swb dsl

Uncle Jim jim at jimani.com
Sat Dec 9 06:32:08 CST 2000 

Hi,

RedHat 5.2 uses ipfwadm instead of ipchains but it will still work.  I found
enough info in one of the files in /usr/doc/HOWTO of the RH 5.2 distribution
to make ipfwadm work.  I don't remember that I had to build a kernel to make
it work, either.  There are about five additional modules you can load (insmod)
to support FTP and Doom and some other apps.  I only had two or three ipfwadm
commands and I put them in /etc/rc.d/rc.local.  The 486 will have no problem
handling your load.

On Fri, Dec 08, 2000 at 05:32:31PM -0600, James Hall wrote:
> I used  RedHat 6.2 to do exactly what you just described, and I don't think that I used one 
actual RedHat "power tool".  Therefore I believe that 5.2 should be perfectly adequate.  (Although, 
it does require that you rebuild your kernel with certain routing options enabled.) You can set up 
your ethernet card with ifconfig, your firewall and IP masqing with IP-chains, and a 486 is perfect 
for the job (as long as you're not overloading it with packets.)  I pretty much just used the 
how-to for IP-Chains that I found by searching on Google.  (I can't quite remember the link and 
it's been a very long time ago since I set that up.)  I did however modify it's design into one 
that fit my network.
> 
> Essentially you need to write a config script that sets up IP Chains every time you boot the 
server.  (The logical chains reside in memory only, and disappear when you power off your server.)  
I placed this in my /etc/rc.d/rc3.d directory.  The way you set up the chains is where the artistry 
comes in.  This is the hardest part of setting up this type of a Linux firewall.  This is the 
logical structure of my chains, for the most part...
> On Fri, 8 Dec 2000, J.J. Kramer wrote:
> 
> > Has anyone setup a connection with SWBELL using DSL, IP-masq, and a
> > firewall.  I have an older PC (486) running Red Hat 5.2 and want to use
> > it primarily for my firewall and IP-masq.
> >
> > For ease of configuration should I go to a new version of Red Hat or
> > some other install?
> >
> > Thanks,
> >
> > J.J.
> >

-- 

                             __________
                            /___  ____/ _____    ___      ___
                               / /     /_  _/   /   |    /   |
                              / /       / /    / /| |   / /| |
                        __   / /       / /    / / | | / /  | |
                         _/ /      _/ /_   / /  | |/ /   | |
                         ___/      /____/  /_/   |___/    |_|

More information about the Kclug mailing list