M0N0WALL
Un routeur Linux sous FreeBSD 4.x avec un interface par le web. Le produit est vraiment tres bien reussi.
J’ai fais l’installation pour remplace mon ancien routeur afin de voir les performances :
au menu :
Status
At this time, m0n0wall can be used as-is with the net45xx embedded PCs from Soekris Engineering (www.soekris.com) or on any standard PC with a BIOS that supports booting from CD-ROM (El Torito standard).
m0n0wall already provides many of the features of expensive commercial firewalls, including:
* web interface
* serial console interface for recovery
o set LAN IP address
o reset password
o restore factory defaults
o reboot system
* wireless support (access point with PRISM-II/2.5 cards, BSS/IBSS with other cards including Cisco)
* stateful packet filtering
* NAT/PAT (including 1:1)
* DHCP client, PPPoE and PPTP support on the WAN interface
* IPsec VPN tunnels (IKE; with support for hardware crypto cards)
* PPTP VPN (with RADIUS server support)
* static routes
* DHCP server
* caching DNS forwarder
* DynDNS client
* traffic shaper
* firmware upgrade over FTP
* configuration backup/restore
A venir
* support DHCP service on routed wireless interfaces
* use obtained DNS servers when DHCP on WAN is enabled
* “assign network ports” in webGUI
* diagnostic functions (ping/traceroute/tcpdump) in console menu
* console menu accessible via Telnet/SSH
* remote manageability (SSL?)
* allow IPsec tunnels to optional interfaces (not only LAN)
* documentation
* more status pages (IPsec, PPTP sessions, CPU load, firewall stats, connection uptime, …)
* allow firewall/NAT/shaper rules to be temporarily disabled
* support “block” rules (and make rule order controllable) (good idea?)
* quick-setup wizard
* make the error LED mean something (WAN interface status etc.)
* connect/disconnect button for PPPoE/PPTP WAN
* SNMP service
* support secondary networks on WAN interface (possibly with load balancing)
* time/day of week based firewall rules
* set system date/time in webGUI
* dialup backup link (via serial port)
* second webGUI user with read-only access
* firewall: allow return-RST/ICMP unreachable on block
* firmware upgrade via console (XMODEM) (?)
* traffic grapher
* intrusion detection
Ce qui est interessant aussi est qu’il est possible de faire l’installation sur les equipements net45xx.
Vraiment formidable alors a vous tous bonne decouverte!
Leave a comment
Mes Tweets!
- Bonne Année 2012.. premier tweet de #2012
- @cyber6_ une resolution pour 2012
- #geekbecois Vous avez été coupé par les lutins !
- Superbe atelier ce matin François Desrosiers Utilisation du flash #ZPFS Zoom Photo Festivale Saguenay 2011 http://t.co/K0mDu9Er
- RT @_unoyt: Il parait que l'annonce se fera demain soir à 20h....http://www.geocaching-qc.com/index.php @GeoQC @AGTMIB @Newk82 @NoNameX03
Mes images
Aquariophilie
Baladodiffusion
Categories
- Aquaphilie
- Découverte
- Divers
- Fete
- Film
- Gaspésie 2010
- General
- GéoCaching
- IPV6
- Jeux
- Kayak
- Lan Party
- Linux
- Mise a jours
- Mise en test
- NB'09
- Nouvelles
- Passions
- Perte de Temps!
- photographie
- Photos
- Plein Air!
- PodCast
- Prix Essences
- Rallye
- Renovation
- Sans Fil
- Securite
- Sports
- Star Trek
- Techno
- Vacances
- Voitures
- WebCam
Recent Comments
- Coach sportif on La photo d’action.. motocross…
- L'Frere on Gaspésie Je t’aime 2.0 … Jour 1 -
- L'Frere on Coin de mon enfance!
- Eric Lachance on Coin de mon enfance!
- L'Frere on Moncton, Shediac, IPE….