RE: [leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-16 Thread Frank Dauer 
Ben,

 I want to use LEAF as a simple router inside my internal 
 networks.  I don't need any firewalling or NAT.

if you have Bering-uClibc 2.1:

- delete all references to shorewall in syslinux.cfg

if you have Bering-uClibc 2.2:

- delete all references to shorewall in leaf.cfg

In both cases you may want to delete shorwall.lrp to save space.

then you should have a system that comes up without any iptables
rules and things like that.

You now have to configure your interfaces in /etc/network/interfaces.

You may want to enable ip_forward in /etc/network/options in order
for the router to acually forward packets.

Don't forget to back up etc. ;)

Bye,

Frank


---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_idG21alloc_id040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

RE: [leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-16 Thread Robert K Coffman Jr - Info From Data Corporation 
The first thing that came to mind to do this was to change the following in
the shorewall policy file:

all all REJECT  ULOG

to

all all ACCEPT

However this doesn't meet the requirement of getting rid of shorewall.
Also, I don't know what the performance implications are of doing it this
way versus eliminating Shorewall.  Maybe someone can comment on that.


- Bob Coffman

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Ben Conrad
Sent: Thursday, July 15, 2004 5:59 PM
To: [EMAIL PROTECTED]
Subject: [leaf-user] Using LEAF (Bering-uClibc) as a router (no
shorewall)


Hello,

I want to use LEAF as a simple router inside my internal networks.  I
don't need any firewalling or NAT.

What is the best way to turn off all the Shorewall and IPTables
configurations so that I can pass all traffic in/out of eth0 and eth1?
 I tried to rename /etc/rc2.d/S41shorewall and then backed up all the
packages but on next boot the /etc/rc2.d/S41shorewall still exists!

Thanks,

Ben


---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html




---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-16 Thread Ben Conrad 
Thanks all, 

I removed shorewall from the syslinux.cfg and set ip_forward=yes.  I
setup a temporary route on my firewall to point to the network behind
the LEAF router and it's working!

Ben

On Fri, 16 Jul 2004 12:17:42 +0200, Frank Dauer [EMAIL PROTECTED] wrote:
 Ben,
 
  I want to use LEAF as a simple router inside my internal
  networks.  I don't need any firewalling or NAT.
 
 if you have Bering-uClibc 2.1:
 
 - delete all references to shorewall in syslinux.cfg
 
 if you have Bering-uClibc 2.2:
 
 - delete all references to shorewall in leaf.cfg
 
 In both cases you may want to delete shorwall.lrp to save space.
 
 then you should have a system that comes up without any iptables
 rules and things like that.
 
 You now have to configure your interfaces in /etc/network/interfaces.
 
 You may want to enable ip_forward in /etc/network/options in order
 for the router to acually forward packets.
 
 Don't forget to back up etc. ;)
 
 Bye,
 
 Frank
 
 
 ---
 This SF.Net email is sponsored by BEA Weblogic Workshop
 FREE Java Enterprise J2EE developer tools!
 Get your free copy of BEA WebLogic Workshop 8.1 today.
 http://ads.osdn.com/?ad_idG21alloc_id040op=click
 
 
 
 leaf-user mailing list: [EMAIL PROTECTED]
 https://lists.sourceforge.net/lists/listinfo/leaf-user
 SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html



---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_idG21alloc_id040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-15 Thread Ben Conrad 
Hello,

I want to use LEAF as a simple router inside my internal networks.  I
don't need any firewalling or NAT.

What is the best way to turn off all the Shorewall and IPTables
configurations so that I can pass all traffic in/out of eth0 and eth1?
 I tried to rename /etc/rc2.d/S41shorewall and then backed up all the
packages but on next boot the /etc/rc2.d/S41shorewall still exists!

Thanks,

Ben


---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-15 Thread Erich Titl 
Ben
At 23:58 15.07.2004, Ben Conrad wrote:
Hello,
I want to use LEAF as a simple router inside my internal networks.  I
don't need any firewalling or NAT.
What is the best way to turn off all the Shorewall and IPTables
configurations so that I can pass all traffic in/out of eth0 and eth1?
 I tried to rename /etc/rc2.d/S41shorewall and then backed up all the
packages but on next boot the /etc/rc2.d/S41shorewall still exists!
Take shorewall out of either the LRP= parameter in syslinux.cfg or 
lrpkg.cfg/leaf.cfg depending on your release. The symlink S41shorewall is 
created on the fly at startup.

HTH
Erich
THINK
Püntenstrasse 39
8143 Stallikon
mailto:[EMAIL PROTECTED]
PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16

---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_idG21alloc_id040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

RE: [leaf-user] Using LEAF (Bering-uClibc) as a router (no shorewall)

2004-07-15 Thread S Mohan 
 

 -Original Message-
 From: [EMAIL PROTECTED] 
 [mailto:[EMAIL PROTECTED] On Behalf Of Ben Conrad
 Sent: Friday, July 16, 2004 3:29 AM
 To: [EMAIL PROTECTED]
 Subject: [leaf-user] Using LEAF (Bering-uClibc) as a router 
 (no shorewall)
 
 Hello,
 
 I want to use LEAF as a simple router inside my internal 
 networks.  I don't need any firewalling or NAT.
 
 What is the best way to turn off all the Shorewall and 
 IPTables configurations so that I can pass all traffic in/out 
 of eth0 and eth1?
  I tried to rename /etc/rc2.d/S41shorewall and then backed up 
 all the packages but on next boot the /etc/rc2.d/S41shorewall 
 still exists!
 
 Thanks,
 
 Ben

In most versions, the packages to be loaded are given in the bootloader
config file e.g. syslinux.cfg. In that line, remove shorwall and it will not
load from the next boot onwards.

Regards
Mohan



---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html