You are not logged in.
Pages: 1
Hi All,
I bought new small PC with 4 LAN ports with intention to install pfSense on it.
After some time I came to the idea to use it another way.
My idea is something similar to this: https://eldon.me/arch-linux-based-home-router/
Due to the fact that I ma not expert in this area I have some doubts/questions I would like to clarify.
Lets assume I installed very simple Archlinux system.
On it I would like to run Firewall (I usually using UFW for that purpose).
As next - I understood that I need to have IP forwarding , so whatever comes to ETH0 needs to be routed to other ports and vice versa.
My question is: if I have Firewall on my machine, whatever comes IN (ETH0) goes first via Firewall before it gets forwarded?
Secondly - since I need this Machine to provide better parental control - I would like that this machine has capability of controlling what pages are visited and then block them based of black list.
As per my understanding this can be achieved via http://www.squid-cache.org/.
Here the same question: how this works with forwarding? If it done between ETH0 and other LAN Ports?
Thank you in advance for any advice.
regards
Rafal
P.S. I am not crazy about security. I just need one simple machine (not more than one) to be between LAN and Local Network to perform some work like firewall, routing and filtering content. Every local machine connected will anyway have own firewall. Idea to use Archlinux for that purpose is simply because I use this distro on every machine and very happy wit it. I know there might be dedicated solutions.
Offline
while waiting for answer here I found something what might be partially solution and answer to my question.
I think IP Masquerading will be the answer
https://linuxize.com/post/how-to-setup- … ntu-20-04/
http://www.mokonamodoki.com/nat-ip-masquerading-and-ufw
From what I see is part of UFW, so not only firewall, but also some kind of NAT.
This does not yet solve the main issue for me which is parental control and possibility to work with own whitelist and monitoring who is doing what.
What I now consider is described here https://wiki.archlinux.org/title/Parental_control
Maybe for the time being 'Whitelist with Tinyproxy and Firehol', though in AUR it look that program was not updated since 2021.
Any advice will be appreciated.
Offline
Pages: 1