| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 40447 | 2003-12-08 08:07:00 | Mandrake 9.1 Gateway - attn. bmason | [linux] mb0o53 (4863) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 198402 | 2003-12-08 08:07:00 | I'm trying to setup my celeron 333 as a firewalled gateway for my network to the internet, i am running Mandrake 9.1, but am having some difficulty's in setting it up. I have a Router / 4 Port Switch (All the same unit) which i think is complicating things slightly, im wondering if anyone out there (i was told bmason works with mandrake a bit) would know what to do and give me a hand. cheers, -jordan |
[linux] mb0o53 (4863) | ||
| 198403 | 2003-12-08 08:22:00 | Mandrake probably has it's own GUI tools to do this, but it can be done very simply from the command shell. You don't need a separate router. The firewall script (assuming you are using iptables) must have the following lines included: ~~~~~~~~~~~~~~~~~~~ modprob iptable_nat iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward ~~~~~~~~~~~~~~~~~~~ These are found in the script that I use at: downloads.securityfocus.com Place a line in your /etc/rc.local file to start the firewall at boot time. It is about as simple as that. JohnD |
JohnD (509) | ||
| 198404 | 2003-12-08 09:21:00 | Firstly, if its going to be a dedicated firewall, then I would recomend smoothwall because it is designed to be a gateway/firewall (Wait a couple of hours and get 2.0 when its released). For mandrake, there is a wizard in the Mandrake Control Center, under Networking -> DrakGW, which will set up the computer to do packet fowarding, DNS fowarding+caching, and a firewall (shorewall). If you need an easier to use firewall, then grab a copy of firestarter (I hate it). Then if there are any computers on the LAN and don't use DCHP, set their gateway & dns addresses to the gateway computers address. If you don't do this they will bypass the firewall. Let me know how you get on. |
bmason (508) | ||
| 198405 | 2003-12-08 09:46:00 | just had a look @ the smoothwall site and it looks good, im going to try it out and see how i get on :) | [linux] mb0o53 (4863) | ||
| 198406 | 2003-12-09 07:31:00 | ok - i have smoothwall 2.0 installed, and have GREEN (eth1) as 192.168.1.1 and RED (eth0) as 192.168.1.5, gateway:192.168.1.2 I just need to be able to set computers on my network to have a gateway of 192.168.1.1, and for them to go through the gateway and out 192.168.1.5 to the net....but this doesn't happen automtically it seems, how do i configure smoothwall to do this? |
[linux] mb0o53 (4863) | ||
| 198407 | 2003-12-09 07:38:00 | You have to set the gateway manually on each PC if they have static IP's, otherwise, setup the smoothwall box to do DHCP (AFAIK it can...), | Chilling_Silently (228) | ||
| 198408 | 2003-12-09 07:51:00 | If you didn't turn on DHCP during the install, it can be enabled through the smoothwall web interface, under Services -> DHCP. Then provieded the clients are set to get an IP automatically they will pick it up by restarting the LAN interface or rebooting depending on the OS. | bmason (508) | ||
| 198409 | 2003-12-09 07:54:00 | ok - what settings do i put for DHCP? Start Address: End Address: Primary DNS: Secondary DNS: Default Lease (mins): Max Lease (mins): Domain Name Suffix: |
[linux] mb0o53 (4863) | ||
| 198410 | 2003-12-09 08:03:00 | Start Address: 192.168.0.20 End Address: 192.168.0.40 Primary DNS: 202.27.184.3 Secondary DNS: 202.27.184.5 Default Lease (mins): 6000 Max Lease (mins):12000 Domain Name Suffix: *Dunno what goes here* :-/ |
Chilling_Silently (228) | ||
| 198411 | 2003-12-09 08:14:00 | ok left the suffix thing blank, set the client ip to get its ip's automatically and rebooted it, now booted, i can access the internet, but still don't know if im going through the gateway box or not....is there a way to find out? | [linux] mb0o53 (4863) | ||
| 1 2 | |||||