'Re: [coLinux-devel] Windows Firewall'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       colinux-devel
Subject:    Re: [coLinux-devel] Windows Firewall
From:       chris () topologilinux ! com
Date:       2004-04-28 17:22:41
Message-ID: 3090.129.43.5.11.1083172961.squirrel () webmail1 ! b-one ! nu
[Download RAW message or body]

Robert is right it was discussed before. You could probably use aliases on
the coLinux eth0 side and a combination of tap and bridged networking on
the windows side. Look back a month or two for more info. It does consume
a whole lot of resources for a software firewall.

Keep your last computer out of a landfill just add another NIC
the linksys routers run a linux kernel and I heard of an open source
replacement os for them. So a good solution for a linux person would be to
get one and reflash it. That would give total ipTables control.

All software firewalls and expecilly any developed with the current
coLinux tools (unless coLinux could have complete hardware control over
the physical NIC) are vunerable to layer 2 attacks or other non IP layer 3
attacks. netbui rouge hyperSCSI driver etc...


chris

>
>
> Would it be possible to use colinux as a windows firewall?  The idea would
> be to bridge colinux's nic with my windows nic.  Colinux would then be
> tied directly to the outside.  Windows would be setup to route only
> through the WAN device so that colinux can do NAT, mangling, routing and
> other cool firewalling stuff.
>
> Because it is a separate tcp/ip stack this is 100x better than a LSP based
> firewall for windoze like McAfee or Norton's firewall.  With a little work
> and frontend magic, this could be made into a very painless download and
> install since a firewall image could be as small as ~1mb (even 20mb would
> be acceptable -- look at what is commercially available).
>
> Ideas?
>
> --
> Eric Wheeler
> Vice President
> National Security Concepts, Inc.
> PO Box 3567
> Tualatin, OR 97062
>
> http://www.nsci.us/
> Voice: (503) 293-7656
> Fax:   (503) 885-0770
>
>
>
> -------------------------------------------------------
> This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek
> For a limited time only, get FREE Ground shipping on all orders of $35
> or more. Hurry up and shop folks, this offer expires April 30th!
> http://www.thinkgeek.com/freeshipping/?cpg=12297
> _______________________________________________
> coLinux-devel mailing list
> coLinux-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/colinux-devel
>



-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g. 
Take an Oracle 10g class now, and we'll give you the exam FREE. 
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
coLinux-devel mailing list
coLinux-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/colinux-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic