Bootable CD w/OS for firewall

[Don Levey]

Bob wrote:
> Don Levey wrote:
>> [...] I wand to create a bootable "live CD" for my firewall.
>> Basically, I want to keep all the configuration static, and if I need
>> to change the rules, I'd burn another CD. Part of the twist is that I
>> want to have a small hard drive around for /var to keep logs, and
>> whatever state info needs to be writable.
>
> One of my grand, unfinished projects was to have something bootable
> from CF or similar which could be hardware-switched to read-only. A
> USB reader could also store logs and such easily.
>
>> I've found a few "roll your own" links, but they either don't seem to
>>  address what I need, or I don't understand them.  Anyone have any
>> links to a write-up for this sort of thing?
>
> Are you planning on rolling your own firewall script(s), or are you
> after a solution that has a robust firewall feature included?
>
The intent was for me to use the iptables config information I've already
developed.  The machine will, in the end, be a gateway router/firewall,
sending traffic to one of two subnets: one for the server machines, and one
to the desktop machines.  OK, I know this can be a bit much for a home
network, but with 8 active machines now and at least three more coming
online at some point soon, I want a little more control and protection that
what my Linksys provides.
 -Don