Re: recommend hardware firewall

Tim: >> A firewall at the router can stop things at the boundary, but >> depending on how it's implemented, may not stop things between >> clients within your LAN. That's probably not an issue at home, but >> would be at a more public LAN (school, office, cafe, etc.). Bill Davidsen: > Only if you

Re: recommend hardware firewall

On 04/08/2010 10:21 AM, Bill Davidsen wrote: > Kwan Lowe wrote: > >> On Tue, Apr 6, 2010 at 11:33 AM, Bruno Wolff III wrote: >> >> >>> Remember that there are also power costs. The $50 routers don't draw as much >>> power as an old repurposed general purpose machine is going to. They als

Re: recommend hardware firewall

Michael Miles wrote: > So if I wanted to create a separate machine and put 3 or 4 good lan > adapters on a amd xp 1500 > install fedora 12 and use it as a firewall only, would probably be a > good alternative to a 100 dollar router > If all you want is the capabilities of a $50 router, then tha

Re: recommend hardware firewall

Kwan Lowe wrote: > On Tue, Apr 6, 2010 at 11:33 AM, Bruno Wolff III wrote: > >> Remember that there are also power costs. The $50 routers don't draw as much >> power as an old repurposed general purpose machine is going to. They also >> come with wireless support. >> >> Depending on what you are

Re: recommend hardware firewall

Tim wrote: > On Sun, 2010-04-04 at 10:22 -0700, Michael Miles wrote: >> Is it better to run firewall through fedora 12 or through router or both > > A firewall at the router can stop things at the boundary, but depending > on how it's implemented, may not stop things between clients within your >

Re: recommend hardware firewall

Michael Miles wrote: > It looks like the default desktop config for firewall lets everything > through > Don't be misled by the policy, the last rule can be read "If it isn't accepted by now tell it to go away." I do have my policy set to DROP, though, just in case I manage to test something a

Re: recommend hardware firewall

Lots of great stuff here Thanks everyone. Why use Windows when you can use Fedora On 04/06/2010 09:18 AM, Bruno Wolff III wrote: > On Tue, Apr 06, 2010 at 11:57:14 -0400, >Kwan Lowe wrote: > >> I'm putting together an Atom-based system for just this purpose. Power >> consumption is no

Re: recommend hardware firewall

On Tue, Apr 06, 2010 at 11:57:14 -0400, Kwan Lowe wrote: > > I'm putting together an Atom-based system for just this purpose. Power > consumption is not as low as a $50 router (and probably never could > be), but I'm adding three NICs (1 dual, 1 single port) so that I can > create a DMZ and LAN

Re: recommend hardware firewall

On Tue, Apr 6, 2010 at 11:33 AM, Bruno Wolff III wrote: > Remember that there are also power costs. The $50 routers don't draw as much > power as an old repurposed general purpose machine is going to. They also > come with wireless support. > > Depending on what you are going to do with the firew

Re: recommend hardware firewall

On Mon, Apr 05, 2010 at 19:45:08 -0700, Michael Miles wrote: > I do plan on an upgrade to a better router > > So if I wanted to create a separate machine and put 3 or 4 good lan > adapters on a amd xp 1500 > install fedora 12 and use it as a firewall only, would probably be a > good alternati

Re: recommend hardware firewall

On Tue, 2010-04-06 at 14:06 +0300, Doron Bar Zeev wrote: > why would that be different from linux with iptables? BSD uses a different rule technique. Well it did, the last time I had a look at it (quite some time ago). I seem to recall it was regarded as being better. -- [...@localhost ~]$ una

Re: recommend hardware firewall

> I know this is a fedora list but OpenBSD with PF will work very well as > a router out the box and well worth a look at (even if it's just for > research purposes) > > I know this is not to the discussion but I wanted to know, why would that be different from linux with iptables? -- users mailin

Re: recommend hardware firewall

On 06/04/2010 03:45, Michael Miles wrote: > On 04/05/2010 05:40 PM, Mail Lists wrote: >>Lots of good comments here. >> >> I have seen a befsx (newer than the befsr) which could not keep up >> with a cable internet connection - reduced d/l by 20% or so. This was a >> nominal 30 Mb/s d/l and

Re: recommend hardware firewall

On 04/05/2010 05:40 PM, Mail Lists wrote: >Lots of good comments here. > > I have seen a befsx (newer than the befsr) which could not keep up > with a cable internet connection - reduced d/l by 20% or so. This was a > nominal 30 Mb/s d/l and the router was definitely the bottleneck. > >

