PDA

View Full Version : Special case of routing module needed!

woosting
2005-05-07, 06:09 AM CDT
I have a mid/low end system (P3-700 Mhz + 500MB RAM) with linux installed (FC3 but can switch to others if needed).

I need to build a router from it, but not a dedicated router (like smoothwall etc.). I want to preserve the linux functionality as a workstation (install small software like TinyFugue, Mutt, a web-server etc.).

I used google allot and managed to use my FC3 system as a DHCPd server, but I need a decent firewall as well to make the network behind it "safe". I found some information about IP-tables but I am still too much of a niewbie to manage all that (was REALLY happy when I got DHCPd to work).

Anyway in short:
I need a module that has the functionality of smoothwall etc. (user-webinterface etc.) but still preserve normal linux usage as a workstation. Is there any? and if not is someone willing to support me (intensely) while I learn to use IP-tables or other software needed to get to my end goal?

I hope some of you guru's is willing to help me, since I would really like to learn more about linux system-administration (read some beginners boocs of academic service, but I need some more practical experience). Thx!
rsimhamb
2005-05-07, 08:26 AM CDT
Try firehol : http://firehol.sourceforge.net

It is very easy to configure, and does not require you to dedicate a computer for firewalling.
woosting
2005-05-07, 10:22 AM CDT
Seems good indeed, I'll check it it out.

So is DHCPd and Firehol enough?
Any alternative idea's?
rsimhamb
2005-05-07, 02:59 PM CDT
I am using FireHol on a comcast connection...No issues yet. FireHol is just an iptables script generator.
woosting
2005-05-09, 01:54 AM CDT
I am using FireHol on a comcast connection...No issues yet. FireHol is just an iptables script generator.
Yeah so it seems, it should be a nice starting point for newbies like I am. I will try it out as soon as I find the time!

Any other solutions, like real packages (I would like to have some nice web-interface / do some monitoring/traffick-tracking as well, but maybe I want too much ;) )
rsimhamb
2005-05-09, 10:18 PM CDT
try mrtg or rrdtool, available @

http://people.ee.ethz.ch/~oetiker/webtools/mrtg/

and

http://people.ee.ethz.ch/~oetiker/webtools/rrdtool/

respectively.
w5set
2005-05-09, 11:08 PM CDT
woosting--I like your sig

There are 10 kinds of people: those who understand binary code, and those that do not!

took a second, but then fell out of my chair!--hi--hi good one.....
woosting
2005-05-11, 02:12 PM CDT
Thx all for answering (I really like the linux community, I hope I will be able to help newbies one day)!

I will pick this problem up this weekend, and take a look @ your suggestions rsimhamb!
I took a quick glance at firehol and it seems nice (had no time to really try it though). I will take a look at the others too. I will post my findings (and probably problems) as soon as I try it all out!

woosting--I like your sig

There are 10 kinds of people: those who understand binary code, and those that do not!

took a second, but then fell out of my chair!--hi--hi good one.....
;) Thx (stole it from someone else though to be honoust)
woosting
2005-06-03, 05:39 AM CDT
I finally found a nice free web-interface for all my needs:

http://www.webmin.com/

and a nice theoretical overview for the newbie:

http://www.linuxquestions.org/questions/newreply.php?s=&action=newreply&threadid=320978