Hi all. I have Shorewall running at three businesses that I do freelance work for. On all of them I''ve simply installed a miminum RedHat onto a small hard drive ( 1 or 2 gig ), installed Shorewall, and went from there. I''d like to be able to setup the machine with NO HARD DRIVE, thus booting form CD or something like that. What is the best way to do that? The trouble is, that without a hard drive, where would I store the shorewall config files? Floppy? Zip disk? Another server? Thanks --Dan
On Monday 08 March 2004 08:40 am, Dan Delaney wrote:> Hi all. > > I have Shorewall running at three businesses that I do freelance > work for. On all of them I''ve simply installed a miminum RedHat onto > a small hard drive ( 1 or 2 gig ), installed Shorewall, and went > from there. I''d like to be able to setup the machine with NO HARD > DRIVE, thus booting form CD or something like that. What is the best > way to do that? The trouble is, that without a hard drive, where > would I store the shorewall config files? Floppy? Zip disk? Another > server?http://leaf.sourceforge.net -- Look at the Bering and Bering-ulibc distributions. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net
Tom Eastep wrote:>>I have Shorewall running at three businesses that I do freelance >>work for. On all of them I''ve simply installed a miminum RedHat onto >>a small hard drive ( 1 or 2 gig ), installed Shorewall, and went >>from there. I''d like to be able to setup the machine with NO HARD >>DRIVE, thus booting form CD or something like that. What is the best >>way to do that? The trouble is, that without a hard drive, where >>would I store the shorewall config files? Floppy? Zip disk? Another >>server? > > http://leaf.sourceforge.net -- Look at the Bering and Bering-ulibc > distributions.Or.... we have just setup two firewalls on 512Mb compact flash cards. You can get CF-IDE adapters (the flash card is seen as a real IDE device) for around $10, so the only expenses would be for the flash cards itself. Debian stable fits on the 512Mb easily... Cheers, -- - Pieter
Pieter Ennes wrote: > Or.... we have just setup two firewalls on 512Mb compact flash > cards. You can get CF-IDE adapters (the flash card is seen as a > real IDE device) for around $10, so the only expenses would be for > the flash cards itself. Debian stable fits on the 512Mb easily... I have to say, that''s a VERY COOL idea. I''ll have to look into that! Thanks! --Dan
Have a look at: http://www.sentryfirewall.com Has shorewall installed, boot from cd, config files on floppy or from web.. I like it.. Jerry Vonau ----- Original Message ----- From: "Dan Delaney" <ddelaney@powercreative.com> To: <shorewall-users@lists.shorewall.net> Sent: Monday, March 08, 2004 10:40 Subject: [Shorewall-users] Setup Shorewall with no hard drive?> Hi all. > > I have Shorewall running at three businesses that I do freelance > work for. On all of them I''ve simply installed a miminum RedHat onto > a small hard drive ( 1 or 2 gig ), installed Shorewall, and went > from there. I''d like to be able to setup the machine with NO HARD > DRIVE, thus booting form CD or something like that. What is the best > way to do that? The trouble is, that without a hard drive, where > would I store the shorewall config files? Floppy? Zip disk? Another > server? > > Thanks > --Dan > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe:https://lists.shorewall.net/mailman/listinfo/shorewall-users> Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm
On Monday 08 March 2004 06:56 pm, Jerry Vonau wrote:> Have a look at: > > http://www.sentryfirewall.com > > Has shorewall installed, boot from cd, config files on floppy or from > web.. > I like it.. > > Jerry Vonau >But why did they put ipv6 in it? -- John Andersen - NORCOM http://www.norcomsoftware.com/
Monday, March 8, 2004, 8:27:00 PM, you wrote:> Or.... we have just setup two firewalls on 512Mb compact flash cards. > You can get CF-IDE adapters (the flash card is seen as a real IDE > device) for around $10, so the only expenses would be for the flash > cards itself. Debian stable fits on the 512Mb easily...Do you have any idea how long the compactflash disks last ? I read about 100K write cycles. Is this true/ what are your experiences on the CF disks ? Are they fast enough ? I am so interested because we are making a WLAN between schools and I want the hardware to be quite solid. Cheers, PJ -- Scheppersintituut Wetteren Cooppallaan 128 9230 Wetteren Tel: 09 3692072 Fax: 09 3661348 mailto:pieterjan.heyse@scheppers-wetteren.be
On Tue, 2004-03-09 at 01:43, Pieterjan Heyse wrote:> Monday, March 8, 2004, 8:27:00 PM, you wrote: > > > Or.... we have just setup two firewalls on 512Mb compact flash cards. > > You can get CF-IDE adapters (the flash card is seen as a real IDE > > device) for around $10, so the only expenses would be for the flash > > cards itself. Debian stable fits on the 512Mb easily... > > Do you have any idea how long the compactflash disks last ? I read > about 100K write cycles. Is this true/ what are your experiences on > the CF disks ? Are they fast enough ? > > I am so interested because we are making a WLAN between schools and I > want the hardware to be quite solid. >I''ve used LEAF (http://leaf.sourceforge.net) for a couple of years now, mainly the Bering release.. The way it''s designed, everything is zipped on the CF.. It loads initrd, then builds a drive in memory, and unzips all the apps to that... So, the only time you write to it is during initial setup, and then any changes you make to the configuration afterward... Day to day running is from the drive it built in memory.. Though, you do have to remember to backup any changes you''ve made if you''d like them to be there after reboot ;) It''s worth looking at, and can boot from floppy or any IDE device (CF, HD, CD)... -- Homer Parker /"\ ASCII Ribbon Campaign BOFH for homershut.net \ / No HTML/RTF in email http://www.homershut.net x No Word docs in email telnet://bbs.homershut.net / \ Respect for open standards "Bill Gates reports on security progress made and the challenges ahead." -- Microsoft''s Homepage, on the day an SQL Server bug crippled large sections of the Internet.
Pieterjan Heyse wrote:> Do you have any idea how long the compactflash disks last ? I read > about 100K write cycles. Is this true/ what are your experiences on > the CF disks ? Are they fast enough ?Actually, i haven''t bothered with the maximum amount of writes a flash card can handle, mainly because a second firewall is there as a backup. It is interesting to know nevertheless... You won''t be amazed by the throughput of a compact flash card, but you will be of the overall speed. Stuff like ''find / | grep bla'' runs in a second or so; random access is really performing great.> I am so interested because we are making a WLAN between schools and I > want the hardware to be quite solid.We haven''t got any problems at all so far, but might be hitting that 100k write limit some day :) Bye, -- - Pieter
Jerry Vonau wrote:> Have a look at: > http://www.sentryfirewall.comThanks! I downloaded that yesterday and got it running last night. It''s fantastic. Has all the stuff you need right on the CD and it can get its config files from floppy or from a USB thumb drive! Very cool. (He seems to be keeping the things on it up to date pretty well.) Once it boot up, everything is run in RAM and nothing is spinning but the fans. It''s great. Cheers --Dan