Re: Building a Firewall out of a Laptop

On Fri, 18 Jan 2008 13:29:52 -0800, robertbbm wrote:

I had a question about firewalls. I have a network at home that
consist:


Cable Modem ----> Linksys Router ---> 24 Port Switcher ---> Multi-
ports through out my home.


I would like to place a firewall in between the modem and router or
replace the router with a router/firewall. One of the option I have
been looking at is a linux-based firewall running on a laptop (like
floppyfw, smoothwall). I came across an old laptop (Penitum I, 128MB,
CD, Floppy, no harddrive). I downloaded floppyfw and it booted the
laptop, but requires configuration. That's as far as I got.

I like the idea of using Linux, eventhough I have no knowledge of it. I
did built a NAS using a linux software called NAS Lite. The OS boots up
from a floppy and everyone on my network can access the drives. The
network drives have been running for over 8 mouths without any problems.

So what do you suggest? A hardware firewall off-the-shelf or a firewall
built from an old PC/laptop under linux? Has anyone tried this with
success?

I have my FIOS connection plugged into my Linux box and run a iptables /
firewall script on it. I'm probably aby-normal... those cute little
routers with the built in firewall are easy to run, but if you want to
do 'special things'... it's easier to customize an iptables script or
a dhcp.conf file. ... for example.. I have about 15 different systems
in my home office... they all use dhcp to get an ip address... ( dhcp
is easy to set up ) but I like 'fixed' ips, so assign fixed ip's using
dhcp... you generally can't do that with a pre-configured router.

I also run vm instances and use iptables to move things between
machines... again... not easy to do with most off-the-shelf routers.


As for a laptop running a firewall.... most laptops are not designed to
do 24x7x365. They generate a lot of heat and can't dissipate it as well
as a desktop box. It might be ok... but a cheap frys's motherboard / cpu
and clone case will be cheaper and easier to upgrade hardware.

--
D.A.M. - Mothers Against Dyslexia

see http://www.jacksnodgrass.com for my contact info.

jack - Grapevine/Richardson
.

Relevant Pages

  • Re: 56k dial up on laptop 802.11G ?
    ... >>> Linux firewall is not a firewall... ... NAT router? ... traffic can be set like it can be set for packet filtering like they can be ...
    (alt.internet.wireless)
  • RE: Home Security.
    ... Subject: Home Security. ... I would suggest using linux as your router. ... Other than that, as long as you set your firewall up right, you ...
    (Security-Basics)
  • Re: Replaced NT 4 Server with Linux
    ... Maybe later when i will be more confidential with linux. ... Cisco both with the same configuration i'm doing now with your help. ... > off by a second line of defense (the Linux firewall machine you don't ... > router and keeping track of connections, running IDS's, etc - your Cisco ...
    (comp.os.linux.security)
  • Re: Network off a network, but not a subnet mask
    ... I disabled the firewall on the XP machine and tried again. ... The XP file system is shared and when I put the laptop on the first ... It is therefore a router. ... a HP printer and a second (wireless) router. ...
    (Ubuntu)
  • Re: Linux, Windows, and cable modem
    ... > You plug system into same place you would plug router. ... I'd probably have to put it under the stairs, where there is no power, ... > linux to hub. ... > Firewall does that automagically when you setup forwarding rules. ...
    (alt.linux)