Content-type: text/html

<!DOCTYPE html>
<html>
<head>
  <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
  <meta name="Generator" content="wrote by hand">
  <meta name="Author" content="Joey Kelly">
  <title>JKWiki: EdgeDevices</title>
  <link type="text/css" href="jkwiki.css" rel="stylesheet"/>
  <script src="jkwiki.js"></script>
  <link rel="shortcut icon" href="jokeshow.jpg" type="image/x-icon">
</head>

<body>

  <div id="page">

    <div id="content">
      <!-- <h1>JKWiki: <small>EdgeDevices</small></h1> -->
        <p><a href="?HomePage">HomePage</a> :: <a href="?TechnicalProjects">TechnicalProjects</a> :: EdgeDevices</p>
<h1><a id="EdgeDevices"></a>Edge Devices</h1>
<p>I am partial to using some *nix for my edge device. This affords me more utility than a traditional <q>hardware</q> solution (a misnomer; all hardware firewalls run some sort of operating system) such as Cisco, or the barely-useful low-end router/firewall devices such as a Linksys cable modem router.</p>
<p>My ideal set of applications running on a (preferably) Linux firewall:<br />firewalling code<br />* packet filter &#8212; iptables, or ipfilter if the device is running BSD<br />* proxies &#8212; squid, irc bouncer, what else?<br />routing &#8212; traditional routing, or some sort of NAT<br />ssh for remote access and ad-hoc VPNs<br />NIDS (intrustion detection) &#8212; snort<br />VPN if needed &#8212; IPsec<br />traffic shaping agents if needed &#8212; iproute2, layer-7 filtering, etc.</p>
<h1><a id="WishlistASettopFirewallSolution"></a>Wishlist: a set-top firewall solution</h1>
<p>I am very interested in a set-top device running Linux or [NetBSD <a href="http://netbsd.org">http://netbsd.org</a>], similar in size to the popular <q>cable modem routers</q> that are sold in consumer PC stores. I have used the [NetBSD Firewall <a href="http://www.dubbele.com">http://www.dubbele.com</a>] and also [SmoothWall Linux <a href="http://www.smoothwall.org">http://www.smoothwall.org</a>], which are 2 ends of the spectrum, I suppose. Ideally, my wish router would have services similar to SmoothWall (or [IPCop <a href="http://www.ipcop.org">http://www.ipcop.org</a>]), and run an embedded *nix. I&#39;ve looked at the [Linux Router Project <a href="http://lr101.linux-it-solutions.de/index.php?lang=en">http://lr101.linux-it-solutions.de/index.php?lang=en</a>], but the hardware is way too expensive (or maybe not; more services translate into more value). Perhaps a suitable embedded board exists that could be paired with IPCop?</p>
<p>My friends and I have also considered putting together 1-U rack box with more traditional hardware, running a firewall distro. This might be something we can make money with at some point.</p>

    </div>

    <div id="footer">
      <hr>
      <small><i><b><a href="https://gitlab.com/mmlj4/jkwiki">JKWiki</a></b> is a scraped-together wiki app by Joey Kelly</i></small>
    </div>

  </div>

</body>
</html>