[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] new qube owner questions

Subject: Re: [cobalt-users] new qube owner questions
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu Jan 16 04:05:01 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

On Thu, 16 Jan 2003 phil.yeo@xxxxxxxxxxxx wrote:
>
> I have recently acquired a Qube 2 and have a few questions about it. I have
> searched the internet and archives for answers but could use some help.
>
> 1. Is there a way to manually configure the firewall? I would really really like
> to be able to set rules according to the interface, not just the ip address (I
> trust my internal network, but not the internet traffic). Anyone know how to do
> this?

We recommend not using the Qube2 GUI firewall, AFAIK it is broken.
But using ipfwadm, with a good script works good. If you need help with it
let me know. I would also add Fcheck, Logcheck, and Portsentry. I usually
use lcap but haven't been able to find the source, to compile on the
Qube2.

>
> 2. My Qube did not come with ssl for http, so I downloaded and compiled apache
> with mod_ssl which seems to work OK. Is there a way I can set the cobalt web
> toolsand admin site to work with this?

There probably is, I have not been there.

> 3. Can I manually configure fetchmail to work with my qube 2?

Yes, that shouldn't be a problem

> 4. Is there a webmail which people recommend. Squirrel mail/ openwebmail?

Pkgmaster has 1.71, but I think I heard that it is vulnerable to ???


> 5. DNS question: If I am using the qube as a gateway and I only have one rea ip
> address then can I set up the qube to be the dns server for the internal side
> only, but a cache for real internet dns queries? If so then can I give my qube a
> 'local' dns name without that getting out onto the internet and also a real dns
> name registered with on the internet dns servers. Has anyone got djbdsn to work
> on a qube 2?

This can be configured with bind 9.x, which has 'views' and it should run
on a Qube2. Why would you want to use djbdns?

> 6. What are the limitations about the software i can build on the qube. I know I
> have an old version of redhat on there, and I guess I can't really update the
> kernel.

It will run many programs, MySQL, PHP and others.
There is a pdf file on kernel rebuilding here;
ftp://ftp.cobalt.sun.com/pub/developer/TechNotes/DTN7-0-0.pdf

> 7. Should I give up trying to use the qube 2 with all the old software on it and
> try to install netbsd which is current and seems to have regular software
> updates awailable?
>
It depends, if it suits your needs

Gerald
--
http://frontstreetnetworks.com | http://store.raqware.com
Front Street Networks LLC      | Phone: +1 203 785-0699
229 Front Street, Ste. #C, New Haven, CT. 06513-3203

References:
- [cobalt-users] new qube owner questions
  - From: phil . yeo

Prev by Date: Re: [cobalt-users] OpenWebmail 1.81 PKG, uninstal 1.71 pkg first??
Next by Date: RE: [cobalt-users] [RaQ 550] Backup with tar and e-mailing to admin
Previous by thread: [cobalt-users] new qube owner questions
Next by thread: [cobalt-users] Alliance Of Operators

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index