Re: Suggested Books & Guides on small bisiness LAN with FreeBSD

On Wednesday 29 November 2006 14:52, wmc20@xxxxxxxxxxxxx wrote:
Hi Guys,

I'm looking for advice or suggestions on how to [re]design a small business
network with FreeBSD. I know that's a pretty broad topic -- I'm not
looking for a simple answer, so much as reference materials.

Background: for over 5 years we've had our business running with a few
FreeBSD servers. An external Internet connected box serves smtp, imap,
http, ftp, dns (external and LAN internal) and http-proxy. Another server
(on LAN behind NAT router) has Samba file & print services, lpd and some
other things.

I guess what I'm looking for is "best practice" suggestions for configuring
all this optimally. Problems we have currently include DNS -- if the
Internet connection goes down, the server chokes, and we can't even get
internal DNS. And security issues, eg: should the email accounts reside
on an Internet-exposed server?

O'Reilly sells "Windows to Linux Migration Toolkit" which sounds like some
of what I'm looking for, except that it's for Linux -- but I've dabbled
with that kludge enough to probably apply the concepts to FreeBSD ;) Any
other suggestions on good books, web sites, etc?

-Wayne B.


Wayne,

If you've been using FreeBSD in production for five years, you are probably
well beyond any O'Reilley offering, imho.

We can all benefit by (yet) another look at "man <topic>," and that's probably
gonna be your most productive resource, since it will allow you to address
your specific issues without having to read any ol' dumbed-down version of
the documentation :)

As for DNS issues, my thought is that if your external DNS server works then
leave it alone and implement a separate internal DNS server to handle your
internal traffic. Just start with the same configuration you have on
external and tweak it as needed. It doesn't have to be authoritative. Also
you are likely also running DHCP, which I'd recommend you move from your
external DNS server to the new internal DNS server (if that is your current
setup).

Usually 2 cents, but free for you!

lane
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: External DNS & smtp relay security & recommendations
    ... Just make sure your internal DNS is kept ... The external DNS server would connect ... Only the external DNS server is configured with Internet root hints. ...
    (microsoft.public.windows.server.dns)
  • DNS Server Allows Remote Clients to Snoop the DNS Cache
    ... The scan run by a security company showed the following vulnerability. ... "DNS Server Allows Remote Clients to Snoop the DNS Cache" ... somewhere on the internet which is used by our company, ... - The external DNS server should be set as a "forwarder" in the DNS settings ...
    (microsoft.public.windows.server.dns)
  • Re: Internal/External DNS
    ... external DNS server to perform DNS lookups on behalf of our internal DNS ... resources on the Internet. ... I think I may not correctly understand recursion or recursive queries. ...
    (microsoft.public.windows.server.dns)
  • Re: Split DNS Implementation Issues (Desparate Plea for Assistance
    ... No external DNS server in the TCP/IP properties of any of your INTERNAL ... > internet, but not resolve internally. ...
    (microsoft.public.win2000.dns)
  • Re: Restrict Dynamic Updates
    ... outlined in the article "HOW TO Configure DNS for Internet Access in ... Windows Server 2003", realizing that that was not the initial intent ... internal DNS server host external public data. ... internal DNS server that hosts your internal AD infrastructure access from ...
    (microsoft.public.windows.server.dns)