Joel Lansden wrote:
> I have a DSL Circuit through my phone company (Bellsouth) - they assign the
> IP's by DHCP. I want to be able to share this circuit for all the servers &
> clients on my network as the default. I have been told that Linux will do
> this, but I need a jumping-off point. Can anybody help?
What kind of DSL modem do you have? The external modems (that connect
to a PC through 10BaseT cable) should work just fine.
You'll want to get a Red Hat linux CD, and use it to install Linux on a
spare PC. The requirements for this PC depend on what else (aside from
firewalling) you plan to use it for. If it's just a firewall, the
requirements are really low. You'll want two network cards.
Download my init.firewall script from ftp://duke.eburg.com/pub/linux/.
Copy the script into the directory "/etc/rc.d/init.d" on the Linux
server. Make the script executable like "chmod +x
/etc/rc.d/init.d/init.firewall".
Edit that script with an editor you feel comfortable using (have you
used Linux before? "joe" is a fairly simple editor), and set the
variables near the top appropriately. That is, "PARANOID_DEV" should be
set to the name of the ethernet interface that the DSL modem is
connected to, like "PARANOID_DEV=eth1". Set "PARANOIA_ALLOWS_PORTS" to
the port numbers of the services you want open to the public. If none,
set it like PARANOIA_ALLOWS_PORTS="". Then, set MASQ_NET to the network
address of the machines in your private network.
I wrote this script to make it as easy as possible to make Linux
installations secure (by shutting off all unesessary access on public
interfaces) and set up forwarding/masquerading. Let me know if it's
still confusing.
Run "ntsysv", scroll down to the "firewall" service, and press the space
bar to turn the script on.
Run "/etc/rc.d/init.d/init.firewall start", and see what it tells you.
MSG
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.