全功能软件路由器-Zeroshell
2013-07-10 13:44:36 
阿炯
Zeroshell 是一个微型的Linux发行版本,它功能强大,具有强大的router、radius、web门户、防火墙、VPN、Qos、 DHCP、DNS转发等功能,可以用来安装到服务器上为内网提供网络服务,而且安装和使用都很方便,有Live CD和Flash imgage文件用于安装,可以使用Web界面进行设置和管理。
Zeroshell is a Linux distribution for servers and embedded devices aimed at providing the main network services a LAN requires. It is available in the form of Live CD or Compact Flash image and you can configure and administer it using your web browser.
特点
* Kerberos 5 认证使用集成的KDC以及cross-authentication between realms;
* LDAP, NIS 以及RADIUS 认证;
* X509 证书认证;
* Unix 和 Windows Active Directory 集成使用LDAP 以及Kerberos 5 cross realm 认证;
* 动态路由和静态路由 (RIPv2 with MD5 或者明文认证Split Horizon and Poisoned Reverse algorithms);
* 802.1d 网桥及生成树协议;
* 802.1Q Virtual LAN (tagged VLAN);
* RADIUS 服务器提供安装认证和自动WEB keys管理。支持无线802.11b, 802.11g and 802.11a 网络,支持802.1x 协议 EAP-TLS, EAP-TTLS 和PEAP 的安装MAC 地址认证;WPA with TKIP and WPA2 with CCMP (802.11i complaint) 同样也支持; RADIUS 服务器也支持用户名、群组或者MAC 地址的supplicant, allow the access on a preset 802.1Q VLAN.
* Captive Portal 支持无线网络的web 登录认证.
* 包过滤防火墙和基于状态的包过滤防火墙;
* QoS (品质服务) ,管理自己想要的带宽。你可以设定最小带宽或者最大的带宽,也可以指定某些流量类的优先级;
* 可以对p2p流量阻止或者限制它占用的带宽,也可以把它放到一个低优先级的类中间去;
* 多区域DNS 服务器自动管理;
* 多个子网DHCP server器;
* Host-to-lan VPN with L2TP/IPsec in which L2TP (Layer 2 Tunneling Protocol) authenticated with Kerberos v5 username and password is encapsulated within IPsec authenticated with IKE that uses X.509 certificates;
* Lan-to-lan VPN (openvpn);
* PPPoE client 通过adsl;
* Dynamic DNS client used to easily reach the host on WAN even when the IP is dynamic;
* NTP (网络对时协议) client and server for keeping host clocks synchronized;
* Syslog server for 接收和分析系统日志;
Zeroshell is a Live CD distribution, meaning that it is not necessary to install it on the hard disk since it can operate directly from the CDROM on which it is distributed. Obviously, the database, containing all the data and settings, can be stored on ATA, SATA, SCSI and USB disks. Any security Bug Fixes can be downloaded from the automatic update system via Internet and installed in the database. These patches will be automatically removed from the database by subsequent releases of the Zeroshell Live CD already containing the updates.
It is also available a 512MB Compact Flash image useful if you have to boot your box from this device instead from CDROM for example in the embedded devices for network appliances. The Compact Flash image has 400MB available to store the configuration and data.
The name Zeroshell underlines the fact that although it is a Linux system (traditionally administrable from a shell), all the administration operations can be carried out via Web interface: indeed, after having assigned an IP address via a VGA or serial terminal, simply connect to the assigned address by means of a browser to configure everything. Zeroshell was successfully tested to work with Firefox 1.0.6+, Internet Explorer 6+, Netscape 7.2+ e Mozilla 1.7.3+.
最新版本:1.0
官方主页:http://www.zeroshell.org/
Zeroshell is a Linux distribution for servers and embedded devices aimed at providing the main network services a LAN requires. It is available in the form of Live CD or Compact Flash image and you can configure and administer it using your web browser.
特点
* Kerberos 5 认证使用集成的KDC以及cross-authentication between realms;
* LDAP, NIS 以及RADIUS 认证;
* X509 证书认证;
* Unix 和 Windows Active Directory 集成使用LDAP 以及Kerberos 5 cross realm 认证;
* 动态路由和静态路由 (RIPv2 with MD5 或者明文认证Split Horizon and Poisoned Reverse algorithms);
* 802.1d 网桥及生成树协议;
* 802.1Q Virtual LAN (tagged VLAN);
* RADIUS 服务器提供安装认证和自动WEB keys管理。支持无线802.11b, 802.11g and 802.11a 网络,支持802.1x 协议 EAP-TLS, EAP-TTLS 和PEAP 的安装MAC 地址认证;WPA with TKIP and WPA2 with CCMP (802.11i complaint) 同样也支持; RADIUS 服务器也支持用户名、群组或者MAC 地址的supplicant, allow the access on a preset 802.1Q VLAN.
* Captive Portal 支持无线网络的web 登录认证.
* 包过滤防火墙和基于状态的包过滤防火墙;
* QoS (品质服务) ,管理自己想要的带宽。你可以设定最小带宽或者最大的带宽,也可以指定某些流量类的优先级;
* 可以对p2p流量阻止或者限制它占用的带宽,也可以把它放到一个低优先级的类中间去;
* 多区域DNS 服务器自动管理;
* 多个子网DHCP server器;
* Host-to-lan VPN with L2TP/IPsec in which L2TP (Layer 2 Tunneling Protocol) authenticated with Kerberos v5 username and password is encapsulated within IPsec authenticated with IKE that uses X.509 certificates;
* Lan-to-lan VPN (openvpn);
* PPPoE client 通过adsl;
* Dynamic DNS client used to easily reach the host on WAN even when the IP is dynamic;
* NTP (网络对时协议) client and server for keeping host clocks synchronized;
* Syslog server for 接收和分析系统日志;
Zeroshell is a Live CD distribution, meaning that it is not necessary to install it on the hard disk since it can operate directly from the CDROM on which it is distributed. Obviously, the database, containing all the data and settings, can be stored on ATA, SATA, SCSI and USB disks. Any security Bug Fixes can be downloaded from the automatic update system via Internet and installed in the database. These patches will be automatically removed from the database by subsequent releases of the Zeroshell Live CD already containing the updates.
It is also available a 512MB Compact Flash image useful if you have to boot your box from this device instead from CDROM for example in the embedded devices for network appliances. The Compact Flash image has 400MB available to store the configuration and data.
The name Zeroshell underlines the fact that although it is a Linux system (traditionally administrable from a shell), all the administration operations can be carried out via Web interface: indeed, after having assigned an IP address via a VGA or serial terminal, simply connect to the assigned address by means of a browser to configure everything. Zeroshell was successfully tested to work with Firefox 1.0.6+, Internet Explorer 6+, Netscape 7.2+ e Mozilla 1.7.3+.
最新版本:1.0
官方主页:http://www.zeroshell.org/