The firewall is one of the most useful security tools, as its purpose is to determine what enters and exits in your local network via the Internet. For example, the router allows us to access the Internet, and it also works as a main firewall, because it is through which all the information that we share or is managed We receive them online. But relying on the router to protect you is a big mistake. That's why I suggest in this article to recycle an old computer or computer that you don't know how to use and convert it to a custom firewall that uses the Linux operating system as an operating system.
For this purpose, specialized distributions are available whose sole purpose is to create a router or a firewall in addition to other security features.
Consequently, in addition to the router we use to access the network, we will have a second barrier to configure, allocate, and ultimately control our local network. Let's get to know four Linux distros for use as firewalls. It is free, does not require a very powerful computer and allows you to fully customize what comes and what comes out of our network.
We started with one of the most popular Linux allocations for this purpose, IPFire, which can be used as a firewall, a proxy server and a VPN server.
With an installation program ranging from 170MB to 230MB depending on whether you choose a CD or USB, IPFire has a document-wiki system to learn how to install firewall features and take advantage of all its features.
Since this distribution is Linux, you can expand its functions by downloading new packages from the Internet. For example, you can add compatibility with ownCloud, Samba, NFS, CUPS, back up, create an IRC proxy, mail server, or server compatible with MySQL and PHP.
For the rest, its main function as a firewall is of SPI or Stateful Packet Inspection type, to analyze real-time TCP and UDP connections.
IPFire is mainly managed across the web, where it is possible to configure rules, limit ports, addresses or services, view real-time connections, content filter type, etc.
Small, simple, powerful, this distribution is provided. Compatible with different architectures, such as Raspberry Pi (ARM), PPC x86 / x86-64. As its size is very small between 8 MB and 130 MB as per your choice, it is available in several forms. As in the previous distribution, Alpine Linux has been well documented to answer questions about how to install and use.
Among its many functions that allow installing mail server and web servers (Apache, Nginx) we can also store our own page created using Drupal, WordPress or MediaWiki.
With the name Zeroshell or Zeroshell Linux Router, this exciting distribution provides you with router and firewall functions to manage your internet connection and protect yourself from risks, and you can control them via its own web interface.
Like Alpine Linux , we can install it on x86 or x86-64 computer or on ARM architecture devices like the famous Raspberry Pi.
With this distribution you will be able to fully see the traffic entering and leaving your network, and you can also limit connections, filter content or close ports, and control IP or MAC addresses.
On the other hand, they are VPN compatible and allow you to create NTP server. On the security level, in addition to firewall functions, it provides Kerberos 5 authentication, X.509 certification and can act as an HTTP proxy.
Based on Red Hat, ClearOS is a distribution designed to manage small and medium networks in professional environments.
It is commendable that it contains a graphic installer and you can deal with it with relative ease, and the matter is mainly based on its graphical interface through which you can fully manage it.
In addition, it is available in different versions, depending on the size of the network or if you want to use it for personal or professional use.
Among its many functions, ClearOS provides virus protection, anti-malware, content filtering, proxy server, etc. With it, you can also block IP addresses, block words or topics, and even file formats.
As for the rest, it offers VPN support, proxy Web, email service management, printing and network file management (via CUPS and Samba), etc.
ليست هناك تعليقات:
إرسال تعليق