14 Jun
2014
14 Jun
'14
2 a.m.
Russell Coker <russell@coker.com.au> wrote:
It seems to me that there are two approaches one could take with regard to a firewall box. One is to run the same distribution as your workstations so you are good at managing it. The other is to run a different distribution in the hope that both distributions don't have the same bug, EG you could run Debian on your desktop and CentOS on your firewall.
for a firewall machine, only run the daemons that you really need, make sure iptables/netfilter rules are configured appropriately, and keep up with security-related package updates.