Advanced Security Question

From: Hammer (hammeraus001_at_yahoo.com)
Date: 08/12/04

  • Next message: P Gentry: "Re: references for hardened linux validation" 
    Date: 11 Aug 2004 18:20:52 -0700

    Please forgive me if this is either a stupid question or will only be
    available sometime in the late 24th century. Here goes...

    Does anyone know how I would set a switched network to direct ALL
    traffic through a linux box for authorisation, authentication, IDS and
    logging. I could use RADIUS, but I've heard there are some flaws with
    it.

    Basically this box is going to check every packet on the network, log
    it, check for "unwanted" activity and/or authorise it. It's going to
    be acting in a super cop role, between clients, secure servers,
    unsecure servers and Internet connection via firewall. Yes - it's a
    firewall and DMZ, but to a greater extent.

    I want any new machines to be denied access to anything until they are
    authorised. I also want to stop all traffic between clients, unless
    through the linux box.

    Would IP tables on clients, servers and linux authentication box be
    able to do this? Client Ip tables only allow traffic to
    authentication server. Server Ip tables only allow traffic between
    authorised servers and authentication server. Authentication server
    only allow authorised traffic between itself and client/servers
    (server traffic dependant upon server role). This sounds logical, but
    could it be done?

    Hammer

  • Next message: P Gentry: "Re: references for hardened linux validation"

    Relevant Pages

    • Re: Advanced Security Question
      ... > Would IP tables on clients, servers and linux authentication box be ... Server Ip tables only allow traffic between ... > authorised servers and authentication server. ...
      (comp.os.linux.security)
    • RE: Users Cant Access Documents on Server
      ... Thanks for using the SBS newsgroup. ... As well as we know, if a workstation would not access network shares, then ... Leave the Default Gateway of the internal NIC blank of the server box. ... Clients That Require SMB Signing ...
      (microsoft.public.windows.server.sbs)
    • Re: Users Cant Access Documents on Server
      ... my computer to the network on the server. ... Connection Wizard none of the computers were listed. ... The Mac clients can not communicate with the server box. ... > Error Messages When You Open or Copy Network Files on Windows XP SP1 ...
      (microsoft.public.windows.server.sbs)
    • Re: [SLE] SMTP authentication
      ... So eventhough my local SMTP server dials up to the internet with a certain username and password, that same username and password would not be used as authentication between my local SMTP server and the ISP's one, should it be used as a relay? ... either defer all outgoing mails until you connect to the internet, then flush out all the mails in the queue. ... Your local server would use an external program like fetchmail to poll the mailserver of your ISP, download the mails and feed them to Postfix. ... The test does NOT say "All clients must be in mynetworks, ...
      (SuSE)
    • RE: VPN Clients Not Registering in AD DNS
      ... via VPN, the DNS records of the VPN clients are unable to be registered. ... Windows 2003 server? ... please let me know whether the clients get the IP ...
      (microsoft.public.windows.server.sbs)