Presentation is loading. Please wait.

Presentation is loading. Please wait.

Operating Systems FreeBSD and Monowall Joel Jaeggli For AIT Wireless and Security Workshop.

Published byJustina Spencer Modified over 8 years ago

Similar presentations

Presentation on theme: "Operating Systems FreeBSD and Monowall Joel Jaeggli For AIT Wireless and Security Workshop."— Presentation transcript:

1 Operating Systems FreeBSD and Monowall Joel Jaeggli For AIT Wireless and Security Workshop

2 Why FreeBSD? ● Traditional UNIX platform ● Heavily oriented towards network services rather than say desktop environment. ● The kernel and FreeBSD development is a central part of system management making it easy to maintain consistency between FreeBSD systems ● Ports tree and 3 rd party software integrated in the FreeBSD style of management.

3 Why Monowall? ● FreeBSD integrated into a cute little appliance platform. ● Complete FreeBSD Firewall in ~8MB ● All configuration in a single file (similar in style to some router platforms) but in xml

4 What Monowall Provides ● web interface (supports SSL) ● serial console interface for recovery – set LAN IP address – reset password – restore factory defaults – reboot system ● wireless support (access point with PRISM- II/2.5 cards, BSS/IBSS with other cards including Cisco) – stateful packet filtering – block/pass rules ● logging ● NAT/PAT (including 1:1) ● DHCP client, PPPoE and PPTP support on the WAN interface ● IPsec VPN tunnels (IKE; with support for hardware crypto cards and mobile clients) ● PPTP VPN (with RADIUS server support) ● static routes ● DHCP server ● caching DNS forwarder ● DynDNS client ● SNMP agent ● traffic shaper ● firmware upgrade through the web browser ● configuration backup/restore ● host/network aliases

5 Built on the following Software components ● FreeBSD components (kernel, user programs) ● ipfilter ● PHP (CGI version) ● thttpd ● MPD ● ISC DHCP server ● ez-ipupdate (for DynDNS updates) ● Dnsmasq (for the caching DNS forwarder) ● racoon (for IPsec IKE)

6 What we're going to do with it... ● Static routes ● IP firewall ● NAT

7 Monowall

8

9

10

11

12 Bibliography ● FreeBSD Handbook - http://www.freebsd.org/doc/en/books/handbook/ http://www.freebsd.org/doc/en/books/handbook/ ● Monowall - http://m0n0.ch/wall/http://m0n0.ch/wall/

Download ppt "Operating Systems FreeBSD and Monowall Joel Jaeggli For AIT Wireless and Security Workshop."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
DNA-A212 / DNA-A213 ADSL 2+ Modem/Router

DNA-A212 / DNA-A213 ADSL 2+ Modem/Router
© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.
Ming-Chang Cheng 鄭明彰 May 22 / May 29 , 2014

Ming-Chang Cheng 鄭明彰 May 22 / May 29 , 2014
1 Tainet IP PBX solutions Tainet Communication System Corp.

1 Tainet IP PBX solutions Tainet Communication System Corp.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.

Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.

Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.
Hardware Firewalls: Advanced Feature © N. Ganesan, Ph.D.

Hardware Firewalls: Advanced Feature © N. Ganesan, Ph.D.
Wi-Fi Structures.

Wi-Fi Structures.
Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.

Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.
hotEx RADIUS Manager Installation

hotEx RADIUS Manager Installation
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.

Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.
1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.

1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.
Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.

Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.

Similar presentations

Ads by Google