!,

If you have read my other posts in the "Hacks, Mods & Coding" section about creating a home firewall with linux for home use(one client PC, the only other computer in the house). you know what im going for. anyway, I wanted to experiment with the different linux distros but only have 2 6gb HDDs, I was planning to put SmoothWall and m0n0wall on one disk just as a test of which would suit my needs best, and the other having ubuntu 6.10 installed on it, how would I go about partitioning my disks to have each installation in a different area and will I be able to select what i want to run each boot( I just want to try the 2 firewalls and decide on one and then delete teh other one.) your help would be most appreciated.

thnx,

Super Pollos

Posted

I put together an OpenBSD box, It’s used as a firewall/public AP and has deep packet inspection and traffic shaping features. It took a bit of work to put together but it was the best option for me.

When building anything it’s more a matter of what you need, instead of what other people think you need.

Posted

yeah i would go hardware all the way. it really does depend on what you need if you want something easy that will just work go with smoothwall. if you want to get your hands a little dirty and learn something along the way go with a full fledged bsd of linux distro. I would stay away from the buntus though. by the time you done getting rid of crap you dont need and configureing the hell out of it you be basically looking at debian anyway. So why not start with debian and build up. instead of starting with ubuntu and working down.

Posted

Generally speaking if you’re building are firewall it should only be your firewall, maybe an AP and router as well, but you don’t want to use it as a desktop PC (Ubuntu) at the same time, it can be done but it’s not a good idea (security issues).

Firewalls should be striped down systems, with only what you absolutely need and nothing else.

You would be better of using a cheap hardware firewall like Sparda said and setting up your computer as a dedicated Linux desktop if your looking at Ubuntu.

If you do build a firewall www.mikrotik.com/interfaces.php is one of my favourite sites for parts.

Posted
I put together an OpenBSD box, It’s used as a firewall/public AP and has deep packet inspection and traffic shaping features. It took a bit of work to put together but it was the best option for me.

When building anything it’s more a matter of what you need, instead of what other people think you need.

You wouldn't happen to have a How-to for this, would you?

Posted

Hardware firewalls are software firewalls running on *dedicated* hardware. Nothing more.

I like Monowall because its simple and light, I would go for this if your not going to set one up yourself.

If you want to set one up yourself then go with OpenBSD and pf, best combination around, although it is a steep learning curve.

Posted
I put together an OpenBSD box, It’s used as a firewall/public AP and has deep packet inspection and traffic shaping features. It took a bit of work to put together but it was the best option for me.

When building anything it’s more a matter of what you need, instead of what other people think you need.

You wouldn't happen to have a How-to for this, would you?

It was a project I started some time back, I think I posted about it hear on the Hak.5 forums. I built my own distro (Firewall/IDS/IPS/router/AP) based around OpenBSD, I was going to make a torrent of it but I didn’t feel there was enough call for it as it was designed to work with a handful of components. I wrote a bulk of it, and I wanted something that was as striped down as I could make it.

I did give a few copies of the source code and other related documents I produced to around 20 guys to make it user friendly and produce documentation that could be understood by people that don’t have years of experience in *NIX. I think they are planning a release date for the finished project (0.1) that supports more hardware and has a webGUI.

When I go home I can make a torrent with a list of tested components if enough people want it.

http://www.hak5.org/forums/viewtopic.php?t...&highlight=

This with a shit load of other features ^

When I start a project that I’m not getting paid for, it tends to start with a handful of ideas and develops into something else.

----------------------------------------------------------------------------------

I’ve wrote some real time tracking software that works with it, but it still needs some work. When it’s finished you should be able to set up six or more WRT54G running a modified version of OpenWrt, three on the top floor of your building and three on the bottom floor and it will track all wireless devices as they move around and give you the information such as the location, MAC address and allows you to assign names to each device and track movements of individuals or everyone and what they are doing.

It's still in development but I have high hopes for it.

Currently the way you set it up involves drawing a map of your building and using GPS and entering the location and power output of each WRT54G into the Firewall/IDS/IPS/router/AP which then overlays the information onto the map. This is what needs a little work.

Posted
Metatron I'd LOVE to help with this but I'm a noob and know next to nothing about anything. But I'd still like to help in anyway I can.

I fly home tomorrow and I will set you up an account when I get the time and pm you a link to my web server. We are using a modified version of PHProjekt, which we use to organise the project, so you will be able to chat to other members of the dev team, see what you can help with and get a copy of anything we have done so far.

It has been said by lots of people that I don’t do user friendly, so even if you just help with simple things like the look and feel of the web GUI, it will be helpful.

Posted
I'd like to help too, if I can.. really interested

I haven’t read any of your posts so I don’t have a feeling for what type of person you are so it’s a maybe.

If I think someone’s a wanker then it’s a no. Everyone gets access to a number of my servers and I don’t want them just pissing around and not adding anything to the project.

(Just because you have access to 2TB of storage, doesn’t mean I want to host your porn or a complete backup of your hard drive’s)

Posted
I'd like to help too, if I can.. really interested

I haven’t read any of your posts so I don’t have a feeling for what type of person you are so it’s a maybe.

If I think someone’s a wanker then it’s a no. Everyone gets access to a number of my servers and I don’t want them just pissing around and not adding anything to the project.

(Just because you have access to 2TB of storage, doesn’t mean I want to host your porn or a complete backup of your hard drive’s)

i have time laying around to help... so lemme know

Posted
Hello!,

If you have read my other posts in the "Hacks, Mods & Coding" section about creating a home firewall with linux for home use(one client PC, the only other computer in the house). you know what im going for. anyway, I wanted to experiment with the different linux distros but only have 2 6gb HDDs, I was planning to put SmoothWall and m0n0wall on one disk just as a test of which would suit my needs best, and the other having ubuntu 6.10 installed on it, how would I go about partitioning my disks to have each installation in a different area and will I be able to select what i want to run each boot( I just want to try the 2 firewalls and decide on one and then delete teh other one.) your help would be most appreciated.

thnx,

Super Pollos

All you need is Iptables and a solid linux distro such as debian... so start cramming that and you will be set

good luck

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...