linux_network

Suppose I have an existing network of 10 windows users with a Win2003 PDC/file server/exchange(mail,calendaring)/web server, and 3 shared printers.

Also, a spam server would be useful for the mail server, and IDS like snort for network security, and an OpenBSD Invisible firewall

Ideally, each service would run on a separate crapppy box (like 1Ghz CPU, 1Gb RAM), or one giant CPU with multiple virtualboxes. If you're keeping track

• • PDC

  • file/print queue server

  • mail

  • web

  • spam filter

  • snort

  • firewall

How would I save money by switching to linux? (Ignoring the man hours needed, because I would hypothetically be employed full time.)

First, swap out the web server for apache,

This is "easy," assuming you're not running a windows-only format (.NET, ASP?)

and samba service for file sharing. Will need to integrate Samba into LDAP for network user authentication.

you can set up a samba file server on a windows network that uses exiting Win AD to authenticate users.

$ apt-get install likewise-open

https://help.ubuntu.com/community/LikewiseOpen

domainjoin-cli join my.domain my-username

http://sadms.sourceforge.net/

http://www.linux.com/feature/40983

http://www.securityfocus.com/infocus/1563

Next, the PDC.

It sounds like it is possible to create a linux primary domain controller via samba, according to

http://www.steve-lacey.com/blogarchives/2006/11/linux_as_a_wind.shtml

http://www.freeos.com/articles/3842/

https://help.ubuntu.com/community/LDAP-Samba_PDC_(for_Linux_and_Windows)

http://www.enterprisenetworkingplanet.com/netos/article.php/1144701

http://www.enterprisenetworkingplanet.com/netos/article.php/1151091

Replace exchange/calendaring with ??

A caveat would be outlook/exchange compatibility., calendar sharing, etc.

http://www.linuxjournal.com/article/6734

http://www.bynari.net/products/server/products.html

http://www.novell.com/products/desktop/features/evolution.html

Snort

http://www.snort.org/

need to configure rules

Spam filter

Spam Assassin

OpenBSD Firewall

Setup is NOT straight-forward.

Idea: set up the Obsd Fw as a filter on a virtual network other virtualized servers.

-In VirtualBox, enable two adapters. One attached to "host interface", the other attached to "internal network" on network named "X".

-Other virtualized servers reside on internal network X?

Another option:

http://www.netfilter.org/

Clients:

If the client computers insist on running windows with outlook (USE THUNDERBIRD!!!), boot into virtualbox windows client with ubuntu host.

No anti-virus is necessary, but if you're "paranoid" (aka stupid?), there's ClamAV