On Sun, 2004-04-04 at 07:23, Chad R. Larson wrote:
> At 09:14 PM 3/31/2004, Hilton Travis wrote:
> >If anyone has any thoughts on this setup, or other ways to block
> >particular web addresses/IPs and spam/viruses, then by all means reply!
> Looks pretty good to me. I might think about using a net4801 with m0n0BSD
> for the filter box. I just love those Soekris boxen with no moving
> parts. They should run a hunnert years.
Yeah, that would be good, except that this Filter PC will also be
running remote syslog function for the m0n0wall box. That's something
that could cause issues with a flash only box - and also its IDS logging
(which, in reality, should be empty as m0n0wall won't allow crap
through). Also, using it as a mail filter would require a lot of hard
drive write access, especially when the internal mail server is down
(service packs, whatever) as it has to pull apart and scan the emails.
So this would mean that running it on a CF would be inappropriate.
I'm thinking about building this on m0n0bsd and then using it on a
net4801 with a 2.5" HDD instead of a CF card. This would still allow me
to stock only a limited range of hardware (net4501, net4801) and supply
both pre-built, pre-configured m0n0wall and m0n0bsd/FilterPC boxes as
and when required.
For larger sites, obviously I'd need a unit with more grunt than the
net4801 can provide, and I could then look into VIA EPIA or Celeron
systems as appropriate.
Anyway, something to think about.
Hilton Travis Phone: +61-(0)7-3343-3889
Manager, Quark AudioVisual Phone: +61-(0)419-792-394
Quark Computers http://www.QuarkAV.com/
(Brisbane, Australia) http://www.QuarkAV.net/
Open Source Projects: http://www.ares-desktop.org/
Non Linear Video Editing Solutions & Digital Audio Workstations
Network Administration, SmoothWall Firewalls, NOD32 AntiVirus
Conference and Seminar AudioVisual Production and Recording
War doesn't determine who is right. War determines who is left.