Popular Topics

The Almost-Easy Proxy For Ubuntu

How to install and configure Squid proxy server on Linux
That way you will not run into downtimes. Assigning static IPs and enabling remote access can also be accomplished with a few mouse clicks. Something really cut down, a thin linux appliance or something. Do you wonder if your IT business is truly profitable or if you should raise your prices? Add a line to the file with the following information: Facebook Twitter Pinterest Whatsapp Email. Reply Thursday September 6th, at

Use these Linux distros to secure your network

Community Forums

The firewall uses an Inline Intrusion Prevention System. This is a powerful form of Deep Packet Inspection whereby instead of merely blocking an IP address or port, OPNsense can inspect individual data packets or connections and stop them before they reach the sender if necessary. IPFire is a Linux firewall distro focusing on user-friendliness and easy setup without compromising your security, supporting some useful features such as intrusion detection.

IPFire is specifically designed for people who are new to firewalls and networking, and can be set up in minutes. The installation process allows you to configure your network into different security segments, with each segment being colour-coded.

The green segment is a safe area representing all normal clients connected to the local wired network. The red segment represents the internet. No traffic can pass from red to any other segment unless you have specifically configured it that way in the firewall. The default setup is for a device with two network cards with a red and green segment only. However, during the setup process you can also implement a blue segment for wireless connections and an orange one known as the DMZ for any public servers.

Once setup is complete, you can configure additional options and add-ons through an intuitive web interface. Alternatively you can download a flash image to install it to a router or even an image for ARM devices such as the Raspberry Pi.

This is perfect if you wish to show people who connect to your Wi-Fi network a landing or login page before connecting directly to the internet. It also prevents rogue devices connecting automatically.

Updates are released quarterly. This distro runs on a range of hardware but currently only supports x86 architecture. The website has a handy hardware guide to allow you to choose a compatible device.

The setup assistant will ask you to assign interfaces during the installation, rather than once you've booted to the web interface. You can use the auto-detect feature to work out which network card is which. The firewall has a small number of built-in features, such as multi-WAN, Dynamic DNS, hardware failover, and different methods of authentication. This distro has a clean interface and is very smooth to use. Once again, as it's based on BSD, some of the terminology used is confusing, but doesn't take long to get to grips with.

If you're just after a simple firewall, you can't go wrong by choosing pfSense, but if you need anything above and beyond that basic functionality, you may want to consider one of the other distros. Smoothwall Express is probably the most well-known firewall distro. To test this, we did a quick poll of 20 Linux geeks, asking them to name a firewall distro.

You may prefer to download or indeed print out the installation guide to walk you through the setup process. In order to do this you'll need to create a my. There are three installation options: Standard, Developer and Express.

Developer is reserved for those people who actually want to work on coding the Smoothwall project. Express is a stripped-down version of Smoothwall which ensures maximum compatibility with older hardware. Unless you have a very specific network configuration, you can usually accept the default options. The web-based control panel is simple and easy to understand. Smoothwall Express doesn't provide much in the way of extra features, but does allow you to have a separate account to control the main connection, which is especially useful if you're using dial-up, alongside its caching web proxy service.

One of the benefits of Smoothwall Express is the simplicity it offers when running internal DNS — adding a new hostname takes only a few seconds. Assigning static IPs and enabling remote access can also be accomplished with a few mouse clicks. The only issue we noticed during testing was that assigning static DHCP lease assignments requires you to click Add followed by Save, and it isn't particularly obvious that you have to perform the second step.

This led to a fair bit of confusion with our network attached printers jumping from one IP address to another. Choosing the right firewall distro is largely dependent on your specific requirements, but whatever they may be, having protection from a firewall is simply a matter of common sense given the multitude of dangers on the internet these days. That said, aside from basic protection, once your firewall is installed it can also be helpful to have a few extra features for good measure.

If you're after a basic firewall, then all of the distros here will do a good job, with some performing better than others. If this sounds like you, you can't go wrong with IPFire, which probably has the easiest setup process. Failing that, IPCop and Smoothwall Express are excellent options if you're not after anything too complex. If you need a commercial-grade solution and have money to burn, check out Smoothwall's paid-for arm. If you want something with a small footprint, or to run on an embedded device, pfSense's website contains helpful guides to do this, although it will only run on x86 architectures.

For other types of hardware, consider IPFire. For us, however, a box in the corner that isn't being used to its full extent is a wasted box. I've always found Suse Linux to be very useful as a firewall and can also recommend the 'Suse Linux Firewall on CD' if you're not a Linux expert already. If you're already a Linux pro the Fedora is always a good choice running as a server rather than desktop.

I am using Debian myself for this, the problem with debian is that if according to your repos you might end up with an older stable version of the proxy you want to use. So my advice would be always compile from source so have the most bug fixes you can get.

That way you will not run into downtimes. CentOS is my second distro of choice. However for the job you want to do I would really recommend you take a look at http: Also, take a look at this: Sorry, just read the post above! Great minds think alike I guess? Debian and Squid would work great. That's what I have running at our office. THere is a walkthough on how to set up a transparent proxy with Debian and Squid here: Experts Exchange Solution brought to you by Your issues matter to us.

It's more than this solution. Get answers and train to solve all your tech problems - anytime, anywhere. Try it for free Edge Out The Competition for your dream job with proven skills and certifications. Get started today Stand Out as the employee with proven skills. Start learning today for free Move Your Career Forward with certification training in the latest technologies.

Start your trial today. Linux From novice to tech pro — start learning today.

Test The Proxy Server From The Linux Command-Line

Leave a Reply