I have a small LAN with a Zywall35 Router/Firewall appliance.
This Zywall35 device supports Radius authentication and I want to give this a try. Looking for a Radius server solution I discovered Zeroshell.
Have a Soekris Net4801 (with Mini-PCI Wlan Module Intel PRO/Wireless 2200BG), which I can use for Zeroshell.
Will need to buy bigger Compact Flash card tomorrow, I wonder if I should take a 1 GB CF card (corresponding to the Zeroshell image size) or if an even bigger CF card (2 or 4 GB) will work as well.
But what I actually wanted to ask is, in which segment of my network shall I put the Zeroshell appliance?
I mean, the ZyWall35 appliance divides my network into the segments WAN, LAN and DMZ (for a wireless Access Point). The latter I don’t have yet, but I was thinking that I might just try the Zeroshell Access Point.
My feeling tells me to put the Zeroshell appliance in the LAN segment, because the Radius server is queried by devices in the LAN. But if it’s a wireless access point as well, it should rather go in the DMZ segment, shouldn’t it?
1GB is enough. ZS is a firewall itself, so it doesn’t really matter where will you place it in your network. You could put it in your LAN and create a separate DMZ for WIFI clients. You can also swap Zywall for ZS and let it do everything. If you have multiple WAN links you should put it in front of everything else so that it can perform the net balancing.