News:

Rule #1 - Be Patient - Rule #2 - Don't ask when, if you don't contribute - Rule #3 - You have coding skills - LinuxMCE's small brother is available: http://www.agocontrol.com

Main Menu

security and adsl

Started by richard.e.morton, August 11, 2008, 09:02:20 AM

Previous topic - Next topic

richard.e.morton

Hi

I was hoping for a quick couple of answers. I have spoken to people on here about using two NICs and have been encouraged to use 2 NICs by tschak909.

So we have an Internal and an External NIC

Is LinuxMCE a Stateful Packet Inspection Firewall with the ability to customise rules?
Otherwise is it a NAT Router?

ok, if it is, can the external NIC be an ADSL modem (if I can get one that is supported in Linux), even though most do not appear as network cards? Has anyone tried this? IPCop support a couple of these

Thanks

Richard
[url="//www.plusgroups.org.uk"]www.plusgroups.org.uk[/url]

tschak909

Since LinuxMCE is based on the Linux kernel, and we use a 2.6 variant of the kernel, iptables is used as the firewall.

iptables is a complete stateful inspection firewall.

Also, I would stick with hardware that can be identified by the kernel in Kubuntu 7.10

-Thom

richard.e.morton

Quote from: tschak909 on August 11, 2008, 01:24:43 PM
Since LinuxMCE is based on the Linux kernel, and we use a 2.6 variant of the kernel, iptables is used as the firewall.

iptables is a complete stateful inspection firewall.

Also, I would stick with hardware that can be identified by the kernel in Kubuntu 7.10

-Thom

thanks... I will have a look around...
I work in IT in a FTSE100 company so security is sort of ingrained in everything we do. I am right in saying that LinuxMCE is considered secure enough to have the external network interface exposed to the internet via a plain ethernet modem (i.e. no further security)

sorry to be a pain and thanks for answering so quickly

R
[url="//www.plusgroups.org.uk"]www.plusgroups.org.uk[/url]

tschak909

yes. With that said, we do need a lot of help in moving a large number of processes out of privileged space.

-Thom

richard.e.morton

[url="//www.plusgroups.org.uk"]www.plusgroups.org.uk[/url]