macxsanity
Well-Known Member
a client has asked me to set up a clearOS Gateway /Firewall to replace thier flakey FreeBSD 4 firewall on thier network . i need to know if any one has experiance in this area and if this could be an ideah solution
-
Join the MyBroadband community
South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
-
Question of the Day: Which is the most hair-raising South African mountain pass you've driven?
Using CleasOS as a firewall on a win 2003 server domain
- Thread starter macxsanity
- Start date
The_Unbeliever
Honorary Master
It will work
If the win2k3 server/domain hands out DHCP packets, then disable DHCP in ClearOS.
In DNS have the win2k3 server get its DNS from this specific ClearOS firewall - and the rest of the workstations get their DNS from the Win2k3 server.
You can, of course, disable DHCP on the Win2k3 server and have ClearOS do the DHCP.
If the win2k3 server/domain hands out DHCP packets, then disable DHCP in ClearOS.
In DNS have the win2k3 server get its DNS from this specific ClearOS firewall - and the rest of the workstations get their DNS from the Win2k3 server.
You can, of course, disable DHCP on the Win2k3 server and have ClearOS do the DHCP.
macxsanity
Well-Known Member
For group ware can i use Zimbra community edition or do i have to use the paid for Zarafa ...........
What are they currently using as in a specific distro? How about m0n0wall?
macxsanity
Well-Known Member
They are currently using freeBSD 4
bubbatentoe
Senior Member
- Joined
- Nov 3, 2008
- Messages
- 763
- Reaction score
- 0
It will work fine (ClearOS and AD) but it's not ideal.
An "ideal situation" would be a firewall that natively interacts with Active Directory (LDAP).
There's a guide for getting it to work (ClearOS & AD) but it looks like a lot of work.
http://www.clearfoundation.com/docs/developer/apps/using_ad_for_openldap_user_authentication/start
If it was me I'd can the ClearOS machine and use it elsewhere + get a hardware based firewall like a Checkpoint network appliance (with 3 ports) + annual maintenance & upgrades.
100% peace of mind doesn't have a price, especially where a substantial investment like an AD infrastructure is concerned.
An "ideal situation" would be a firewall that natively interacts with Active Directory (LDAP).
There's a guide for getting it to work (ClearOS & AD) but it looks like a lot of work.
http://www.clearfoundation.com/docs/developer/apps/using_ad_for_openldap_user_authentication/start
If it was me I'd can the ClearOS machine and use it elsewhere + get a hardware based firewall like a Checkpoint network appliance (with 3 ports) + annual maintenance & upgrades.
100% peace of mind doesn't have a price, especially where a substantial investment like an AD infrastructure is concerned.
macxsanity
Well-Known Member
what is the pricing on the Checkpoint network appliance and where can i get one in johanessburg ?
bubbatentoe
Senior Member
- Joined
- Nov 3, 2008
- Messages
- 763
- Reaction score
- 0
Google "Checkpoint UTM-1 Edge Appliance N Series"
and contact Brynmor Campos @ Information Security Architects (Pty) Ltd.
+27 (0)11 326-2242
and contact Brynmor Campos @ Information Security Architects (Pty) Ltd.
+27 (0)11 326-2242