Re: recommend hardware firewall

Lots of good comments here. I have seen a befsx (newer than the befsr) which could not keep up with a cable internet connection - reduced d/l by 20% or so. This was a nominal 30 Mb/s d/l and the router was definitely the bottleneck. The primary firewall, linux with over 30,000 rules has

Re: recommend hardware firewall

On 04/05/2010 11:51 AM, Rick Stevens wrote: > On 04/05/2010 11:33 AM, Michael Miles wrote: > >> On 04/05/2010 10:15 AM, Mikkel wrote: >> >>> On 04/05/2010 11:51 AM, Michael Miles wrote: >>> >>> On 04/05/2010 09:34 AM, Mikkel wrote: > On 04/05/2010 11:1

Re: recommend hardware firewall

On 04/05/2010 11:33 AM, Michael Miles wrote: > On 04/05/2010 10:15 AM, Mikkel wrote: >> On 04/05/2010 11:51 AM, Michael Miles wrote: >> >>> On 04/05/2010 09:34 AM, Mikkel wrote: >>> On 04/05/2010 11:16 AM, Michael Miles wrote: > I'm not too bad with firewalls but I am used to mor

Re: recommend hardware firewall

On 04/05/2010 10:15 AM, Mikkel wrote: > On 04/05/2010 11:51 AM, Michael Miles wrote: > >> On 04/05/2010 09:34 AM, Mikkel wrote: >> >>> On 04/05/2010 11:16 AM, Michael Miles wrote: >>> >>> I'm not too bad with firewalls but I am used to more detailed firewall software. >>

Re: recommend hardware firewall

On 04/05/2010 11:51 AM, Michael Miles wrote: > On 04/05/2010 09:34 AM, Mikkel wrote: >> On 04/05/2010 11:16 AM, Michael Miles wrote: >> >>> I'm not too bad with firewalls but I am used to more detailed firewall >>> software. >>> I just came from the hell they call Win 7 and I was using Bitdefen

Re: recommend hardware firewall

On Mon, Apr 05, 2010 at 09:16:20 -0700, Michael Miles wrote: > I'm just using the firewall that comes with Fedora 12, is there better > firewall software out there. That depends on what you are looking for. iptables has limited deep packet inspection features. It is also only maintaining a sm

Re: recommend hardware firewall

On 04/05/2010 09:34 AM, Mikkel wrote: > On 04/05/2010 11:16 AM, Michael Miles wrote: > >> I'm not too bad with firewalls but I am used to more detailed firewall >> software. >> I just came from the hell they call Win 7 and I was using Bitdefender >> for the last couple of years. >> I'm just usi

Re: recommend hardware firewall

On 04/05/2010 11:16 AM, Michael Miles wrote: > I'm not too bad with firewalls but I am used to more detailed firewall > software. > I just came from the hell they call Win 7 and I was using Bitdefender > for the last couple of years. > I'm just using the firewall that comes with Fedora 12, is the

Re: recommend hardware firewall

On 04/05/2010 12:03 AM, Tim wrote: > On Sun, 2010-04-04 at 10:22 -0700, Michael Miles wrote: > >> Is it better to run firewall through fedora 12 or through router or both >> > A firewall at the router can stop things at the boundary, but depending > on how it's implemented, may not stop t

Re: recommend hardware firewall

On Monday 05 April 2010, Michael Miles wrote: >On 04/04/2010 10:01 PM, Gene Heskett wrote: >> On Monday 05 April 2010, Michael Miles wrote: >>> On 04/04/2010 07:41 PM, Gene Heskett wrote: On Sunday 04 April 2010, Michael Miles wrote: > On 04/04/2010 12:32 PM, Dave Ihnat wrote: >> On Su

Re: recommend hardware firewall

On Sun, 2010-04-04 at 10:22 -0700, Michael Miles wrote: > Is it better to run firewall through fedora 12 or through router or both A firewall at the router can stop things at the boundary, but depending on how it's implemented, may not stop things between clients within your LAN. That's probably

Re: recommend hardware firewall

On 04/04/2010 10:01 PM, Gene Heskett wrote: > On Monday 05 April 2010, Michael Miles wrote: > >> On 04/04/2010 07:41 PM, Gene Heskett wrote: >> >>> On Sunday 04 April 2010, Michael Miles wrote: >>> On 04/04/2010 12:32 PM, Dave Ihnat wrote: > On Sun, Apr 04,

Re: recommend hardware firewall

On Monday 05 April 2010, Michael Miles wrote: >On 04/04/2010 07:41 PM, Gene Heskett wrote: >> On Sunday 04 April 2010, Michael Miles wrote: >>> On 04/04/2010 12:32 PM, Dave Ihnat wrote: On Sun, Apr 04, 2010 at 03:26:52PM -0400, Bill Davidsen wrote: > I see no benefit to a hardware router v

