Hey,

I'm looking for a linux distro that pretty well has all the iptables / modules / ect setup to be a router. If possible(if it exists) I'd love to find a distro that install fairly quickly and is pretty well setup or easy to setup so all I have to do is setup the ip tables and be done with it. Or setup my interfaces and let-er go.

I need a simple box that can route 2 diffrent subnets of ip blocks to one exteranl IP address.

If anyone knows of anything like this please let me know ! as it would save me a lot of time, and don't really have a lot of time on my hands as the dead line is closing in and I really don't want to buy a cisco router for such a simple / small job.

If you don't want to buy a cisco then go for free cisco freesco

Regards

maybe smoothwall would also be something for you.
have a look at their website: smoothwall.org

This one is awesome

http://www.fli4l.de/
they have been also at the Linux-Days Event.

and another

www.redwall-firewall.com

IPCOP ipcop.org

m0n0wall and pfSense are good however are both BSD-based and not linux.

if you want to make dedicated ( old machine ) firewall go for ipcop , i have been using ipcop for almost 2 years, very stable and easy web interface

cheers 2 cent from me

Well, I was planning on doing this too. I know you said Linux but it is pretty close. You may want to try OpenBSD. It is really small and will run on a old machine and do fine. I installed OpenBSD to play with on a old 400MHz rig with 128MBs of ram. It only used about 30MBs.

As I said, it is not Linux but it is really secure.

Hey, my firwalls are already IP cop boxes but they come after the router I need.

Unless if anyone knows if IP cop can route this ? or route 2 diffrent subnets.

My network setup is as follows:

Hey,

Okay so here is my setup and I'm desprite for a router to be put in place to get it to work.

My ISP assigned me the following setup:

Interconnection: x.x.118.240
Our Router IP: x.x.118.241
Your ISP router: x.x.118.242
Subnet: 255.255.255.252


Ip Block:
x.x.43.33 to x.x.43.62
Subnet: 255.255.255.224

Now here is how the network is setup

Internet
|
|eth0
Router i'm trying to setup
|eth1
|
|-------Switch-------|
....|.........|..........|
....|.........|..........|__________1 computer
....|.........|
....|.........|
Firewall1 Firewall 2
....|...........|___Nat 192.168.90.x
....|
NAT 192.168.80.x

Now the problem is to get onto the internet you have to setup the router with:

eth0
IP: x.x.118.242
Subnet: 255.255.255.252
Gateway: x.x.118.241

eth1
IP: x.x.43.33
Subnet: 255.255.255.224
Gateway: x.x.118.242

The problem is my router can't negotiate the 2 subnets to get out onto the internet. After the router it hits a switch where each firewall will pickup 1 IP from the block, and the 3rd computer not behind the firewall is a kind of like lazy dmz computer or one that can have its own IP from the block hard coded into the systems TCP/IP

If anyone could help me on how to set this up so this will work if its possible that would be fantastic !, the more detailed the better.

The Freesco box only need to route as my servers do the DHCP. The Freesco box needs to be able to route the external ip on eth0 to eth1, and be able to route the 2 firewalls that will be grabing an ip from the ip block as well so each subnet is going out on its own IP.

I have yet to setup the Freesco box as I'm not sure if this can be done with it or not yet so i don't have a report.txt yet.

If it can be done please let me know or if someone coudl give me a ruff idea of what the routing table would look like in freesco let me know.

Thanks.

hm, I think you don't need a special installation for that...
what happens, if you tell the two 'lan' network cards to route everything to the 'wan' one?

Acutally found a distro that did a fantastic job of being just a router with some other options if needed like DHCP and such, but the distro works like a charm. It comes with all the routing protocals, and the dynamic settings for all the routing protocals pretty well will route most things as it routed my 2 nics like a charm right out of the box. Just had to setup the 2 nics. The first one with the extrenal ip address, and the 2nd one with my IP block.

Anyhow the distro is Vyatta and I also found Freesco which probably would of done it as well, but Vyatta worked like a charm !