slackware firewall for internal windows network

Sonja Michelle L. Thomas plug-discuss@lists.PLUG.phoenix.az.us
Sun, 28 Oct 2001 10:10:41 -0600 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Nope. It uses ipconfig from the command prompt (open a command window
or it'll scream by if you do it from start/run :o)  )

****************************************************
Sonja Michelle L. Thomas
Sonja@sdf.lonestar.org


- ----- Original Message ----- 
From: Tom Achtenberg 
To: plug-discuss@lists.PLUG.phoenix.az.us 
Sent: Sunday, October 28, 2001 8:22 AM
Subject: RE: slackware firewall for internal windows network


Windows 2000 does not use winipcfg

- -----Original Message-----
From: plug-discuss-admin@lists.PLUG.phoenix.az.us
[mailto:plug-discuss-admin@lists.PLUG.phoenix.az.us]On Behalf Of
cg.mk.snow
Sent: Sunday, October 28, 2001 6:32 AM
To: plug-discuss@lists.PLUG.phoenix.az.us
Subject: Re: slackware firewall for internal windows network


I am still learning linux, so please take any Linux advice i give
with a grain of salt. However, if you want the IP address of the
cable modem ethernet card, LAN card, and the dns servers, boot to
windows and click srart>run. Enter winipcfg in the box, and click ok.
This brings up a window that shows you all your network info. There
is a pull down box for each ethernet adapter. You may need to click
the  "more info" button to get some of the info you need. For the dns
server ip's, click the button that has three periods to the right of
the box, and it should give you three different addresses. I would
recommend writing all the info down, including the adapter addresses.
This may be doable in Linux, but I do not know how to do it.

As far as setting up your system, I am trying to do the same thing as
you and this is a mini roadmap for what I think should be done.
1) get the linux(server) box connected to the web.
2) Set up home network and test it with ping
3) Get IP forwarding(NAT) working
4) Get firewall working
5) set up samba
6) move my printer onto the server and try to get it to work.
7) I would eventually like to set up apache to serve a web page that
is reaching a little far for me right now though.

For getting the server computer to see the internet, make sure to
follow the advice I was given by David Mandala,
In the /etc/sysconfig/network-scripts/ifcfg-eth0 script add a line
that reads "DHCP_HOSTNAME='your hostname as assinged by cox @home'"
and then do ifup eth0.That seemed to help me.  

To make sure the computers are seeing each other, on the win systems
open a dos prompt and ping the server.

On the linux box, open a console window and use ping on the windows
boxes.

As for getting the NAT to work, I am afraid i am in the same boat as
you. I can get my win 98 and ME computers to ping the server, but
netwok translation still does not work. I think that I need to make
sure I set the domain on my linux box to to the same as my windows
boxes. I may need to set up the "work group" up too. I have been
working long days the last four days so I have not had a chance to
look at it.

I hope this helps, I will let you know if I find anything new.
Cliff
- ----- Original Message ----- 
From: Jeff Barker 
To: plug-discuss@lists.PLUG.phoenix.az.us 
Sent: Sunday, October 28, 2001 2:11 AM
Subject: slackware firewall for internal windows network


I'm setting up a firewall for an internal network at home mainly to
keep security inside the network, and to maximize internal network
speed and file sharing capabilities.

I want to be able to have the firewall basically transparent using
ipfiltering so the two computers behind it can still have full access
to the internet.

I want to use a 192.168.0.x internal network address.

The system is a K62 3D with two network cards, a 3com 3c905b, and a
netgear FA310Tx card. I have access to the internet using the 3com
and I've gotten the module support for the tulip driver for the other
card and set up to use the 192.168.0.x network address.

I use a static IP address setup for eth0 on COX@HOME and run a DNS
server to be able to lookup names, because I can't get it connected
to COX any other way without knowing their DNS server addresses. (I
lost the paper and they don't give them out anymore, they want you to
use DHCP which incidentally I can't get to work right either)

Anyways, right about here is where I am confused on what to do next
to get it to forward packets and masquerade or how to configure it as
a router of anytype.

I'm using Slackware 8.0 with a newly compiled 2.4.5 kernel with
support for NAT, routing and many other options that I knew I needed
in setup.

I've read through the many HOWTOs, and other Guides at the LDP
website, on routing and firewall setup and a lot of it is for Redhat
which is enough of a difference to confuse me even more.

Does anyone have any knowledge they could pass me, have a setup like
this yourself that you could share your experiences, or just have
some advice for me?

oh yeah, I have a hub that I was planning on setting up like this:

Two windows 2000 machines going through a hub, which connects to the
linux machine through an up port which is connected to the Cable
modem with the other card.

I want to be able to share files through the two windows machines,
and even networked drives, but not with the linux machine at all,
just those two machines.

I did not install samba support because since this was the case I
didn't think it would be needed.

Ok, where do I start?




- ------------------------------------------------------------------
J e f f  B a r k e r

Stickboy Productions
http://www.stickboyproductions.com
jeff@stickboyproductions.com
home:  602.992.4478
work:   480.315.4325
fax:      480.315.4003
- ------------------------------------------------------------------ 

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBO9wt/APYqz/5eU/xEQLGVACfdPRevsXcUu7yqziGK4i4yCtnQhwAmwR0
ujxVDF8URw+3lI9o5jX33iR8
=Tomo
-----END PGP SIGNATURE-----