Re: recommend hardware firewall

On 04/04/2010 07:41 PM, Gene Heskett wrote: > On Sunday 04 April 2010, Michael Miles wrote: > >> On 04/04/2010 12:32 PM, Dave Ihnat wrote: >> >>> On Sun, Apr 04, 2010 at 03:26:52PM -0400, Bill Davidsen wrote: >>> I see no benefit to a hardware router vs. running Linux with th

Re: recommend hardware firewall

On Sunday 04 April 2010, Michael Miles wrote: >On 04/04/2010 12:32 PM, Dave Ihnat wrote: >> On Sun, Apr 04, 2010 at 03:26:52PM -0400, Bill Davidsen wrote: >>> I see no benefit to a hardware router vs. running Linux with the >>> firewall configured. >> >> Well, yes, there is. Two different platform

Re: recommend hardware firewall

On 04/04/2010 02:26 PM, Bill Davidsen wrote: > > I see no benefit to a hardware router vs. running Linux with the firewall > configured. There is a benefit to running a separate firewall machine, doing > nothing else, passing only what you want to pass, tracking things you want to > record for

Re: recommend hardware firewall

On Sun, Apr 04, 2010 at 02:34:48PM -0700, Michael Miles wrote: > I have found that yes it is quite old Yep. Pre-Linux kernel, 1MB RAM IIRC. > I am about to flash the firmware to the latest befsr-v1.46.02_FW_code Absolutely. That's the last one they did, from around 2004. > its a bin file and

Re: recommend hardware firewall

On 04/04/2010 12:32 PM, Dave Ihnat wrote: > On Sun, Apr 04, 2010 at 03:26:52PM -0400, Bill Davidsen wrote: > >> I see no benefit to a hardware router vs. running Linux with the firewall >> configured. >> > Well, yes, there is. Two different platforms, different firewalls, mean > that no

Re: recommend hardware firewall

On Sun, Apr 04, 2010 at 03:26:52PM -0400, Bill Davidsen wrote: > I see no benefit to a hardware router vs. running Linux with the firewall > configured. Well, yes, there is. Two different platforms, different firewalls, mean that no single attack vector can be used on both of them. I wouldn't r

Re: recommend hardware firewall

Michael Miles wrote: > Just a quick question on this topic > > I have a linksys befsr41 router > Is it better to run firewall through fedora 12 or through router or both > > Not having any problems just curious about protection strength > > Thanks > Michael > > > On 04/04/2010 06:13 AM, John A

Re: recommend hardware firewall

Just a quick question on this topic I have a linksys befsr41 router Is it better to run firewall through fedora 12 or through router or both Not having any problems just curious about protection strength Thanks Michael On 04/04/2010 06:13 AM, John Aldrich wrote: > On Sun April 4 2010, Jamie Bo

Re: recommend hardware firewall

Bruno Wolff III wrote: > Fedora users might be more interested in supporting OpenWRT in preference > to DDWRT because they are a more open project. (OpenWRT has a nice build > system. I have used it to build images on i686 for the MIPS processors > commonly used in inexpensive routers. It builds

Re: recommend hardware firewall

On Sun, Apr 04, 2010 at 09:13:46 -0400, John Aldrich wrote: > On Sun April 4 2010, Jamie Bohr wrote: > > Not sure of all your requirement but I use Linksys WRT-54G with > > DD-WRTrunning on it. I picked up the Linksys off > > eBay about a month ago for about > > $45 USD. I r

Re: recommend hardware firewall

On Sun April 4 2010, Jamie Bohr wrote: > Not sure of all your requirement but I use Linksys WRT-54G with > DD-WRTrunning on it. I picked up the Linksys off > eBay about a month ago for about > $45 USD. I ran DD-WRT on a Motorola for over 4 years before it gave up > and died. >

Re: recommend hardware firewall

Not sure of all your requirement but I use Linksys WRT-54G with DD-WRTrunning on it. I picked up the Linksys off eBay about a month ago for about $45 USD. I ran DD-WRT on a Motorola for over 4 years before it gave up and died. On Sat, Apr 3, 2010 at 1:46 PM, rfjones wrote:

recommend hardware firewall

I want to replace my linux box firewall-gateway with an embedded firewall-router. So far I have found none with good user reviews. ie dlink and linksys both panned can anyone recommend a cheap good hardware firewall router? TIA rfjones -- users mailing list users@lists.fedoraproject.org T