I have a 2 day window to get the basics of a small network going. I have 2 setups in mind


Setup 1
Internet
|
[Single IP] ADSL Modem Router
|
|
-----------
eth0
-Linux box-
etho1
___________
|
unmanaged
8 port switch
|
|
LAn PCs





Setup 2
|
Internet
|
[Single IP] ADSL Modem Router
|
|
unmanaged
8 port switch
|
|
Linux Box & Lan PCs

The Goal
-shared ics for lan pcs
-remote access to files on Linux box from WinXP at home
-remote access for https [like webmin]

I have been advised on setup 2 using NAT on the router to ics with the lan pcs. However, I am aconcerned that remote access over https to the server will not be possible or easy to acheive without hardcore linux iptables knowledge. Presumably the router would need port forwarding but I dont think it has it.

If I use setup one how difficult is it to setup forthe goals outlined above? Where does Router dhcp come into it - if at all?

I have about 2 days to do this starting in 12 hrs. I know I should never have agreed to this but hey learning at the coal face is my style......

many thanks slipsy

Hmm... If you're not VERY skilled, you may want to try Clarkconnect -- It should cover everything you need there. I had it running similar to how you described number 1 for my home network. The Clarkconnect box was a 200Mhz machine, running as a firewall/gateway/web/ftp/pop server. It also forwarded SSH to an internal Mandrake 9.1 server. The nice thing about it is that it's pretty simple to get up and running the stuff I mentioned as well as some others like Print & File services via Samba. It also does DNS caching so all the workstations would just point to the ClarkConnect box as their primary DNS server & it would resolve from it's configured DNS entries. Snort is pre-configured and built in with some MRTG graphs to monitor usage & uptime. Also has DHCP, Apache Web server, Postfix, MySQL, Squid, and Privoxy. I've even setup Postnuke, Envolution, and Cacti on such a machine.

Of course, you may prefer building things from source and such to get things precisely the way you like.. in that case, just about any distro will do.. But, If you want something that will do everything you need and is designed specifically for that function, I highly recommend you check out Clarkconnect

Good luck with your project!

I like setup number 1. Iptables gives you plenty of options, that frankly, the little home/soho devices do not. If you are NOT very skilled, this is the perfect opportunity to learn the beauty of linux! the ability to perform amazingly robust, complete and granular network services. Stick with it, read the advice here and the tutorials and you will be FAR better off! Let us know if you have any trouble, this is the place.

osfestus
MCSE(2k), MCSE(NT4), MCSA , CCNP, CCNA, A+,CCIE in progress, attending the RHCE Academy program this summer.
(hahahaha, sorry Burke but I had to! My company pays for this crap!)

heheh-- I'm not competing .. Congrats and good luck on the CCIE -- I hear that's a tough one.

You could also consider a SmoothWall to provide your NAT, firewall, and forward the needed services in. Very simple setup, support for most of the DSL modems, hihgly configurable.

setup 1 may require dhcpd...if its not too late