LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 05-13-2006, 07:16 PM   #1
drcoco
LQ Newbie
 
Registered: May 2006
Posts: 2

Rep: Reputation: 0
I need to setup a Linux router for my 2 public subnets


Hi guys,

I'm getting rid of my Internet Security Advisor, and he is in charge of the router system. I know he is going to take the router software with him, for he compiled it. Now, I've been reading on how to setup a router to give access to the servers in my network to the outside world.

I already have a Firebox ready to go in place, but before I can bring it live, I need my Internet connection to be up and running.

My setup goes like this:

Nic1: IP: 196.40.69.190
Gateway: 196.40.69.189

Nic2: IP1: 200.122.137.241
Mask: 255.255.255.248
Gateway: 196.40.69.190 (Ip on Nic 1)

IP2: 200.122.137.129
Mask: 255.255.255.240
Gateway: 196.40.69.190 (Ip on Nic 1)

Again, both nets on Nic2 have to be able to hit the internet and people from the Internet need to be able to access my network back.

I don't know if any of you could give me some tips or hints in order to be able to achieve this project.

I have both Fedora or Red Hat 8.0 ready to be loaded on a machine. But, if any of you think I could use a different OS, any suggestion will be highly appreciated.

Thanks again for all the help.
 
Old 05-14-2006, 07:00 AM   #2
fotoguy
Senior Member
 
Registered: Mar 2003
Location: Brisbane Queensland Australia
Distribution: KirraMail Live Email Server
Posts: 1,276

Rep: Reputation: 61
There are 2 great distros that i have used that will do what you want. IPCOP and Smoothwall, my personal preference is IPCOP. a small dedicated firewall distro that install from a disc, very easy to follow the installation instructions you will have it up and running in under an hour.

It is a round 40 MB's or so iso image to download and has a web-based interface for easy administration. You can then forward traffic from the outside world to your servers, just check out the website for more info.

www.ipcop.org

Last edited by fotoguy; 05-14-2006 at 07:01 AM.
 
Old 05-14-2006, 08:31 AM   #3
archtoad6
Senior Member
 
Registered: Oct 2004
Location: Houston, TX (usa)
Distribution: MEPIS, Debian, Knoppix,
Posts: 4,727
Blog Entries: 15

Rep: Reputation: 230Reputation: 230Reputation: 230
Good post, lots of detail. But what is your goal, & what is your actual problem?

Is your network up? If those are your real IP's, probably not:
  • 196.40.69.190
  • 200.122.137.241
  • 200.122.137.129
all return
Code:
The following error was encountered: 

Connection Failed 

The system returned: 

    (110) Connection timed out

 The remote host or network may be down. Please try the request again.
from squid/2.5.STABLE12 -- I'm running SmoothWall 2.0 & considering moving to IPCop.


You also need to look at:and fix you lack of reverse IP listings. Again, I am assuming those are your real IP's.


Some Guesses
196.40.69.188/30 is your connection to your ISP
200.122.137.240/28 & 200.122.137.128/28 are the "2 public subnets" referred to in your title.

More Details
What is a "Firebox"? Is it one of these: http://www.google.com/linux?q=Firebox+router?
If so, are you stuck with / committed to it? -- I.E., is there any point in pointing you to IPCop?
 
Old 05-15-2006, 10:46 AM   #4
drcoco
LQ Newbie
 
Registered: May 2006
Posts: 2

Original Poster
Rep: Reputation: 0
thanks for the update

Hi guys,

My goal and actual problem are quite simple. I need to remove my actual router, for the guy that is giving it maintenance and support is leaving, and of course, taking his linux compilation with him. My goal is to be able to setup a simple linux machine to perform the routing from the Internet to the public subnets I have.

I think you should be able to connect to IP 196.40.69.190 for I just tried from an external server.

The reverse dns problem is being fixed as we speak. I sent the request to my ips and he's taking care of it.

My subnets are correctly as you described.

A Firebox is a stand alone firewall solution. You can search for it as Watchguard Firebox and check the specs on it. It's only a firewall solution. No router or anything similar loaded on that machine. I've been doing some serious research and the firewall won't handle router functions. That's the reason why I need a simple routing solution to put in front of the firewall.

Let me know what you guys think. Like I said, the only thing I need is a firewall. Nothing else.

Thanks for your help,

Francisco
 
Old 05-17-2006, 09:36 PM   #5
fotoguy
Senior Member
 
Registered: Mar 2003
Location: Brisbane Queensland Australia
Distribution: KirraMail Live Email Server
Posts: 1,276

Rep: Reputation: 61
Quote:
Originally Posted by drcoco
Hi guys,

My goal and actual problem are quite simple. I need to remove my actual router, for the guy that is giving it maintenance and support is leaving, and of course, taking his linux compilation with him. My goal is to be able to setup a simple linux machine to perform the routing from the Internet to the public subnets I have.

I think you should be able to connect to IP 196.40.69.190 for I just tried from an external server.

The reverse dns problem is being fixed as we speak. I sent the request to my ips and he's taking care of it.

My subnets are correctly as you described.

A Firebox is a stand alone firewall solution. You can search for it as Watchguard Firebox and check the specs on it. It's only a firewall solution. No router or anything similar loaded on that machine. I've been doing some serious research and the firewall won't handle router functions. That's the reason why I need a simple routing solution to put in front of the firewall.

Let me know what you guys think. Like I said, the only thing I need is a firewall. Nothing else.

Thanks for your help,
Francisco

Well my suggestion is both a firewall and a router so it should be close to suit your needs, you can remove your other firewall and just use the IPCOP box instead, an all in one package. I ran ipcop for a number of years and ran a web and mail server on my network and it ran flawlessly.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Upgrading to 11g router, want to use old 11a router for "public" access pnellesen Linux - Wireless Networking 3 05-06-2006 09:02 AM
How can I setup a Linux firewall router for my public class C IP block? abefroman Linux - Networking 9 09-06-2005 02:32 PM
linux as3 working as router with 2 public IPs rajeshdogra Linux - Networking 1 07-18-2005 07:53 AM
Linux as a router but for multiple public IPs gnirtS Linux - Networking 8 03-07-2005 03:08 PM
Static Public IP on Linux gateway behind ADSL router Eivissa Linux - Networking 2 11-16-2004 07:10 AM


All times are GMT -5. The time now is 06:27 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration