IPFire
Encyclopedia
IPFire is a free Linux distribution
Linux distribution
A Linux distribution is a member of the family of Unix-like operating systems built on top of the Linux kernel. Such distributions are operating systems including a large collection of software applications such as word processors, spreadsheets, media players, and database applications...

 which acts as a router and firewall
Firewall (computing)
A firewall is a device or set of devices designed to permit or deny network transmissions based upon a set of rules and is frequently used to protect networks from unauthorized access while permitting legitimate communications to pass....

 in the first instance. It can be maintained via a Web interface. The distribution furthermore offers selected server
Server (computing)
In the context of client-server architecture, a server is a computer program running to serve the requests of other programs, the "clients". Thus, the "server" performs some computational task on behalf of "clients"...

-daemons and can easily be expanded to a SOHO-server.

IPFire is based on Linux From Scratch
Linux From Scratch
Linux From Scratch is a type of a Linux installation and the name of a book written by Gerard Beekmans among others. The book gives readers instructions on how to build a Linux system from source...

 and is, like the Endian Firewall
Endian Firewall
The Endian Firewall is an open source GNU/Linux distribution that specializes on Routing/Firewalling and Unified Threat Management. It is being developed by the Italian Endian Srl and the community....

, originally a fork
Fork (software development)
In software engineering, a project fork happens when developers take a legal copy of source code from one software package and start independent development on it, creating a distinct piece of software...

 from IPCop
IPCop
IPCop is a Linux distribution which aims to provide a simple-to-manage firewall appliance based on PC hardware. IPCop is a stateful firewall built on the Linux netfilter framework....

. Since Version 2, only IPCops web interface is used.

System requirements

The modular design enables the user to create a tailor-made System fitting his needs. This can either be a very small system, which can be run on old hardware like a first-generation Intel Pentium, or a SOHO-System with an up-to-date multiprocessor.

The required computer performance
Computer performance
Computer performance is characterized by the amount of useful work accomplished by a computer system compared to the time and resources used.Depending on the context, good computer performance may involve one or more of the following:...

 therefore depends on the scope of application.

At least a 333 MHz CPU, 128 MB RAM and two network interfaces - one for the internet connection and one for the LAN
Local area network
A local area network is a computer network that interconnects computers in a limited area such as a home, school, computer laboratory, or office building...

 - are required to run IPFire.

System details

IPFire caters to users not overly familiar with networking and server services. IPFire ships with an extensive package management utility (Pakfire) which allows the base system to be extended by various addons. The package manager also enables updates to address security issues.

The base system provides following features:
  • Proxy server
    Proxy server
    In computer networks, a proxy server is a server that acts as an intermediary for requests from clients seeking resources from other servers. A client connects to the proxy server, requesting some service, such as a file, connection, web page, or other resource available from a different server...

     with content filter and caching-functionality for updates (i.e. Microsoft Windows Updates and Anti-Virus)
  • Intrusion detection system (Snort
    Snort (software)
    Snort is a free and open source network intrusion prevention system and network intrusion detection system , created by Martin Roesch in 1998...

    ) with intrusion prevention-addon "guardian"
  • VPN
    Virtual private network
    A virtual private network is a network that uses primarily public telecommunication infrastructure, such as the Internet, to provide remote offices or traveling users access to a central organizational network....

     via IPsec
    IPsec
    Internet Protocol Security is a protocol suite for securing Internet Protocol communications by authenticating and encrypting each IP packet of a communication session...

     and OpenVPN
    OpenVPN
    OpenVPN is a free and open source software application that implements virtual private network techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses a custom security protocol that utilizes SSL/TLS for...

  • DHCP
    Dynamic Host Configuration Protocol
    The Dynamic Host Configuration Protocol is a network configuration protocol for hosts on Internet Protocol networks. Computers that are connected to IP networks must be configured before they can communicate with other hosts. The most essential information needed is an IP address, and a default...

    -server
  • Caching
    Cache
    In computer engineering, a cache is a component that transparently stores data so that future requests for that data can be served faster. The data that is stored within a cache might be values that have been computed earlier or duplicates of original values that are stored elsewhere...

    -nameserver
  • Time server
  • Wake-on-LAN
    Wake-on-LAN
    Wake-on-LAN is an Ethernet computer networking standard that allows a computer to be turned on or woken up by a network message....

     (WOL)
  • Dynamic DNS
    Dynamic DNS
    Dynamic DNS or DDNS is a term used for the updating in real time of Internet Domain Name System name servers to keep up to date the active DNS configuration of their configured hostnames, addresses and other information....

  • Quality of Service
    Quality of service
    The quality of service refers to several related aspects of telephony and computer networks that allow the transport of traffic with special requirements...

  • Outgoing firewall
    Firewall (computing)
    A firewall is a device or set of devices designed to permit or deny network transmissions based upon a set of rules and is frequently used to protect networks from unauthorized access while permitting legitimate communications to pass....

  • System monitoring and Log-Analysis

Addons

IPFire offers add-ons which are maintained by the development team.

Some available Addons:
  • File
    File server
    In computing, a file server is a computer attached to a network that has the primary purpose of providing a location for shared disk access, i.e. shared storage of computer files that can be accessed by the workstations that are attached to the computer network...

    - and Print server
    Print server
    A print server, or printer server, is a device that connects printers to client computers over a network. It can accept print jobs from the computers and send the jobs to the appropriate printers....

     (Samba and CUPS, vsftpd)
  • Asterisk
    Asterisk (PBX)
    Asterisk is a software implementation of a telephone private branch exchange ; it was created in 1999 by Mark Spencer of Digium. Like any PBX, it allows attached telephones to make calls to one another, and to connect to other telephone services including the public switched telephone network and...

     and Teamspeak
    TeamSpeak
    TeamSpeak is a proprietary Voice over IP software that allows users to speak on a chat channel with other users, much like a telephone conference call. A TeamSpeak user will often wear a headset with an integrated microphone...

  • Video Disk Recorder
    Video Disk Recorder
    VDR is an open source application for Linux designed to allow any computer to function as a digital video recorder, in order to record and replay TV programming using the computer's hard drive. The computer needs to be equipped with a digital TV tuner card. VDR can also operate as an mp3 player...

     (VDR)
  • Mail server - postfix
    Postfix
    Postfix may refer to:* Suffix * Postfix notation, a way of writing algebraic and other expressions. Also known as reverse Polish notation* Postfix , a mail transfer agent program...

    , Spamassassin, Clamav, Amavisd-new
  • Streaming server (MPD a.o.)

Miscellaneous

  • IPFire is part of the c't
    C't
    c't – Magazin für Computertechnik is a German computer magazine, published by the Heinz Heise publishing house. Originally a special section of the electronics magazine elrad, the magazine has been published monthly since December 1983 and biweekly since October 1997...

    -Debian-server version 4, which was released in August 2009.

External links

The source of this article is wikipedia, the free encyclopedia.  The text of this article is licensed under the GFDL.
 
x
OK