LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-03-2003, 09:34 PM   #1
awbassett1
LQ Newbie
 
Registered: Jun 2003
Posts: 4

Rep: Reputation: 0
Firewall/Router, building my own server, plz review list


I have been experimenting with linux-distros that act as routers and firewalls. The best one I've found is clarkconnect (supports scsi), but I'd like to build my own. I downloaded the Mandrake 9.1 isos, and started compiling a list of things I'd need. Basically, My setup is a server with 2 NIC's..one to the outside world and one to my network (10.0.0.*). I want the server to act as a firewall and route, webserv..etc..these are the packages I've come up with so far. I will need to run NAT obviously, as I only have one ip.

iptables - i can do port forwarding and open up incoming ports right?
ipmasquerading (do i need both iptables and ipmasquerading?)
apache
webalizer/awstats--any recommendations to which one??
webmin
SSH
ProFTP
Samba

I'm also going to be running a netware 6.5 server to do: DNS/DHCP
iFolder
Netstorage
iManager
iPrint

And then I'm going to build a w2k server to run my webcam, i use a program called webcamxp (for those of you who dont use it, you should, its awesome) to host my cam.

Is Mandrake 9.1 my best bet in this endeavor? Please let me know, I appreciate everyone's help. Thanks in advance!
 
Old 06-03-2003, 09:40 PM   #2
awbassett1
LQ Newbie
 
Registered: Jun 2003
Posts: 4

Original Poster
Rep: Reputation: 0
Just thought I'd add..I'm also running groupwise 6.5 on the netware box....
 
Old 06-03-2003, 10:32 PM   #3
Robert0380
LQ Guru
 
Registered: Apr 2002
Location: Atlanta
Distribution: Gentoo
Posts: 1,280

Rep: Reputation: 47
no you dont need ipmasquerading if you have iptables installed, to nat with iptables u do something like the following:

iptables -A POSTROUTING -t nat -s $LAN -d ! $LAN -j SNAT --to $WAN_IP

where $LAN = 10.0.0.0/24, ! $LAN is the internet in your case and $WAN_IP is the ipaddress given to you by your isp. If your ip isnt static, then you simply change the end to:

-j MASQUERADE everything before the -j can stay the same.
 
Old 06-03-2003, 10:35 PM   #4
Robert0380
LQ Guru
 
Registered: Apr 2002
Location: Atlanta
Distribution: Gentoo
Posts: 1,280

Rep: Reputation: 47
also i'd recommend against straight ftp, i'd make all file transfers and remote logins secure by doing it all over ssh, if you have sshd running you can use scp (windows machines can use WinSCP) or sftp (windows machines can use the SSH option when doing FTP and connect to port 22 on your FTP server).
 
Old 06-03-2003, 11:16 PM   #5
hornet
LQ Newbie
 
Registered: May 2003
Posts: 27

Rep: Reputation: 15
you may also want sql databases, mysql works a treat
 
Old 06-05-2003, 03:17 PM   #6
awbassett1
LQ Newbie
 
Registered: Jun 2003
Posts: 4

Original Poster
Rep: Reputation: 0
I dont have any need for SQL, but about ftp.. I decided not to even use it at all. I can use iFolder instead. With concerns about being hacked, who knows how to hack any novell products anyways....I have been reading about iptables, its pretty confusing. Does anyone have any links to basic guides/how-to's.. I'm a netware person, im new to the linux world, this stuff is somewhat confusing to me. Thanks again
 
Old 06-06-2003, 05:23 AM   #7
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594
I have been reading about iptables, its pretty confusing. Does anyone have any links to basic guides/how-to's

Check out the LQ FAQ: Security references, post #2.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Building Firewall/Router in Slackware darreng23 Linux - Networking 1 05-03-2005 05:51 AM
Building an OpenBSD 3.6 firewall/router... Erik Thorsson *BSD 6 02-11-2005 03:27 PM
plz write the sources.list and yum.conf fot this server shams Fedora 1 11-21-2004 02:36 PM
Building up a router-firewall on Slackware 9.1 ZeiP Linux - Networking 1 02-11-2004 06:09 PM
Building router/firewall from a computer apberzerk Linux - Hardware 10 01-13-2004 11:19 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:22 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration