Operating System - Linux
1839294 Members
1900 Online
110138 Solutions
New Discussion

Re: Robust security solution

 
SOLVED
Go to solution
kcpant
Trusted Contributor

Robust security solution

Hi friends,

Now, a generlised query on robust security solution based on linux iptables + SQUID etc.
1. please advice any good gateway anti-virus (freeware/ commercial)for use in a linux gateway machine.
2. any software which can be used in conjunction with squid/ ISA server , which will be used to monitor user-based Internet usage, and will decrease the time from user's total Internet hours ( ISP- like facility).
3. any freeware which can display iptables logs in more user friendly HTML pages.
4. a software which can be used to control & assign bandwidth based on preferably user or system IP.
5. A wireless network security system, which will assure that wireless network will not be available out of a defined geogrophic area, and which will assure that whenever a user goes out from that area and comes there after a while, the security system will ask him to provide him a new key. the security key should change automatically after certain interval. System administrator should be able to provide system key remotely to a requesting laptop.

pardon me if this list seems vary long ;)

thanks in advance, a 10 for good advices on every point.
PreSales Specialist
11 REPLIES 11
Arunvijai_4
Honored Contributor
Solution

Re: Robust security solution

1) TrendMicro or Kaspersky will be a good choice. It will save bit $$ in your budget.

2) DansGuardian may help(not sure)
http://dansguardian.org/
http://www.squid-cache.org/related-software.html

3) IpTables log file analyser http://www.gege.org/iptables/ is a good tool.

4) You can configure Squid to do that.

5) No Idea.

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
Gopi Sekar
Honored Contributor

Re: Robust security solution


some security applications:

* tripwire for host integrity check
* snort for network based integrity check
* sophos for antivirus application
* spamassassin for spam filter


Hope this helps,
Gopi
Never Never Never Giveup
kcpant
Trusted Contributor

Re: Robust security solution

thanks friends,

Arun (or vijai ;)) , 2 good sugestions from you, one about GAV, and another iptables analyser. but I'm not able to understand how to configure bandwidth mgmt in SQUID, and, how to use dansguardian for user's usage hours' mgmt to decrease usage time from total assigned usage time. please provide some more info ...

thanks
PreSales Specialist
Arunvijai_4
Honored Contributor

Re: Robust security solution

Sorry for getting back late, Here is a good article on Bandwidth Management Using Squid
http://www.pcquest.com/content/linux/103080904.asp

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
Muthukumar_5
Honored Contributor

Re: Robust security solution

1) 1. please advice any good gateway anti-virus (freeware/ commercial)for use in a linux gateway machine.

You can use http://www.mwti.net/antivirus/for_proxies/webscan_linux.asp
http://www.mwti.net/antivirus/for_proxies/webscan_linux.asp
http://viralator.loddington.com/

More good software's related with squid,
http://www.squid-cache.org/related-software.html

hth.
Easy to suggest when don't know about the problem!
Muthukumar_5
Honored Contributor

Re: Robust security solution

2) any software which can be used in conjunction with squid/ ISA server , which will be used to monitor user-based Internet usage, and will decrease the time from user's total Internet hours ( ISP- like facility).

I prefer to use SARG + Squid or calamaris. Get the details from avialable s/w as,

http://www.squid-cache.org/Scripts/

hth.

Easy to suggest when don't know about the problem!
Muthukumar_5
Honored Contributor

Re: Robust security solution

3. any freeware which can display iptables logs in more user friendly HTML pages.

You can use FWreport available as,
http://freshmeat.net/projects/fwreport/

More freeware(s):

http://sourceforge.net/search/?type_of_search=soft&words=iptables+log&imageField.x=0&imageField.y=0
http://freshmeat.net/search/?q=iptables+log&section=projects&Go.x=0&Go.y=0

hth.
Easy to suggest when don't know about the problem!
Muthukumar_5
Honored Contributor

Re: Robust security solution

4. a software which can be used to control & assign bandwidth based on preferably user or system IP.

You can use in-built squid band-width control using reply_body_max_size + url setting.

Like example:

acl user1 src
reply_body_max_size 200000 allow user1

You can use cbq script to do this effectivly without squid itself.

http://freshmeat.net/projects/cbq.init/

hth.
Easy to suggest when don't know about the problem!
Muthukumar_5
Honored Contributor

Re: Robust security solution

5) ..

Customer had like this. Long time back... ;)

A freeware called LEAF available to suit this:

http://sourceforge.net/projects/leaf

hth.
Easy to suggest when don't know about the problem!
Muthukumar_5
Honored Contributor

Re: Robust security solution

To give more suggestions,

a) Use squid mailings lists. It is VERY active squid-users@squid.org

b) If you want to have opensource products then search in,

i) sf.net
ii) freshmeat.net

hth.
Easy to suggest when don't know about the problem!
kcpant
Trusted Contributor

Re: Robust security solution

closing threads open from a long time..
PreSales Specialist