Re: Going small

From: Nikolas Britton (
Date: 04/14/04

  • Next message: John Murphy: "Re: Going small"
    Date: Wed, 14 Apr 2004 12:51:00 -0500
    To: Andrew White <>,

    I'll 2nd that, I've been a happy m0n0wall user since pb14 (mid 2003?).
    the thing "just works".

    Andrew White wrote:

    >You might want to try m0n0wall
    >You could forget having a hardrive at all and use a flashcard instead,
    >leaving you with no mechanical parts to fail...
    >-----Original Message-----
    >[] On Behalf Of John Murphy
    >Sent: 14 April 2004 13:07
    >Subject: Going small
    >Hope everyone had a nice easter.
    >I've decided to stop messing about with noisy old 486s for the gateway/
    >firewall. The one I've been configuring runs just fine but it has a large
    >hot heatsink cooling some power transistor/regulator devices and I just
    >don't trust it for 24/7 use in a cupboard...
    >I'm going to get a Soekris Net4801 and fit a 30G HD from a broken laptop I
    >was given. Just undecided whether to get it from the USA or Belgium (I'm in
    >the UK); the 21%VAT against the better exchange rate etc.
    >(Update: they were out of stock at the manufacturers so I've ordered one
    >from with case and 2.5" hard drive mounting kit.
    >Got my name on the last one! I could have it before the weekend.)
    >I don't know much about them at this stage, except they run FreeBSD of
    >course and they're probably ten times as efficient as the thing I was going
    >to use.
    >I'll write my findings here if no-one strongly objects.
    >Some good pages I've found so far:
    >I'll be going against the recommendation to use a physically separate device
    >for the firewall on the grounds that I can enable some server side filtering
    >at the ISP and I can't afford two soekrises just now.
    >So it will run ipf, ipnat, ipmon, ftpd, ntp, bind (caching only at first),
    >sendmail and boa (web server).

    _______________________________________________ mailing list
    To unsubscribe, send any mail to ""

  • Next message: John Murphy: "Re: Going small"

    Relevant Pages

    • Going small
      ... I'm going to get a Soekris Net4801 and fit a 30G HD from a broken laptop ... device for the firewall on the grounds that I can enable some server ... sendmail and boa (web server). ...
    • Re: disconnect a hacker
      ... My Web server station is right next ... my attention divided by security concerns... ... see an IP connected to port 80, ... I've been forwarding my firewall logs to my ISP, ...
    • Re: Firewall on server itself
      ... Perhaps the iptables could defend against an intruder who is already ... Firewall vender specific vulnerabilities ... >> be configured to protect the web server as well other computers on ... > The Gartner Group just put Neoteris in the top of its Magic Quadrant, ...
    • Re: [fw-wiz] Using SSL accelerators in firewalls
      ... It also depends on what you're using your SSL for, and how tightly you can couple ... your firewall with your web application. ... web server don't have to be very aware of each other. ... >> lost in the process and the security of transactions eroded. ...
    • Re: Web server behind Symantec Enterprise Firewall
      ... I've published a virtual IP at the Firewall to which i route the http ... NAT rule AccesoServer was chosen, but client transparency is ... Since the web server is on the LAN, you shouldn't have to add any route ...