+ Post New Thread
Results 1 to 14 of 14
*nix Thread, Distro guidance in Technical; Hi, We are looking at setting up a server (nix) that will act as a proxy/filtering/firewall for a separate PDA ...
  1. #1

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200

    Distro guidance

    Hi,

    We are looking at setting up a server (nix) that will act as a proxy/filtering/firewall for a separate PDA network.

    It's been a while since I've grabbed any linux distros (last one was redhat7!) and I'm out of touch of which would be the best to go for.
    I'm not a beginner in linux but I'm in no way advanced either.
    Am I best off going for Ubuntu or are there any other distros that I should look at that would handle Dans Guardian/Squid etc better?

    Thanks in advance

    Mike

  2. #2

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    We have a Linux based proxy/filter here. It's running Ubuntu 6.06 LTS, Squid and Dansguardian.

  3. #3

    webman's Avatar
    Join Date
    Nov 2005
    Location
    North East England
    Posts
    8,406
    Thank Post
    640
    Thanked 961 Times in 661 Posts
    Blog Entries
    2
    Rep Power
    324
    Some of us are using Ubuntu Server. They have a long-term support (LTS) version, currently 6.06, but another LTS is due in April this year (8.04).

  4. #4
    Jona's Avatar
    Join Date
    May 2007
    Location
    Cranleigh
    Posts
    469
    Thank Post
    14
    Thanked 50 Times in 48 Posts
    Rep Power
    23
    I'd take a serious look at Ubuntu, if you want to stay with redhat the free version of their server is called Cent OS avaliable here: http://www.centos.org/

    The desktop offering from redhat is Fedora avaliable here: http://fedoraproject.org/

  5. #5

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200
    i was just looking at the guides for ubuntu and squidguard.
    should i go for the LTS or just the regular version? also am i ok going for the server version?
    Last edited by MK-2; 11th January 2008 at 10:36 AM.

  6. #6

    dhicks's Avatar
    Join Date
    Aug 2005
    Location
    Knightsbridge
    Posts
    5,653
    Thank Post
    1,258
    Thanked 781 Times in 678 Posts
    Rep Power
    236
    Quote Originally Posted by Geoff View Post
    We have a Linux based proxy/filter here. It's running Ubuntu 6.06 LTS, Squid and Dansguardian.
    Pretty much ditto for us (we're using 6.10 I think, and SquidGuard also). I set up Squid as a transparent proxy, which is a tad fiddly as (as far as I could figure out) to do that you had to compile Squid with appropriate switches yourself. This is a bit more fiddly with Ubuntu than with some other distributions as Ubuntu doesn't have the full set of compilers/runtime libraries/etc installed by default. They're easy enough to figure out (try and compile Squid, spot X-is-missing error message, figure out what package to apt-get install, repeat), but if you want to use Squid as a transparent proxy then maybe something like CentOS might be more appropriate.

    --
    David Hicks

  7. #7

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    Quote Originally Posted by MK-2 View Post
    should i go for the LTS or just the regular version? also am i ok going for the server version?
    LTS is a better bet for servers, unless you have some reason for not using it. The server edition will not install too much cruft, which is what you want. As extra applications and services will waste resources and distract the machine from doing it's real job.

    Quote Originally Posted by dhicks View Post
    This is a bit more fiddly with Ubuntu than with some other distributions as Ubuntu doesn't have the full set of compilers/runtime libraries/etc installed by default.
    Code:
    apt-get install build-essential
    however leaving compile tools on your servers is a bad idea and could even be considered a security risk. If possible your better off compiling on another machine and maintaining an internal repo with all your custom compiled software debs on.
    Last edited by Geoff; 11th January 2008 at 10:42 AM.

  8. #8

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200
    Ok perhaps the question should be more what should i go for.
    Just want the PDAs to be able to get online but be filtered, and also be able to block certain ports (msn namely).

    I'm assuming squid would need to be transparent for DG to run?
    Just want to do my homework before attempting it all

  9. #9

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    If you run squid transparently then there's no need to alter settings on the client devices to force them through squid. Dansguardian is unaffected by squid being transparent or not.

    If you want to block ports you need to look at firewalling too. Ubuntu can do this out of the box, but I suggest you look at Shorewall to make the configuration easier.

  10. #10

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200
    Cheers Geoff.
    By settings on client devices I assume you mean setting a proxy server to use in IE?
    If possible I want as little setup on the PDAs as possible as they will be going to students so dont want things they can arse about with.

    So Ubuntu server LTS, DG, Squid as transparent and then some form of firewall (which I had accounted for but was going to leave that until later....will look at shorewall though)

    I'll have a look on Ubuntu forums and wikis for a guide on making squid transparent.
    Cheers guys

  11. #11

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200
    Just as a sidenote, been told to put all this on hold because in 2 weeks we find out who our BSF contract is with and then the school can contact them for advice on whether to go ahead with this.

    Oh well..........was a nice idea!

  12. #12

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    Please let us know what they 'recommend', I like a good laugh occasionally.

  13. #13

    MK-2's Avatar
    Join Date
    Oct 2006
    Location
    Nottingham
    Posts
    3,237
    Thank Post
    149
    Thanked 581 Times in 307 Posts
    Blog Entries
    8
    Rep Power
    200
    I'm going to go with a guess of Windows 2003, a top spec server with 5 HDDs, 8GB ram and at least two tape drives.
    oh and minimum of OC45 or T3 line to connect via.....


  14. #14


    Join Date
    Oct 2006
    Posts
    3,413
    Thank Post
    184
    Thanked 356 Times in 285 Posts
    Rep Power
    149
    lmao Get good advice then? heh

SHARE:
+ Post New Thread

Similar Threads

  1. DCFS Guidance on Biometrics
    By GrumbleDook in forum IT News
    Replies: 1
    Last Post: 23rd July 2007, 09:02 PM
  2. Microsoft sales guidance
    By CyberNerd in forum Windows
    Replies: 0
    Last Post: 20th March 2007, 09:49 AM
  3. What distro do you use and why?
    By indie in forum *nix
    Replies: 44
    Last Post: 22nd February 2006, 10:28 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •