Its time was up

After yesterdays dabbling with reverse proxies, my outgoing proxy and firewall decided to die on me. I suppose given it has been running since 2001 non stop except for power failures and maintenence it has had a good innings. It was also the oldest machine running on my LAN by a long shot.

The machine itself is an old Dell Optiplex GXa with a 300Mhz Pentium II and 128MB of RAM. Pretty much since I got it, it has been running Smoothwall. From a cursory glance it appears that the power supply has failed.

As a result I had to abandon my reverse proxy and convert that machine into my new firewall. Rather than opt for Smoothwall again, this time I opted for IPCop with the excellent Copfilter plugin. Just 20 minutes after the old one dying; the replacement was configured and in place.

Now I have loads of bells and whistles, stateful packet inspection and what nots. In addition to all that I have it performing mail and http filtering again so If anyone notices something odd let me know.

Leave a comment | Trackback
Aug 19th, 2007 | Posted in Linux, Technical, Web
Tags:
  1. Dankoozy
    Reply | Quote
    Aug 19th, 2007 at 22:13 | #1

    can`t it run both? or is that too much trouble?

  2. Robert
    Reply | Quote
    Aug 20th, 2007 at 01:11 | #2

    It should have no problems running both. It’s now running on a 1.7ghz P4 with 512MB RAM. A quick check shows only 33% of available memory is in use. 32% of total memory is cached. Average CPU load is 1.32% and it peaked at 20%, probably when running scheduled reports by analysing log files. No swap is in use and actually the older one with 128MB RAM was the same. No swap at all was ever used.

    Only thing is that I need to be careful because I’m not sure if any patches that come available for IPCop will screw up Squid. So for the moment it rules out experimenting :|

  3. frob
    Reply | Quote
    Aug 20th, 2007 at 04:19 | #3

    I used Smoothwall (even commercial version) and IPCop too. It was a long time ago when I last checked new features in IPCop just because I changed it to m0n0wall. I’ll give it a try again… :]
    I saw sysinfo and I thought that you might be interested in testing my friend’s tool:
    http://matya.eu.org/check_sys/index_en.html
    I read previous post about mail servers – you was definitely bored… :]

  4. Robert
    Reply | Quote
    Aug 20th, 2007 at 06:08 | #4

    That’s a pretty nice utility. I’ve downloaded it now and I’m going to set about getting it up and running on my webserver.

    One of the things about having no job at the moment is having loads of free time. I have to keep busy somehow :)

    I was actually considering to use m0n0wall. Other ones I looked at were Clarkconnect and Astaro but I needed to get everything up pretty quickly so I just stuck with what was familiar. I’m going to check them out in a virtual machine though.

Leave a comment

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
RSS for comments on this post

Bad Behavior has blocked 867 access attempts in the last 7 days.

22 queries. 0.512 seconds.