We have a linux firewall guarding our NT domain here. You really don't need
to worry about NT and linux integration. In the situation you describe,
that is waht you really don't want. Just set up a multihomed IPCHAINS,
IPMasq firewall and have the machines access the private NIC as the default
gateway. Make sure packet forwarding is endabled. A PII300 would be
overkill for what you want to do. Our firewall is a P200 with 32 megs of
RAM and it runs great. In fact, our machine is overkill. Feel free to mail
me off the list with questions.
- Joel
joel@silverw.com
----- Original Message -----
From: <
linux@integertech.com>
To: <
plug-discuss@lists.PLUG.phoenix.az.us>
Sent: Wednesday, August 30, 2000 1:51 PM
Subject: linux firewall for NT domain
>
> I've got a client that has an small NT domain (2 servers, 5 workstations).
> They have no broadband access and two of the boxes use modems to dial-up
to
> an ISP. This is a bad thing because their database server that houses an
> OLTP system is quite exposed when they dial-up. (ah, the joys of NT). I'm
> considering using an old PII 300 with 64 RAM running rh as a firewall for
> this ghastly situation (cost is a major factor, for one thing). They are
> going to be migrating to a T1 in the future as well (something to keep in
> mind).
>
> My question(s) is(are):
>
> Are there any docs specifically on linux firewalls/nt domain/samba/modems?
> I've read the Firewall How-to etc.
>
> I haven't dealt much with NT/linux on the same LAN. I'd say I am an
> "intermediate" linux user, but mostly development. (haven't done much
> firewall / ip chaining stuff).
>
> Any pointers would be great.
>
> thanks,
>
> todd
>
>
> ________________________________________________
> See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't
post to the list quickly and you use Netscape to write mail.
>
> Plug-discuss mailing list - Plug-discuss@lists.PLUG.phoenix.az.us
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss