(excuse that I am running from Windows.. I need to figure out the
reliant USB to
serial conversion and modem numbers.. ).
Yes, The budget is a important factor as is what they are going to be
used for and how
they are going to be used.
Internet
|
|
Firewall/Gateway low-end box/Router
* IP Tables works wonderful for
this (as does the older
ipchains.. but move to IP Tables).
/ \
Internal network boxes A server for
Apache (for example)
(Switch/NFS server) * Portforward
specific traffic to this box (web)
* Port forward services you need to * Create a 'DMZ' off
another ethernet card if
be located internally. (like if you need you need to run
other services like a web server
ssh/vpn access to the internal network). in a chroot
environment. And only allow minimal
traffic between zones (ethernets) that is necessary.
And it is easy to setup a PXE boot server to handle the
installs/upgrades for most
distributions.. I have setup PXE boot servers for both RedHat Enterprise
and SuSE.
I have notes some of the setup and a rather painful to setup enviroment
(I had
to modify named for our internal setup to send some to Windows PXE servers
and others, based on MAC addresses, to Linux install servers).
Mark
Shakthi Kannan wrote:
Hi,
My thoughts below:
--- "Sundarram V. Paravastu" <pvsundarram@xxxxxxxxx>
wrote:
what are all the options that are available for us
to setup a good
secure network.
What is your budget (hardware)?
we hav 10 old pcs(400MHz) and one p4 as server.
I wish I had that many :)
we want to make a robust network.
Make one of your GNU/Linux system as a router (having
two/three/four ethernet cards). One goes to the
Internet, and the remaining go to the switches.
Connect the PCs to the switches.
A Compex switch at Ritchie street costs Rs.1350/-.
Interconnect the systems using a switch. I use the DAX
ethernet card (8139too driver) which costs about
Rs.300/-. You might need to get some cross-over cables
or you can make them if you have the tools.
Have fun,
K Shakthi
--------------------------------------------------------------------------
Shakthi Kannan, MS
Software Engineer, Specsoft (Hexaware Technologies)
http://www.shakthimaan.com
Indian Linux User's Group (ILUGC), Chennai - Events:
http://www.chennailug.org/wiki/Events
Top secret micro$oft code:
http://quatramaran.ens.fr/~noilhan/clipper/microsoft/secretcode.html
--------------------------------------------------------------------------
__________________________________
Do you Yahoo!?
Read only the mail you want - Yahoo! Mail SpamGuard.
http://promotions.yahoo.com/new_mail ;
_______________________________________________
To unsubscribe, email ilugc-request@xxxxxxxxxxxxx with
"unsubscribe <password> <address>"
in the subject or body of the message.
http://www.ae.iitm.ac.in/mailman/listinfo/ilugc