Hello everybody,

I am in the process of modeling my network once I rent my own rackspace somewhere and I could use a little help. I was thinking of using something such as Compaq's DL320's for DNS servers and a mail server running a 800mhz PIII, and using DL380's as web servers most likely upped to 512mb RAM. My question is, would you recommend a firewall added as a safeguard? If so what kind of system would this require? If I did add one I would either be looking at a Linux box, maybe a NT machine with CheckPoint, or the more sensible option (in my opinion)a stand alone firewall unit. Think this would be an ok setup? Or would I be buying too powerful equpiment?

Thanks in advance!

How many accounts? The compaq is an excellent choice too many people buy cheep equipment. I don't think you need a separate mail server, you can probably run them on the same machine. Also firewall wise i'm guessing the company that you rent rackspace from will have already taken care of that. Besides you can't firewall too much anyway, because you need to allow incoming connections, especially if your gonna host :-)

Also you could even run the dns server on the same machine, or maybe you should run the mail and dns together and web on one. I wouldn't put a whole machine together for just dns not a compaq anyway, just put the mail and dns together and web on a different box

I suggest you to put firewalling on each server... or create an extensive set of filters on the routers going to your servers. A dedicated firewall might be an overkill for this.

It is generally a good idea to allow only what should reach a server and nothing else (i.e, only mail traffic to your mail server).


A web server is tricky to firewall, because there are many possible services on it and you probably won't want to re-set your rules all the time.

Basically make sure that you are not too restrictive at first, you will save yourself a huge headache :)