[AusNOG] Firewall
Nathanael Bettridge
nathanael at prodigy.com.au
Wed Feb 25 10:58:49 EST 2015
As others have said just use the native packages/features of the OS you’re given then. You can build the equivalent of a UTM with RH or SuSE (heck, they use the same software under the hood anyway) or you could go with a 2012R2 install with RRAS, firewall, web app proxy etc. Whichever suits the job/client best.
If you’re absolutely desperate there’s ways to run a VM in userspace. (qemu or bochs for example depending on exposed cpu features). It’ll be an absolute dog, but at a pinch…
Another option may be to tunnel out to a UTM elsewhere?
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Sam Sarkis-UIP
Sent: Wednesday, 25 February 2015 12:07 AM
To: Skeeve Stevens
Cc: ausnog at lists.ausnog.net; ausnog at ausnog.net
Subject: Re: [AusNOG] Firewall
It is an odd request, yes it MUST be a server based Firewall.
No go on the vASA or vSRX as we don’t have access to the Hypervisor at all.
We only get given an pre-build OS and then we can install whatever application they want on it.
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Skeeve Stevens
Sent: Tuesday, 24 February 2015 10:17 PM
To: Sam Sarkis-UIP
Cc: ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>; ausnog at ausnog.net<mailto:ausnog at ausnog.net>
Subject: Re: [AusNOG] Firewall
Sounds like an odd request... you mean it MUST be a Server based Firewall?
If that is an issue, get around it by going VMware and using vASA or vSRX?
...Skeeve
--
Skeeve Stevens - The ISP Guy
Email: skeeve at theispguy.com<mailto:skeeve at theispguy.com> ; Twitter: @TheISPGuy<https://twitter.com/TheISPGuy>
Blog: TheISPGuy.com<http://theispguy.com/> ; Facebook: TheISPGuy<https://www.facebook.com/theispguy>
Linkedin: /in/skeeve<http://www.linkedin.com/in/skeeve> ; Expert360: Profile<https://expert360.com/profile/d54a9>
On Mon, Feb 23, 2015 at 9:09 PM, Sam Sarkis-UIP <ssarkis at unitedip.net.au<mailto:ssarkis at unitedip.net.au>> wrote:
Hi All,
I know this is strange but we have a specific requirement for a customer.
Does anyone know or recommend a firewall / UTM software that can be installed on an existing Windows, Redhat, SuSE, or Centos Server.
We would prefer a commercial package.
We cannot overwrite the existing os and have to work within any of the above mentions platforms only.
Kind Regards
Sam
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20150224/8f7a2761/attachment-0002.html>
More information about the AusNOG
mailing list