LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 08-06-2002, 02:42 PM   #1
chaste
LQ Newbie
 
Registered: Aug 2002
Posts: 16

Rep: Reputation: 0
Angry I give up!


Ok,

I've tried my own ideas and it's failed miserably - I think I managed to over complicate things. So from the beginning...

I have an ADSL router that is ONLY capable of working with the 192.168.1.0 network.

I have a Linux box with RH7.3 on it two NICS

What I want is to set the linux box up as firewall to my ADSL connection and to ensure that all traffic entering / leaving my network goes through this machine.

I then have two other machines that are running windows and these need to be able to access the internet.

Can someone point me in the right direction regarding topology and routing information. PLEASE!

-Chris
 
Old 08-06-2002, 02:56 PM   #2
5amYan
Member
 
Registered: Apr 2002
Location: The District
Distribution: FreeBSD, OBSD maybe Gentoo and Winblech XP
Posts: 291

Rep: Reputation: 30
Is it a router or a modem?
What is the make and model?
Is your dsl PPPoE?
Do you want the dual homed box outside the router?(not possiible if it's a modem.)
Now if everything inside the adsl router/modem is privately addressed (ie on the 192.168.x.x network) do you need a firewall. These machines aren't reachable from the internet.

Is your router capable of any fw? does it do NAT? Will it proxy?
 
Old 08-06-2002, 03:04 PM   #3
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,676

Rep: Reputation: 218Reputation: 218Reputation: 218
You may do it this way:
Code:
network           ------------ router ---------- ADSL
(Windows machines)  192.168.2.1        192.168.1.1
                     (eth1)               (eth0)
Small explanation:
* Network of Windows machines is using 192.168.2.x adresses.
* RH machine has two nics. One, connected to Windows machines is 192.168.2.1. The second one, connected to ADSL is 192.168.1.0.
* RH has ipchains or iptables masqerade installed.
 
Old 08-06-2002, 04:10 PM   #4
chaste
LQ Newbie
 
Registered: Aug 2002
Posts: 16

Original Poster
Rep: Reputation: 0
Guys,

Thanks. SamYan first...

It's a ZyXEL Prestige 600 Router

I THINK my dsl is PPPoE

My original thoughts were for a dual homed box.

No the oruter can do FW. It does do NAT and No I don't think it will proxy.

Mara.

My intial implementation was along those lines. I had 2 nics one addressed as 192.168.67.1 (eth1) and the other 192.168.1.2 (eth0)
The router is 192.168.1.1
I had Ip forwarding turned on
I had the default gateway of the windows machines set to 192.168.67.1
Whilst the Linux box was quite happy to browse the web the windoze machines weren't.

I tried changing the subnet mask on both the router and eth0 to be 255.255.0.0 this had the effect that I could see outbound (from the win machines) IP packets (ethereal) on the eth0 network but no packets were being returned - I was testing using ping.

I would like to get this working as eventually I would like to host an internet visible server outside of my protected windoze network.
 
Old 08-06-2002, 10:01 PM   #5
neo77777
LQ Addict
 
Registered: Dec 2001
Location: Brooklyn, NY
Distribution: *NIX
Posts: 3,704

Rep: Reputation: 56
Is it a router or ADSL modem? I have a couple of these - they are ADSL modems. You can turn your linux box into a hardware firewall with smoothwall
http://www.smoothwall.org/community/home/
 
Old 08-07-2002, 01:04 AM   #6
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,676

Rep: Reputation: 218Reputation: 218Reputation: 218
The main part of the problem is, I think, that the ADSL router has NAT, but only for 192.168.1.x. It may not mask other IPs. So you can 2 ways:
1) eth0 = 192.168.1.1, eth1 = 192.168.1.2, Windows boxes - other 192.168.1.x IPs. In this situaltion you need to set up route carefully.
2) Something easier(?) to configure - NAT on RH box. In this case you'll have 2 NATs, but it's OK. You can get one of simple NAT scripts from groups.google.com (you'll need a firewall, most scripts have both NAT and firewall).
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
I give up! futurist Mandriva 3 09-05-2005 02:59 PM
What if I were to give up? pterandon Linux - Wireless Networking 1 04-19-2005 01:37 PM
No one can give me my [d] Forced2Morph Linux - Newbie 9 10-22-2004 06:05 PM
I give up LinuxSeeker Linux - General 8 02-12-2004 10:31 PM
I Give Up ixion Linux - General 11 02-17-2003 06:08 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 10:15 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration