[AusNOG] Firewall
Colin Stubbs
colin.stubbs at equatetechnologies.com.au
Wed Feb 25 10:09:18 EST 2015
I think you're wasting your time, and as someone else mentioned you'd be
best walking away from this.
You'd need to combine the host routing and firewalling capabilities, e.g.
iptables, with various content filtering capabilities, e.g. Squid+Websense.
Oh wait... that's a UTM appliance... your customer is asking you to build
them a UTM appliance... from scratch.
That's not commercially viable for you if you have to ask AusNOG for
options.
-Colin
On 24 February 2015 at 23:07, Sam Sarkis-UIP <ssarkis at unitedip.net.au>
wrote:
> It is an odd request, yes it MUST be a server based Firewall.
>
>
>
> No go on the vASA or vSRX as we don’t have access to the Hypervisor at all.
>
>
>
> We only get given an pre-build OS and then we can install whatever
> application they want on it.
>
>
>
>
>
>
>
> *From:* AusNOG [mailto:ausnog-bounces at lists.ausnog.net] *On Behalf Of *Skeeve
> Stevens
> *Sent:* Tuesday, 24 February 2015 10:17 PM
> *To:* Sam Sarkis-UIP
> *Cc:* ausnog at lists.ausnog.net; ausnog at ausnog.net
> *Subject:* Re: [AusNOG] Firewall
>
>
>
> Sounds like an odd request... you mean it MUST be a Server based Firewall?
>
>
>
> If that is an issue, get around it by going VMware and using vASA or vSRX?
>
>
>
> ...Skeeve
>
>
> --
>
> Skeeve Stevens - The ISP Guy
>
> Email: skeeve at theispguy.com ; Twitter: @TheISPGuy
> <https://twitter.com/TheISPGuy>
>
> Blog: TheISPGuy.com <http://theispguy.com/> ; Facebook: TheISPGuy
> <https://www.facebook.com/theispguy>
>
> Linkedin: /in/skeeve <http://www.linkedin.com/in/skeeve> ; Expert360:
> Profile <https://expert360.com/profile/d54a9>
>
>
>
> On Mon, Feb 23, 2015 at 9:09 PM, Sam Sarkis-UIP <ssarkis at unitedip.net.au>
> wrote:
>
>
>
> Hi All,
>
>
>
> I know this is strange but we have a specific requirement for a customer.
>
>
>
> Does anyone know or recommend a firewall / UTM software that can be
> installed on an existing Windows, Redhat, SuSE, or Centos Server.
>
>
>
> We would prefer a commercial package.
>
>
>
> We cannot overwrite the existing os and have to work within any of the
> above mentions platforms only.
>
>
>
> Kind Regards
>
>
>
> Sam
>
>
>
>
>
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20150225/d2aec4b5/attachment-0001.html>
More information about the AusNOG
mailing list