LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 07-11-2003, 10:06 AM   #1
wiredX
Member
 
Registered: Jul 2003
Distribution: Redhat 8.0
Posts: 38

Rep: Reputation: 15
running servers with DHCP???


hello

First -heres the setting

I have 4 machines

3 machines run windows and only one machine run linux (Redhat 9.0).The linux machine runs samba,ftp and ssh.(I also use it as a desktop machine).All of these machines are on DSL connection with Dynamic IP address.

I find it very scary to run my ftp because it was intended for the certain subnets.

How can I use my servers in a more secure way even though I don,t have static IP?And with samba How do I make it possible for people in my house to browse my shares on linux?

Thnx in Advance
 
Old 07-11-2003, 09:51 PM   #2
german
Member
 
Registered: Jul 2003
Location: Toronto, Canada
Distribution: Debian etch, Gentoo
Posts: 312

Rep: Reputation: 30
Hi,

You didn't really say what your network topology is, but I'm assuming that you have a DSL modem, and 4 computers all plugged into a hub or switch, and there's no router.

I posted in Linux Software (I think, or newbie) about how to set up your smb.conf file, there's an example one there that should not need much tweeking for your setup. If you want to secure your network using the hardware you have, you should buy a second NIC for the Linux box, and configure iptables and IP masquerading on it... there are a bunch of example scripts floating around this forum. Anyway basically once you have the second NIC installed, set up the connection like this:


__________
| DSL Modem |
----------------
____|_____
| Redhat 9 |
----------------
____|______
| Hub/Switch |
------------------

then the rest of the puters off the hub. Configure iptables to only allow ftp, ssh and whatever from your internal LAN IP range. DHCP and PPPoE should not be a problem, but I've only set up DSL on OpenBSD. Also you could run dhcpd on the internal interface of the Linux box so that you can essentially plug any computer into the network and have internet access for it.

HTH, if you're more specific with your problems it's easier to give you specific advice.

Ben.
 
Old 07-12-2003, 08:52 PM   #3
jaiksihan77
LQ Newbie
 
Registered: Jul 2003
Posts: 1

Rep: Reputation: 0
DHCP with linux and file sharing for linux server and windows client

DHCP with linux and file sharing for linux server and windows client
 
Old 07-14-2003, 03:35 AM   #4
wiredX
Member
 
Registered: Jul 2003
Distribution: Redhat 8.0
Posts: 38

Original Poster
Rep: Reputation: 15
I forgot to mention I use a DSL router not Modem.

And again is it possible to secure it(my servers) without any masquarading?
 
Old 07-14-2003, 04:01 AM   #5
german
Member
 
Registered: Jul 2003
Location: Toronto, Canada
Distribution: Debian etch, Gentoo
Posts: 312

Rep: Reputation: 30
Not without securing each individual box. And with 3 winxp boxen you are not going to have an easy, or satisfying, ride. I would highly recommend real electrical separation from the internet, with a non-M$ OS for firewalling (http://www.openbsd.org).

B.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Two DHCP Servers mesh2005 Linux - Networking 3 10-16-2005 05:26 AM
DHCP problems - multiple DHCP servers sat86 Linux - Networking 4 10-02-2005 05:43 AM
2 DHCP servers on a network olefemmy Linux - Networking 2 11-19-2004 10:27 AM
Finding out DHCP Servers warned Linux - Networking 2 04-15-2004 02:44 AM
Changing DHCP servers albean Linux - Networking 1 12-10-2002 12:39 PM


All times are GMT -5. The time now is 07:13 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration