Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Linux kernel compilation and package choice

To: "frustis kellons" <[email protected]>, "fw_" <[email protected]>
Subject: Re: [FW1] Linux kernel compilation and package choice
From: Mark Ingles <[email protected]>
Date: Wed, 10 Jan 2001 00:15:55 -0500
In-reply-to: <[email protected]>
Sender: [email protected]

Hi, I've been trying to find enough time to put together a guide for exactly what you're asking....

I personally always do a "Custom Install" and "Select Individual Packages" when it comes to the installer. I'll choose a very minimum system. I don't have a package list for you, sorry.

As far as the kernel goes, only compile in what you need for your specific hardware. It should be very minimal. My semi-commented .config looks like this for 2.2.16:

# general processor stuff, I'm too lazy to list each one
CONFIG_M686=y
CONFIG_X86_WP_WORKS_OK=y
CONFIG_X86_INVLPG=y
CONFIG_X86_BSWAP=y
CONFIG_X86_POPAD_OK=y
CONFIG_X86_TSC=y
CONFIG_X86_GOOD_APIC=y
CONFIG_1GB=y
CONFIG_MTRR=y

# fw1 is a module, so you need to set both of these
CONFIG_MODULES=y
CONFIG_MODVERSIONS=y

CONFIG_NET=y    # networking is good on a firewall :)
CONFIG_PCI=y    # the nics are on a pci bus
CONFIG_PCI_GOANY=y # how it accesses the pci bus
CONFIG_PCI_BIOS=y          # I don't understand the pci stuff
CONFIG_PCI_DIRECT=y  # more pci black magic
CONFIG_SYSVIPC=y        # interprocess communication: "just say y"
CONFIG_SYSCTL=y # to turn on ip forwarding
CONFIG_BINFMT_ELF=y # to run any programs

CONFIG_BLK_DEV_FD=m # I never use the floppy, so it's a module

CONFIG_PACKET=y # tcpdump needs this CONFIG_UNIX=y # unix domain sockets like /dev/log CONFIG_INET=y # tcp/ip networking CONFIG_IP_ROUTER=y # faster performance for a router (firewall) CONFIG_SKB_LARGE=y # probably doesn't make a difference - only good for long lines over 2 megs/sec

CONFIG_SCSI=y           # I have scsi disks
CONFIG_BLK_DEV_SD=y     # I have scsi hard disks

CONFIG_SCSI_AACRAID=y # It's a Dell with an Adaptec Raid Card

CONFIG_NETDEVICES=y # for network cards

CONFIG_NET_ETHERNET=y   # for ethernet network cards
CONFIG_NET_EISA=y       # for my ethernet card
CONFIG_EEXPRESS_PRO100=y        # I have Intel ether express pro cards

CONFIG_VT=y # virtual terminal, to use a monitor - actually not useful since it doesn't have a montor :) CONFIG_VT_CONSOLE=y # prints kernel messages to my non existent monitor :) CONFIG_UNIX98_PTYS=y # pseudo terminals for telnet, I think I could actually live without them and use the old style devices CONFIG_UNIX98_PTY_COUNT=256 # the num of pseudo terminals

CONFIG_PROC_FS=y # the proc filesystem, for things like ip_forwarding CONFIG_DEVPTS_FS=y # the pseudo terminal filesystem CONFIG_EXT2_FS=y # ext2 filesystem, what everything is written to on disk

CONFIG_VGA_CONSOLE=y # use a plain old vga display on my non-existant monitor :)

Good Luck - Mark Ingles

At 02:09 PM 1/9/01 , frustis kellons wrote:

Hi,

I need to install Firewall-1 v.4.1 over Linux Red Had 6.1 on a HP Netserver
LPR.

Anybody knows where can I find a guide so I can optimize the Linux kernel
compilation and minimise the number of packages to install?

Best regards and thank you in advance,

Frustis.


================================================================================
    To unsubscribe from this mailing list, please see the instructions at
              http://www.checkpoint.com/services/mailing.html
================================================================================

References:
- [FW1] Linux kernel compilation and package choice
  - From: "frustis kellons" <[email protected]>

Prev by Date: RE: [FW1] 4.1 SP3 is here...any takers?
Next by Date: Re: [FW1] Urgent Help !! Problem with InterScan v3.5 on Solaris 2.6
Previous by thread: [FW1] Linux kernel compilation and package choice
Next by thread: [FW1] dependent packages and libraries on solaris7
Index(es):
- Date
- Thread