The network has news about the release of a new version of the distribution in the framework of the project
Untangle Gateway . This is a specialized Linux distribution based on Debian Lenny for creating firewalls with various functions.
The solution seemed to me quite interesting for servicing a small office, when the administrator often combines all the functions of a full-fledged IT service. At least, such decisions could help him partially unload his schedule.
The set of functions in the opensource assembly (GPLv2):
- Web filter that allows you to restrict access to certain categories of sites and restricting the download of various content;
- Spam blocking;
- Blocking phishing and pharming;
- 7th level protocol management (p2p, games, etc.);
- Check for viruses content received via http, smtp, pop3, imap and ftp. As well as scanning archives. Automatic update of your own virus signatures;
- Scanning traffic for spyware software and blocking the transfer session when it is detected;
- Blocking attacks on the network: DDOS detection and cut-off, sorting of tariffs based on heuristic analysis of “reputation” (in the original is called reputation-based heuristics);
- Create network activity reports for a wide range of criteria;
As well as a number of functions that have become de facto for the Internet gateway (firewall, routing, QoS). Among other interesting features - OpenVPN server, detection and blocking of intrusion attempts in a private network. For OpenVPN, it is possible to send pre-configured software for a specific operating system to an email client.
Also, the developers added the ability to automatically update the above components. Management and configuration of services available within the distribution, through a web-interface.
Declared system requirements:
- Minimum - CPU: 1.0 Ghz, Memory: 512 MB, HDD: 20 GB, NetCards: 2;
- Recommended - CPU: 2 .0+ Ghz, Memory: 1 -2 GB, HDD: 40+ GB, NetCards: 3+ (for DMZ).
The assembly has 3 available installation options:
- Router : dedicated server, with a full set of components. It also performs the routing and filtering of traffic;
- Transparent Bridge : a dedicated server located behind an existing router and firewall;
- Re-Router : installed on an existing workstation, adds additional network protection. (works under Windows)
Among other pleasant moments, good documentation pleased me with a guide to installing / configuring components that would be easy for even novices to understand (assuming good relations with the English language)
You can download the image with the distribution kit on the
corresponding page of the project site.