|
LANNet Computing Associates specialise in the delivery of quality secure Internet connectivity at affordable cost. You should consider what a LANNet firewall / router can do for your network. At LANNet it is our opinion that within the next 12 to 18 months most business will not be able to operate effectively without a permanent connection to the Internet, and this worries us. The Internet is "The Bad Lands" and should only be approached fully armoured against the attacks out there, and that means installing a secure, yet flexible, firewall between the Internet and your precious systems. You could go out and buy a $50 "off the shelf" firewall to run on your lone PC and it might afford you some protection, or you could buy a $10,000 hardware/software solution in a nice red case that will afford you strong protection. In neither case are you fully aware of what protection is being offered, nor are you aware of what tuning might be necessary to suit your particular requirements. Here at LANNet we have installed many firewalls and in almost every case it was necessary to tailor the design to suit the customer's needs; "off the shelf" firewalls just do not cut it. What LANNet offer is custom designed firewall software operating on commodity, even legacy, hardware, providing you with the level of security that you need at the price that you can afford. |
||||
|
|
|
|
|
|
|
Hardware requirements - Recommended & (Minimum): (Some configurations may require detail to a higher standard than the recommended standard) |
||||
|
|
Pentium 120 CPU (486 DX2-66 CPU) |
|
||
|
|
32 MB RAM (16 MB RAM) |
|
||
|
|
2 GB HDD (500 MB HDD) |
|
||
|
|
100 Mbps Ethernet interface card (10 Mbps Ethernet interface card) |
|
||
|
|
56.6 Kbps modem (28.8 Kbps modem) |
|
||
|
|
|
|
|
|
|
Basic configuration: |
||||
|
|
Internet access negotiation |
LANNet will identify the most effective means for you to access the Internet and will prepare the necessary documentation for your application (all expenses will be the customer's sole responsibility) |
||
|
|
Redhat installation |
the most popular Linux distribution with world wide support |
||
|
|
optimised Linux kernel |
the most current production kernel is customised for peak performance |
||
|
|
site configuration file |
defines the parameters for your site |
||
|
|
basic firewall |
block and log the traffic that you do not want entering your site |
||
|
|
log reports |
receive daily email reports of the health of your firewall |
||
|
|
masquerading of private IP (Internet Protocol) addresses to external public IP addresses |
allows hosts on your internal network to access external sites |
||
|
|
PPP (Point to Point Protocol) permanent dial-out over PSTN (Public Switched Telephony Network) |
use a low cost 56kbps modem to establish a low cost untimed local call (where available) connection to the Internet |
||
|
|
SSH (Secure Shell) access daemon |
save money by allowing LANNet Computing Associates to remotely access your router in a highly secure manner to undertake routine maintenance and upgrades |
||
|
|
|
|
|
|
|
Additional configurations that are available: |
||||
|
|
services accessible internally only: |
|||
|
|
|
DHCP (Dynamic Host Configuration Protocol) server |
add new hosts to your internal network without the worry of assigning unique addresses |
|
|
|
|
HTTP (Hyper Text Transfer Protocol) transparent proxy cache |
forcing all access from internal hosts to external World Wide Web sites to pass transparently through your own proxy cache can reduce your traffic costs as well as offering broader traffic monitoring and access control |
|
|
|
|
NTP (Network Time Protocol) network time synchronisation |
synchronise your network clocks with international standard clocks |
|
|
|
|
SMB (Server Message Block) server providing domain services to Windows workgroups |
provide the advantages of a Microsoft Windows domain service without the need and the expense of running Microsoft Windows NT Server |
|
|
|
services accessible externally and internally: |
|||
|
|
|
BIND (Berkeley Internet Name Daemon) server |
resolves human understandable fully qualified domain names into machine understandable IP addresses allowing hosts to know where to find your web and other public server and where to deliver your email |
|
|
|
|
FTP (File Transfer Protocol) server |
allows the public to access selected files for download |
|
|
|
|
IRC (Internet Relay Chat) server |
allows real time keyboard chat sessions |
|
|
|
|
mail server: |
allows email to be handled internally and externally |
|
|
|
|
|
IMAP (Internet Mail Access Protocol) |
access your email securely from any host on your internal net or from any external host on the Internet |
|
|
|
|
POP (Post Office Protocol) |
transfer your email to your selected host |
|
|
|
|
SMTP (Simple Mail Transfer Protocol) |
transfer email between hosts on your internal network and with external hosts on the Internet |
|
|
|
mailing lists |
allow selected users to discuss topics of common interest or update customers with the latest promotional information |
|
|
|
|
NNTP (Network News Transfer Protocol) news server |
subscribe to selected Usenet news groups |
|
|
|
|
web (http) server including secure web (https) server |
offer World Wide Web services and secure services to the public for online information or shopping |
|
|
|
browser based router administration |
use your browser to administer your router |
||
|
|
customised firewall |
have your firewall designed to suit your own specifications and allow selected traffic through that would normally be broadly blocked |
||
|
|
email scanning |
search email messages and email attachments looking for trojans, viruses and worms, and inappropriate content |
||
|
|
encrypted disk filesystems |
secure your data and make it unreadable in the event of your computer being stolen |
||
|
|
IPSec (Internet Protocol Security) encryption of network traffic |
pass traffic securely between selected sites over the Internet |
||
|
|
ISDN (Integrated Switched Digital Network) |
speed up your access to the Internet |
||
|
|
managed site support |
have LANNet monitor the health of your site on a continuous basis and optionally have urgent alerts sent to your pager or to the SMS service on your mobile phone |
||
|
|
mobile IP roaming |
enables you to plug your laptop into any remote participating network and operate just as if you were still connected to your base network; analogous to cell roaming on the mobile phone system |
||
|
|
PPP on-demand dial-ins |
allow secure access to your internal networks by "road warriors" or executive staff from their homes |
||
|
|
PPP on-demand dial-outs |
allow non-Internet access to selected secure connections |
||
|
|
RAID (Redundant Array of Inexpensive Disks) disk mirroring |
duplicate your data storage disks to minimise data loss or corruption |
||
|
|
SMS gateway |
send SMS messages to any mobile phone or alpha-numeric pager with a simple email, or to selected phones or pagers through a Web interface. (not yet available to Cable & Wireless Optus mobile phones) |
||
|
|
statistics presentation using RRD (Round Robin Database) and graphing |
see what the traffic levels and performance are on your network and your Internet connection on a basis ranging from a few hours to several days |
||
Copyright © 2000 LANNet Computing Associates