On 13 Mar 2003 12:54:43 -0600, Daniel Wittenberg <daniel-wittenberg@xxxxxxxxxxx> top posted, _and_, cc'ed, in message<1047581684.1686.4.camel@xxxxxxxxxxxxxxxxxxxxxxxx>: > > On Thu, 2003-03-13 at 07:58, Arnt Karlsen wrote: > > On Thu, 13 Mar 2003 11:41:42 -0000, > > "Chris Partsenidis" <Chris@xxxxxxxxxxx> top posted in message > > <20030313114142.2704C1BB2FE@xxxxxxxxxxxxxxx>: > > > > > > > > ---------- Original Message ------------- > > > > Subject: help on DMZ project > > > > Date: Thu, 13 Mar 2003 17:16:27 +0800 > > > > From: "louie miranda" <lmiranda@xxxxxxxxxx> > > > > To: <netfilter@xxxxxxxxxxxxxxx> > > > > > > > > > > > > I currently have a project to make a DMZ farm of servers. I > > > > actually want to make this firewall > > > > be splitted in to 4 or more networks. I'll be trying to host 3 > > > > different company, I would like to > > > > try using Iptables as my main firewall and gateway before the > > > > internet. > > > > > > > > Could this be done? And which documents should i read? I > > > > currently > > > > ..piece of cake, several ways: http://ipcop.org/ needs its > > own box, http://shorewall.net/ does really does too in your > > case, add in http://webmin.com/ to control it too, from a web > > browser, or, you can control both from ssh. > > I personally would avoid ipcop because the last time I checked it was > still 2.2 based and was not a stateful firewall. I can't speak for ..ipcop-0.1.1 thru 1.2.0 are 2.2/ipchains and _not_ stateful, 1.3 upwards is 2.4/iptables and stateful, just like shorewall. For production requiring statefulness, you want shorewall, until ipcop-1.3beta1 is found demonstrably stable. > shorewall, I haven't had a chance to play with it yet (we wrote our > own firewall code + web interface so I haven't kept up too much on > some of these other projects). ..ah, time to back off on the panting and _take_ that time. ;-) > Dan > -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case.
