LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 08-03-2007, 07:14 AM   #1
davimint
Member
 
Registered: Jan 2006
Distribution: Slackware Current
Posts: 272

Rep: Reputation: 33
address question in ipcop


I am a basic newbie to networking. (tying to learn)

I've installed ipcop on an old 733mhz machine and I can
ping the red network ( example www.yahoo.com ) but I can not ping my test machine.

Setup is as follows

cable modem > server > test pc

Server has two network interface cards

Red eth1
Inet Address 68.63.228.182
Bcast 255.255.255.255
Mask 255.255.255.0

Green eth0
Inet Address 192.168.0.1
Bcast 192.168.1.255
Mask 255.255.255.0

The test pc shows this

Inet Address 192.168.1.155
Bcast 192.168.1.255
mask 255.255.255.0

I'm using slackware on the test machine.
eth0 is set to DHCP in slackware

I can't ping anything from the test machine

thanks
 
Old 08-03-2007, 08:35 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
well the green interface is listed as having a different broadcast address to it's ip address... that's screwey... is ipcop serving the DHCP? then it must also be giving out inconsistent leases (192.168.1.0/24) compared to itself (192.168.0.0/24)
 
Old 08-03-2007, 11:16 AM   #3
davimint
Member
 
Registered: Jan 2006
Distribution: Slackware Current
Posts: 272

Original Poster
Rep: Reputation: 33
Well, that's the question of the day.. When I type
setup and go to network configuration for the green
interface it does not give me any options to set
up anything like the red interface. I just wondering
if maybe the green is setup during the install and
can not be changed. I may have goffed it... I'll
reinstall tonight and see what happens...
 
Old 08-04-2007, 05:05 AM   #4
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
Seems a bit odd to front to me. GREEN always has a fixed IP address which is determined by you when you install IPCOP, it can be changed in setup but I dont recommend it.

On a working Cop when you enter setup and select networking it will display your current config (should be GREEN + RED in your case) followed by the settings menu.

Go to Address Settings > Green > OK and check that:

IP Address: 192.168.0.1
Network Mask: 255.255.255.0

Go to DHCP server configuration; it should be enabled (your test PC had to have been passed 192.168.1.155 from somewhere) if it is not enabled all bets are off and more network details are required otherwise proceed as follows:

Start Address 192.168.0.100
End Address 192.168.0.200
Primary DNS 192.168.0.1
Secondary DNS <blank>
Default Lease 60
Max Lease 120
Domain Name Suffix <blank>

Reboot the IPCop box, restart the network on your test PC and you should now be able to ping out from your test PC.
 
Old 08-04-2007, 04:01 PM   #5
davimint
Member
 
Registered: Jan 2006
Distribution: Slackware Current
Posts: 272

Original Poster
Rep: Reputation: 33
Thank you both for posting. I reinstalled and got some of what I wanted accomplished.

I just cant get the "orange/blue/DMZ" or whatever you may call it working at all...

Here's the info from "ifconfig" on the ipcop-server

Code:
root@ipcop:~ # ifconfig  
eth0      Link encap:Ethernet  HWaddr 00:14:BF:57:60:40  
          inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:11339 errors:0 dropped:0 overruns:0 frame:0
          TX packets:11754 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:1693418 (1.6 MB)  TX bytes:8767815 (8.3 MB)
          Interrupt:9 Base address:0xd800 

eth1      Link encap:Ethernet  HWaddr 00:18:F8:0D:30:70  
          inet addr:192.168.2.1  Bcast:192.168.2.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:350 errors:0 dropped:0 overruns:0 frame:0
          TX packets:17 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:107282 (104.7 KB)  TX bytes:5098 (4.9 KB)
          Interrupt:10 Base address:0xd400 

eth2      Link encap:Ethernet  HWaddr 00:18:F8:07:FA:56  
          inet addr:71.226.64.189  Bcast:255.255.255.255  Mask:255.255.255.0
          UP BROADCAST NOTRAILERS RUNNING  MTU:1500  Metric:1
          RX packets:169383 errors:0 dropped:0 overruns:0 frame:0
          TX packets:8245 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:18068469 (17.2 MB)  TX bytes:1400263 (1.3 MB)
          Interrupt:11 Base address:0xd000 

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:462 errors:0 dropped:0 overruns:0 frame:0
          TX packets:462 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:41187 (40.2 KB)  TX bytes:41187 (40.2 KB)

root@ipcop:~ #
eth0 is the "green interface"
Currently it's hooked directly into one PC.

eth1 is the "linksys wrt54gs wireless router" "DMZ"
for testing purposes I've got one pc hardwired into one
of the four wired ports.

eth2 is the cable modem ( that's easy to see )

Could someone point me in the right direction to get my wireless router working. Maybe someone has got this setup already and knows how to setup the "linksys router".

specific doc's, links, or anything...

Thanks....
 
Old 08-05-2007, 04:43 AM   #6
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
By now you should be controlling your IPCop thru the web interface - from a browser on the green network: http://192.168.1.1:81 should bring up the IPCop configuration screen (based on your supplied info).

