Re: [wlug] Configuring a firewall
Glen I sent you a long text off list, Hope it helps Covers IP routing and stuff, You probably only need the last bit, but ut was easier to send it all to you. Good luck I cheated, got a 486, installed IPCOP firewall, web configured and very nice, My router also has a firewall, so I'm now behind 2 of them On Thursday, July 24, 2003, at 07:43 PM, Glenn Ramsey wrote:
Hi,
I'm trying to set up a firewall to hopefully prevent being hacked again. Since the machine is a dialup (until DSL comes to Hikutaia) I figure that it's got to be pretty straightforward.
The machine is also a workstation and file/print/mail/dnscache etc server for my home office network of itself plus 2 or 3 other > machines.
The whole issue of what firewall software to use seems a bit confusing, but I think I've figured out that ipmasq does what I need. I've installed it and read the debian ipmasq users manual but I'm not sure what to do next. According to the manual I configure it using dpkg-reconfigure. I've done that and selected the ppp option.
What next? The manual doesn't say any more, does that mean that it's automatically configured? Do I need to learn the details of iptables so I can confirm that it is correct or is there an easier way? Currently I don't really have the time to do that so if the answer to the last question is yes then can you guys suggest someone who I could pay to do it?
Thanks g
-- Glenn Ramsey <glenn(a)componic.co.nz> 07 8627077 http://www.componic.co.nz
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
Has anybody looked at http://www.smoothwall.org ? Looks pretty good too if you have a box to spare. Felix On Thu, 24 Jul 2003 20:13:46 +1200 Gavin Denby <redhat(a)ihug.co.nz> wrote:
Glen I sent you a long text off list, Hope it helps
Covers IP routing and stuff, You probably only need the last bit, but ut was easier to send it all to you.
Good luck
I cheated, got a 486, installed IPCOP firewall, web configured and very nice, My router also has a firewall, so I'm now behind 2 of them
On Thursday, July 24, 2003, at 07:43 PM, Glenn Ramsey wrote:
Hi,
I'm trying to set up a firewall to hopefully prevent being hacked again. Since the machine is a dialup (until DSL comes to Hikutaia) I figure that it's got to be pretty straightforward.
The machine is also a workstation and file/print/mail/dnscache etc server for my home office network of itself plus 2 or 3 other > machines.
The whole issue of what firewall software to use seems a bit confusing, but I think I've figured out that ipmasq does what I need. I've installed it and read the debian ipmasq users manual but I'm not sure what to do next. According to the manual I configure it using dpkg-reconfigure. I've done that and selected the ppp option.
What next? The manual doesn't say any more, does that mean that it's automatically configured? Do I need to learn the details of iptables so I can confirm that it is correct or is there an easier way? Currently I don't really have the time to do that so if the answer to the last question is yes then can you guys suggest someone who I could pay to do it?
Thanks g
-- Glenn Ramsey <glenn(a)componic.co.nz> 07 8627077 http://www.componic.co.nz
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
-- Felix Hohener http://www.8ung.at/ferina/
Smoothwall is not completely following GPL and is closed shop as far as fixes. IPCOP is the GPL fork of the original project. I suggest you consider IPCOP personally Smoothwall is a great commercial product. IPCOP is a better GPL product with a great community behind it IMHO. they listen to idea's and are constructive in their replies, Unlike the individual who drove a lot of us to split off from smoothwall. which need not be discussed here. Except to say that I financially supported smoothwall until the IPCOP fork. I use IPCOP here to do the job, the 486 was fine, but the web interface responce was a little slugish, never seemed to affect performance with my dial up,(I did give it 38 meg of ram however), I now have a p100 96 meg doing the job (ADSL upgrade required PCI slots) with the same software and adsl works fine, graphs are sweet, DHCP is painless, proxy is sweet. If you have an old box, no monitor or keyboard required, as the setup, and use is via web interface. (BIOS dependent) i also recomend this path if you can. Its also easier to keep the firewall secure, and reinstall the firewall box if you suspect any compromise. Its a breeze to setup. I reinstalled the newest release, and confiured my box in half an hour. (but I had done it before.) If you need a 486, I probaly have one lying arround ... Doesn't everyone? ;-) On Thu, 24 Jul 2003 21:42:30 +1200 Felix Hohener <ferina(a)xtra.co.nz> wrote:
Has anybody looked at http://www.smoothwall.org ? Looks pretty good too if you have a box to spare.
Felix
On Thu, 24 Jul 2003 20:13:46 +1200 Gavin Denby <redhat(a)ihug.co.nz> wrote:
Glen I sent you a long text off list, Hope it helps
Covers IP routing and stuff, You probably only need the last bit, but ut was easier to send it all to you.
Good luck
I cheated, got a 486, installed IPCOP firewall, web configured and very nice, My router also has a firewall, so I'm now behind 2 of them
On Thursday, July 24, 2003, at 07:43 PM, Glenn Ramsey wrote:
Hi,
I'm trying to set up a firewall to hopefully prevent being hacked again. Since the machine is a dialup (until DSL comes to Hikutaia) I figure that it's got to be pretty straightforward.
The machine is also a workstation and file/print/mail/dnscache etc server for my home office network of itself plus 2 or 3 other > machines.
The whole issue of what firewall software to use seems a bit confusing, but I think I've figured out that ipmasq does what I need. I've installed it and read the debian ipmasq users manual but I'm not sure what to do next. According to the manual I configure it using dpkg-reconfigure. I've done that and selected the ppp option.
What next? The manual doesn't say any more, does that mean that it's automatically configured? Do I need to learn the details of iptables so I can confirm that it is correct or is there an easier way? Currently I don't really have the time to do that so if the answer to the last question is yes then can you guys suggest someone who I could pay to do it?
Thanks g
-- Glenn Ramsey <glenn(a)componic.co.nz> 07 8627077 http://www.componic.co.nz
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
-- Felix Hohener http://www.8ung.at/ferina/
_______________________________________________ wlug mailing list wlug(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/wlug
If you need a 486, I probaly have one lying arround ... Doesn't everyone? ;-)
http://www.wlug.org.nz/GarageSale I even have a Pentium to give away! :) -- Greig McGill
participants (3)
-
Felix Hohener -
Gavin Denby -
Greig McGill