Re: Linux Server Questions

Fri, 3 Jul 1998 10:39:08 -0400 

>>>>> "mm" == Michael Montz <[EMAIL PROTECTED]> writes:

[...]
  mm> So that's why the move to Linux. Being relatively new to Linux
  mm> and TCPIP networking in general (my background is with Netware)
  mm> I have a few questions.

  mm> The server set up is:
  mm> RedHat 5.1
  mm> 2 NICS
  mm> Routing and ipmasqurading setup and working

That's a good start.

  mm> 1. Can Apache run, at the same time, as both a WEB and Proxy
  mm> server?  The WEB server will have very little activity, just

I have no experience with proxy servers; do you want to use a proxy
server to save bandwidth, or for security reasons though?

  mm> some info about the school.  If it gets 10 hits a week that will
  mm> be a lot.

  mm> 2. The server is a Compaq Prosignia 500 w/P90, 64MB, 4GB SCSI
  mm> HD.  They want to run WEB, email, proxy, DNS, DHCP, and routing
  mm> services.  I would like some opinions on whether this is
  mm> overkill for one server.  The network consist of about 100 Win95
  mm> stations.  My guess is that at any given time less than half
  mm> will be using the services of the Internet server, except of
  mm> course at boot up for DHCP services.

The *load* is fine.  I just think that that *organisation* is not
ideal.   Everything is fine except the idea of making the machine a
DNS server.   If the machine is your firewall, you should not put on
it information about the internal structure of your network.   You
would be better off keeping your *internal* DNS information on an
internal machine, for example your backup machine.

  mm> 3. For redundancy, I am planning to setup a second machine
  mm> (486/33 16MB 175MB HD)as backup for DNS and email.  Which side
  mm> of the firewall do I place this machine?

Personally, I'd swap the disks of the two machines.  Give the firewall
the small disk and the internal machine the large one.  Run a web
proxy (say, Squid) on the internal machine, and run the WWW server on
the other one (personally, I avoid running web servers on firewalls as
well, but you probably don't have the budget for a fully formed
"demilitarised zone" setup, since that would require at least one more
machine.


-- 
  PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
         To unsubscribe: mail [EMAIL PROTECTED] with 
                       "unsubscribe" as the Subject.

Reply via email to