[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.
11/06/2009 at 10:36AM PST, ID: 24878869 | Points: 500
[x]
Attachment Details

Linux firewall and VPN recommendations

Asked by jvossler in Virtual Private Networking (VPN), IPSec Security Protocol, Internet Security

Tags: linux, firewall, security, VPN

Howdy,

I am beginning the planning process of replacing an existing Checkpoint firewall/VPN on Solaris with a LInux based solution.  Since I am mainly a servers/storage person I have limited experience with security matters.

I need to get recommendations for:
   -   distro of Linux - currently considering: fedora, jeos, suse, ubuntu (must be 64 bit)
   -   firewall software - currently considering: IPtables
   -   firewall frontend - nothing on the table yet
   -   VPN solution - currently considering strongswan

Nothing is set in stone and I am willing to look at anything.  But this will be for a corporate firewall for a small company that embraces OOS.  The big reason for the change is that Checkpoint does not support 64-bit Linux as clients and all the management tools do not run on 64 bit Linux.

Behind the firewall will be: 3 or 4 web sites, email server, DNS primary and secondary, ftp server, and a host of internal equipment.  NAT is a must.

All suggestions, comments and observations are welcome.

Thanks

[+][-]11/06/09 10:46 AM, ID: 25761839

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/06/09 12:28 PM, ID: 25762748

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]11/07/09 10:01 AM, ID: 25767288

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/09/09 12:06 PM, ID: 25779457

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]11/16/09 01:36 PM, ID: 25834406

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]11/16/09 04:11 PM, ID: 25835695

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/16/09 04:28 PM, ID: 25835764

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20091111-EE-VQP-91 - Hierarchy / EE_QW_3_20080625