phil8258
asked on
Centos Firewall/Router
Hi,
I'm currently running a server at home with Fedora, and I think i've decided to move to Centos to save on the updates (and try something new, but not too different).
Whilst I make the move (also to a different machine to make things a little easier), I'd like some advice or direction on the following idea:
I'm fairly familiar with using an old PC set up running IPCOP, it works great, just an in/out network setup. My thoughts are, could I consolidate the functionality provided by the IPCOP machine onto the Centos machine??
So, the machine i'm, going to load my new CENTOS setup onto has 2 network interfaces, currently one will be spare. Rather than having the spare, can I connect it to the modem and make the CENTOS machine provide IPCOP-like service to the other network interface facing the internal home network? I've tried to illustrate this with the attached pic incase this is unclear - the proposed change in red.
Features I like in IPCOP - traffic shaping, spamassasin, dhcp, firewall, vpn, snort, the web interface.
Any cons on security for a server doubling up to do this?
Thanks in advance!
Cheers,
Phil.
ee-question.jpg
I'm currently running a server at home with Fedora, and I think i've decided to move to Centos to save on the updates (and try something new, but not too different).
Whilst I make the move (also to a different machine to make things a little easier), I'd like some advice or direction on the following idea:
I'm fairly familiar with using an old PC set up running IPCOP, it works great, just an in/out network setup. My thoughts are, could I consolidate the functionality provided by the IPCOP machine onto the Centos machine??
So, the machine i'm, going to load my new CENTOS setup onto has 2 network interfaces, currently one will be spare. Rather than having the spare, can I connect it to the modem and make the CENTOS machine provide IPCOP-like service to the other network interface facing the internal home network? I've tried to illustrate this with the attached pic incase this is unclear - the proposed change in red.
Features I like in IPCOP - traffic shaping, spamassasin, dhcp, firewall, vpn, snort, the web interface.
Any cons on security for a server doubling up to do this?
Thanks in advance!
Cheers,
Phil.
ee-question.jpg
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thankyou for your comments. I'm not too suprised by the response, but thanks for saving me time in trying to come to the same conclusion.
Cheers, Phil.