[PLUG] Good Firewall Distro/Application
Quentin Hartman
qhartman at gmail.com
Tue Jun 30 03:23:30 UTC 2009
Might want to look into Untangle. It meets most/ all of your requirements
and is easy to manage.
On Mon, Jun 29, 2009 at 5:07 PM, Tim Garton <garton.tim at gmail.com> wrote:
> All,
> Can anyone recommend a good firewall distro or application for
> Linux? Or, for that matter, I guess it doesn't have to be Linux but
> could be some type of hardware solution as well. Currently I haven't
> had much luck other than rolling my own, but the only one that I've
> tried extensively is Endian Firewall Community Edition. In order to
> qualify as "good" I would expect the following features:
>
> 1. Support for multiple uplinks and ability to load-balance between
> them (if it can't load-balance, at least be able to easily switch to
> the other link)
> 2. VPN support (probably IPSEC or OpenVPN)
> 3. Ability to have a failover system
> 4. Advanced traffic shaping - throttle/prioritize traffic based on
> protocol, src/dst port and ip, packet size, tcp flags,
> type-of-service, etc. ability to guarantee a minimum amount of
> bandwidth for different types of traffic.
> 5. Ability to do DNAT for incoming services
> 6. Real-time monitoring of bandwidth utilization to easily pinpoint
> what the large consumers are
>
> In our current state I guess 3 isn't necessarily a deal breaker, but
> as we continue to grow I can see it becoming more important. Thanks!
>
> -Tim
> _______________________________________________
> PLUG mailing list
> PLUG at lists.pdxlinux.org
> http://lists.pdxlinux.org/mailman/listinfo/plug
>
More information about the PLUG
mailing list