Go - Services > DHCP Services
Login as admin with the password you selected during installation.

You are now presented with all the interfaces you setup during installation - you should have setup the wireless interface as BLUE. The lifebelt on the bottom Left of the various pages takes you to the pertinent IPCop online help.

For additional help on most issues go to the IPCop Support Forum at http://www.ipcops.com
Quick aside on the linksys wrt54gs router: internet routers cause a lot of grey hairs with IPCop - you've got money invested in it and you want to reuse it now that IPCop is doing the job. I don't know the Linksys but on the Netgear DG834 range I do the following:

1) Reset the router to default configuration (should enable its internal DHCP server).
2) Plug in one PC ONLY to control the router setup.
3) Setup your WAP as required.
4) Disable the routers DHCP server.
5) Set the routers IP address to a value outside of the range that IPCop will hand out on the BLUE DHCP server.
6) Connect it to the IPCop via a LAN port (not the WAN port).
7) Reboot the router (power off/on).

Suggestions for your specific case:
Linksys wrt54gs address: 192.168.2.254
BLUE DHCP start address: 192.168.2.50
BLUE DHCP end address: 192.168.2.100
I see you have started another thread on the router issue where you talk about the ORANGE interface. Based on the info you supplied in this thread you can have either a GREEN+RED+BLUE or a GREEN+RED+ORANGE configuration (3 NICs) the DHCP Server page will tell you which you have. You will not get the Linksys to work in the ORANGE config.

Last edited by mickza; 08-05-2007 at 05:17 AM.
 
Old 08-05-2007, 04:21 PM   #7
davimint
Member
 
Registered: Jan 2006
Distribution: Slackware Current
Posts: 272

Original Poster
Rep: Reputation: 33
thanks mickza

I've now got my red/blue/green interfaces fixed.

I went to the dhcp-configuration page for ipcop and did the
following.

Checked the ticker to enable the blue interface
It showed IP Address/Netmask: 192.168.2.1/255.255.255.0
I used 192.168.2.50 ( start ) 192.168.2.80 ( end ) addresses
I hit "save" to update

Now, I need to deal with this hair pulling wireless router.

I been wearing the reset button out on this thing trying everything I can and still can not get anything to work. I do have a question about your instructions.

Quote:
6) Connect it to the IPCop via a LAN port (not the WAN port).
WAN, do you mean the "internet" port on my router ?

I've got four "Ethernet" ports and one "Internet" port per the manual.

I would guess the Ethernet ports are LAN "local Area Networt Ports", but is the Internet port considered a "WAN" port.

Thanks AGAIN....

Last edited by davimint; 08-05-2007 at 07:35 PM.
 
Old 08-06-2007, 03:10 AM   #8
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
Hi Davimint

Bear in mind I can't guarantee that you can get the Linksys running as a WAP/hub (haven't been there, didn't get the T-Shirt!!).

Don't worry about the WAN port (in this case it is the internet) you are only interested in the Ethernet ports.
I don't have access to a Linksys wrt54gs but found this guide on the net: http://register.wireless.utoronto.ca/?page=linksys hope it matches your router. (BTW - you have to press the reset button for about 30secs on a Netgear with the power on to reset to default, don't know about the Linksys).

From what I can see the following are the important settings:

Disable any ISP logon stuff (username, password etc - couldn't find it in this guide).
In step 4 enter a rubbish STATIC IP address eg: 192.168.49.49
In step 5 set the local IP address to 192.168.2.254 and DISABLE the DHCP server
Save the settings.

Plug the router into the IPCop via an ethernet port, restart your test PC and hopefully you should be able to ping the outside world - yahoo.com. If you get this far you will now need to play with the IPCop Firewall > DMZ Pinholes submenu to start pinging across the BLUE/GREEN subnets.

I don't know if you will be using the WAP but the following should make initial setup easier:

In step 8 disable the Wireless MAC filter if it isn't disabled by default.
 
Old 08-07-2007, 12:31 AM   #9
davimint
Member
 
Registered: Jan 2006
Distribution: Slackware Current
Posts: 272

Original Poster
Rep: Reputation: 33
Solved

This is one tricky deal...

I've got it working so now I'm going to document this and the
process so it may save someone else a lot less problems if they are a newbie like myself.

The key lies in the firewall's blue access and the DHCP IP/MAC address leases. And yes there's some options and process that need to be done on the routers side but until I play with some more options on this model I don't want to get into that.

This link helped me out more than anything.

http://home.comcast.net/~ds531/IPCOP_FAQ.html#3.2

So, till I get things worked out and organized I'm going to
call it quits.

Thanks to all

David
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Passing outgoing SMTP traffice through IPCop Firewall without tagging IP Address Firehawk335 Linux - Security 3 01-03-2007 01:00 PM
ipcop question Darkangel90 Linux - Security 2 03-05-2006 07:48 PM
Change the IP Address for IpCop KennyChim Linux - General 1 01-18-2006 04:07 PM
ipcop question Codegen Linux - Distributions 9 12-26-2005 04:07 PM
IPCop question from a newbie mdubois Linux - Security 2 05-27-2005 04:37 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 10:31 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration