RE: [newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have looked at Smoothwall, but I am looking for a good custom firewall that has IDS, reporting, and preferably a Web interface, as I am not a Linux guru by an means. Has anyone heard of Wolverine? I found this one while searching for other firewalls, and this one came up. It appears that the developers are trying to make a Watchguard-like firewall with the 2.4.x kernel. Has anyone tried this distro? Any thoughts? Any other ideas for a firewall? I really do not want to have to take a Red Hat or Mandrake 8.x distro and turn it into a firewall, as I don't know what to have and not to have installed. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of FemmeFatale Sent: Tuesday, May 28, 2002 7:10 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. et wrote: boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time? That or consider Smootwall for your needs - -- Femme Good Decisions You boss Made: We'll do as you suggest and go with Linux. I've always liked that character from Peanuts. - - Source: Dilbert -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPT7UEr5pFJx+BQ5EQKOewCfd4wfM24KlNH400q8NWQsUrAkEb4AoP15 7TXm8fwKwmaOIA3FhODwcc8+ =yd4D -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 problems.
(so Bastille can change the # values if it is run more than once) DHCP_IFACES= # 10) more UDP fun. List IP addresses or network space of NTP servers # #NTP_SERVERS= # DISABLE NTP QUERIES / SAFEST #NTP_SERVERS=a.b.c.d/32 e.f.g.h/32# example, to allow querying 2 servers # # Please make sure variable assignments are on single lines; do NOT # use the \ continuation character (so Bastille can change the # values if it is run more than once) NTP_SERVERS= # 11) more ICMP. Control the outbound ICMP to make yourself invisible to # traceroute probesMissing # #ICMP_OUTBOUND_DISABLED_TYPES=destination-unreachable time-exceeded # # Please make sure variable assignments are on single lines; do NOT # use the \ continuation character (so Bastille can change the # values if it is run more than once) ICMP_OUTBOUND_DISABLED_TYPES= # 12) Logging # With this enabled, ipchains will log all blocked packets. #** this could generate huge logs ** # This is primarily intended for the port mointoring system; # also note that you probably do not want to AUDIT any services # that you are not allowing, as doing so would mean duplicate # logging LOG_FAILURES=N # 13) ADSL # Set to yes if you a ADSL modem is plug to one of you external interface # For ADSL internet access firewall script let access to TCP port 1073 et need protocole 47 ADSL_INTERFACES= # 14) SQUID # Redirect all packet for masquerade network from port 80 to SQUID port (squid port) SQUID_REDIRECT_PORT= # 15) OptimiozeTOS packet for specific protole, Thanks to Trinity os for this !!! # Though very FEW ISPs do anything with the TOS bits, I thought you'd # like to see it. In theory, you can tell the Internet how to handle # your traffic, be it sensitive to delay, throughput, etc. # # -t 0x01 0x10 = Minimum Delay # -t 0x01 0x08 = Maximum Throughput # -t 0x01 0x04 = Maximum Reliability # -t 0x01 0x02 = Minimum Cost TOS_MIN_DELAY= TOS_MAX_THROUGHPUT= TOS_MAX_RELIABILITY= TOS_MIN_COST= Do I have to modify Item 7 within this config file? Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of et Sent: Tuesday, May 28, 2002 1:53 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time? On Tuesday 28 May 2002 04:02 pm, you wrote: Yes. The ETH interfaces are the gateways for the respected LAN segments. I do have RIPv2 running on the network and all of the routers see the other subnets. Like I said, I can SSH into the firewall from the IP Address 192.168.150.1, do what I need to do on the firewall, but I cannot get outside the firewall. Is there a script or config file you would like me to paste so you can look at it to see if there is a config problem? I haven't made any changes to any of the script files, except the init.rc (or the rc.local, which ever is the very last script to run during bootup) which I has to add the static routes to the other networks. Now, before anyone else jumps, I did add the static routes manually BEFORE I modified the init.rc script, and I was able to access the firewall via HTTPS and SSH, but I was still not able to get out to the Internet. Thanks, Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Dennis Myers Sent: Tuesday, May 28, 2002 12:12 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging
Re: [newbie] SNF 7.2 problems.
