best linux firewall with p2p blocking and wireless-cafe/WI..
Last response: in Networking
Archived from groups: comp.security.firewalls (More info?)
Hello,
I'm going to setup a good firewall for a university wifi network. For
legal reasons we need to block P2P traffic. We also would like to
redirect new users to a sign-in page on first use (similar to wayport
or other wireless cafe type setups) in order to control access to the
network.
Good traffic monitoring capabilities (on the IP/mac level) would be a
plus as well (something similar to ntop)
I'm planning on going with IPCop and tweaking it, but does anyone else
have any better suggestions?
--Matt
Hello,
I'm going to setup a good firewall for a university wifi network. For
legal reasons we need to block P2P traffic. We also would like to
redirect new users to a sign-in page on first use (similar to wayport
or other wireless cafe type setups) in order to control access to the
network.
Good traffic monitoring capabilities (on the IP/mac level) would be a
plus as well (something similar to ntop)
I'm planning on going with IPCop and tweaking it, but does anyone else
have any better suggestions?
--Matt
More about : linux firewall p2p blocking wireless cafe
Archived from groups: comp.security.firewalls (More info?)
On 27 Jul 2004 23:06:31 -0700, the right honourable mmucklo@yahoo.com
(Matthew Mucklo) wrote:
>Hello,
>
>I'm going to setup a good firewall for a university wifi network. For
>legal reasons we need to block P2P traffic. We also would like to
>redirect new users to a sign-in page on first use (similar to wayport
>or other wireless cafe type setups) in order to control access to the
>network.
>
>Good traffic monitoring capabilities (on the IP/mac level) would be a
>plus as well (something similar to ntop)
>
>I'm planning on going with IPCop and tweaking it, but does anyone else
>have any better suggestions?
>
>
>--Matt
Linux with IPTables is good.
Start by closing the FW completely, then add rules to open it for only
the stuff you want to allow.
look at http://www.realworldlinuxsecurity.com
He's written a nice book on security.
Prepare to study a LOT.
Have a look at SNORT for intrusion detection.
frgr
Erik
On 27 Jul 2004 23:06:31 -0700, the right honourable mmucklo@yahoo.com
(Matthew Mucklo) wrote:
>Hello,
>
>I'm going to setup a good firewall for a university wifi network. For
>legal reasons we need to block P2P traffic. We also would like to
>redirect new users to a sign-in page on first use (similar to wayport
>or other wireless cafe type setups) in order to control access to the
>network.
>
>Good traffic monitoring capabilities (on the IP/mac level) would be a
>plus as well (something similar to ntop)
>
>I'm planning on going with IPCop and tweaking it, but does anyone else
>have any better suggestions?
>
>
>--Matt
Linux with IPTables is good.
Start by closing the FW completely, then add rules to open it for only
the stuff you want to allow.
look at http://www.realworldlinuxsecurity.com
He's written a nice book on security.
Prepare to study a LOT.
Have a look at SNORT for intrusion detection.
frgr
Erik
Archived from groups: comp.security.firewalls (More info?)
On Wed, 28 Jul 2004 at 06:06 GMT, Matthew Mucklo <mmucklo@yahoo.com> spewed
into the usenet group comp.security.firewalls:
> Hello,
>
> I'm going to setup a good firewall for a university wifi network. For
> legal reasons we need to block P2P traffic. We also would like to
> redirect new users to a sign-in page on first use (similar to wayport
> or other wireless cafe type setups) in order to control access to the
> network.
Sounds like you want nocat ( http://nocat.net/ )
>
> Good traffic monitoring capabilities (on the IP/mac level) would be a
> plus as well (something similar to ntop)
Just use nocat on Linux, then run ntop and iptables on it.
Devdas Bhagat
On Wed, 28 Jul 2004 at 06:06 GMT, Matthew Mucklo <mmucklo@yahoo.com> spewed
into the usenet group comp.security.firewalls:
> Hello,
>
> I'm going to setup a good firewall for a university wifi network. For
> legal reasons we need to block P2P traffic. We also would like to
> redirect new users to a sign-in page on first use (similar to wayport
> or other wireless cafe type setups) in order to control access to the
> network.
Sounds like you want nocat ( http://nocat.net/ )
>
> Good traffic monitoring capabilities (on the IP/mac level) would be a
> plus as well (something similar to ntop)
Just use nocat on Linux, then run ntop and iptables on it.
Devdas Bhagat
Related ressources:
- Forump2p , simultaneous connections, router/ firewall ?
- ForumBlocking Access to web-based email
- ForumThe best firewall is?
- ForumWhich Firewall ?
- ForumWould a firewall prevent Sasser worm?
- ForumCan't enable P2P networking.
- ForumWhat's a good firewall
- ForumFirewall
- ForumLinux /untangle newb question: country blocking , hosts.deny vs iptables
- ForumP2P sharing of service manual PDF's
- ForumBlocking IP/MAC address with firewall ...
- ForumHow many firewalls is too many?
- ForumIs blocking ads as bad as piracy?
- ForumIs Software Firewall Necessary with a H/W already running?
- Forumlooking for free linux -based firewall
- ForumConfigurating the Firewall in both Linux and Xp!
- ForumPersonal Firewall - Block all but some application
- ForumPulling DHCP from Cable Modem instead of wireless router
- ForumWhich Firewall is Best?
- Forumbest vpn software
- More resources
Read discussions in other Networking categories
!
