Documentation
Design goals
Cflinux is intended to be a small, embedded linux based system, mostly usable for the following:
And probably, cflinux is not the best choice for the following:
- Multiuser environment
- File/web server
- Database applications
- Desktop environment
- ...
The firewall features are the standard iptables features provided by the Linux kernel.
There is no included firewall package, so you must construct your ruleset,
but i suggest you to do this, as you will know what your ruleset does, and what not.
I used to load my iptables modules in /etc/modules.conf, and place a firewall script at /etc/rc.d/,
that way the firewall will initialize well after each startup. For FreeBSD style tcp/udp blackholes,
enable tcp_blackhole and udp_blackhole in /etc/rc.conf.
Cflinux can be used in router configurations as well, it comes with quagga, which contains ripd, ospfd,
and bgpd. Currently, only IPv4 is supported. To use the daemons, one must set {zebra,ripd,ospfd,bgpd}_enable
to 'YES' to enable the needed daemon. Note that, for proper operation, zebra is always needed. I recommend
to reboot after enabling the daemons, and after they should startup with a default empty configuration if
there was no previous found. For configuring quagga, consult
http://www.quagga.net/Cflinux includes hostap and madwifi drivers, the most widely used cards' drivers. For hostap, the
hostapd is also included, with that one can use mac address authentication based on a simple textfile,
or based on a radius server. For more, consult hostap's documentation at
http://hostap.epitest.fi/IPsec in cflinux is supported by openswan, the successor of freeswan, and can be found at
http://www.openswan.org/.
Currently missing
Currently missing
License
Cflinux is licensed under the terms of GPL, howewer softwares included in Cflinux may have their own licenses, but usually they are GPL or BSD licenses.
This page was generated at Sun Sep 5 21:33:31 2010 and took 0.001759 seconds.