Try out the following. At worst, you'll need to do a search at http://www.google.com/linux to find them. SME server at www.e-smith.org http://www.astaro.org/cgi/ultimatebb.cgi http://www.ipcop.org/cgi-bin/twiki/view/IPCop/WebHome Those out to do. Lanman - Original Message - From: Chris Lynch [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, May 29, 2002 12:01 PM Subject: RE: [newbie] SNF 7.2 problems. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have looked at Smoothwall, but I am looking for a good custom firewall that has IDS, reporting, and preferably a Web interface, as I am not a Linux guru by an means. Has anyone heard of Wolverine? I found this one while searching for other firewalls, and this one came up. It appears that the developers are trying to make a Watchguard-like firewall with the 2.4.x kernel. Has anyone tried this distro? Any thoughts? Any other ideas for a firewall? I really do not want to have to take a Red Hat or Mandrake 8.x distro and turn it into a firewall, as I don't know what to have and not to have installed. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of FemmeFatale Sent: Tuesday, May 28, 2002 7:10 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. et wrote: boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time? That or consider Smootwall for your needs - -- Femme Good Decisions You boss Made: We'll do as you suggest and go with Linux. I've always liked that character from Peanuts. - - Source: Dilbert -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPT7UEr5pFJx+BQ5EQKOewCfd4wfM24KlNH400q8NWQsUrAkEb4AoP15 7TXm8fwKwmaOIA3FhODwcc8+ =yd4D -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] SNF 7.2 problems.
On 30/05/2002, The following message was beamed across the Internet: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have looked at Smoothwall, but I am looking for a good custom firewall that has IDS, reporting, and preferably a Web interface, as I am not a Linux guru by an means. Checkout IPCop, it is one step ahead of smoothwall and has nice people on the email groups. It was originally based on Smoothwall 0.9.9 but has grown some since then... :) http://www.ipcop.org -- Regards, Mark Van Bruggen [EMAIL PROTECTED] There is always a way, it's just reality that's the problem !! == Mark Van Bruggen Microsoft OEM Certified Phone : 07 4926 4900 Computer Systems Supplier Mobile: 04 3886 4900 Internet / Computer Technician E-mail: [EMAIL PROTECTED] Rockhampton QLD AU == Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPPBK0r5pFJx+BQ5EQIGbgCeP85U7Hw+Gm5vH6VQs7BiAFt4OZMAn1Pi zamA7FT3yCt7qxnSJOWQb/Jc =OKqt -END PGP SIGNATURE- attachment: winmail.dat Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] SNF 7.2 problems.
On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). OOps! hit the mouse button at the wrong moment, so previous message resembles the inner workings of my brain.Have you set up the LAN so that all of the system knows what the gateway address is?. You don't mention a gateway device. Just curious and hope to help. -- Dennis M. linux user #180842 Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] SNF 7.2 problems.
On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). -- Dennis M. linux user #180842 Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Yes. The ETH interfaces are the gateways for the respected LAN segments. I do have RIPv2 running on the network and all of the routers see the other subnets. Like I said, I can SSH into the firewall from the IP Address 192.168.150.1, do what I need to do on the firewall, but I cannot get outside the firewall. Is there a script or config file you would like me to paste so you can look at it to see if there is a config problem? I haven't made any changes to any of the script files, except the init.rc (or the rc.local, which ever is the very last script to run during bootup) which I has to add the static routes to the other networks. Now, before anyone else jumps, I did add the static routes manually BEFORE I modified the init.rc script, and I was able to access the firewall via HTTPS and SSH, but I was still not able to get out to the Internet. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Dennis Myers Sent: Tuesday, May 28, 2002 12:12 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). OOps! hit the mouse button at the wrong moment, so previous message resembles the inner workings of my brain.Have you set up the LAN so that all of the system knows what the gateway address is?. You don't mention a gateway device. Just curious and hope to help. - -- Dennis M. linux user #180842 -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPPiWkr5pFJx+BQ5EQKMoQCeLa4X+wlA8nFi4FK7gI+pxAk9iNAAmwe5 I7jQALxkgs8ByaK7OjK3W9eE =OMTa -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [newbie] SNF 7.2 problems.
boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time? On Tuesday 28 May 2002 04:02 pm, you wrote: Yes. The ETH interfaces are the gateways for the respected LAN segments. I do have RIPv2 running on the network and all of the routers see the other subnets. Like I said, I can SSH into the firewall from the IP Address 192.168.150.1, do what I need to do on the firewall, but I cannot get outside the firewall. Is there a script or config file you would like me to paste so you can look at it to see if there is a config problem? I haven't made any changes to any of the script files, except the init.rc (or the rc.local, which ever is the very last script to run during bootup) which I has to add the static routes to the other networks. Now, before anyone else jumps, I did add the static routes manually BEFORE I modified the init.rc script, and I was able to access the firewall via HTTPS and SSH, but I was still not able to get out to the Internet. Thanks, Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Dennis Myers Sent: Tuesday, May 28, 2002 12:12 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). OOps! hit the mouse button at the wrong moment, so previous message resembles the inner workings of my brain.Have you set up the LAN so that all of the system knows what the gateway address is?. You don't mention a gateway device. Just curious and hope to help. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com