| View previous topic :: View next topic |
| Author |
Message |
lizardloop
Apprentice
Joined: 16 Mar 2003
Posts: 278
|
 Posted: Tue Aug 19, 2003 7:45 am Post subject: NAT server |
 |
|
The NAT server in my house is currently a celeron 600mhz running windows xp, I want to replace this with a pentium-mmx 200mhz running gentoo.
I've done a little searching around and found some info on this but I thought I would ask to get a little clarification.
1) What do I need compiled into the kernel to do the NAT?
2) What do I need to do to get the NAT working?
3) I also need to get MSN file transfers working, anyone have any example iptables that get MSN file transfer working?
4) I want to be able to control the machine remotely ussing SSH, what do I need in order to do that?
5) Are there any really good guides on writing iptables as all I've found so far has been a little confusing?
Sorry for asking so many questions but I really want to get rid of that stinking windows xp machine. |
|
| Back to top |
|
 |
smiler.se
Tux's lil' helper
Joined: 18 Aug 2003
Posts: 115
Location: Sweden - Europe - Earth
|
| Posted: Tue Aug 19, 2003 8:38 am Post subject: |
|
|
There is the Offical NAT-howto but it might seem abit hard to understand but it should get you started.
You can have a look in my firewall-script (made as an gentoo init-script) that is fully working (altought not updated very often) at
http://lanil.mine.nu/~smiler/misc/firewall
_________________
Christian
Sig out of date. Please upgrade to a newer one. |
|
| Back to top |
|
|
senectus
Guru
Joined: 17 Jul 2003
Posts: 534
|
|
| Back to top |
|
|
madchaz
l33t
Joined: 01 Jul 2003
Posts: 993
Location: Quebec, Canada
|
| Posted: Tue Aug 19, 2003 10:37 am Post subject: |
|
|
you can look at shorewall. it's in portage and there website is very well made
you might also want to have a look at www.smoothwall.org
it's redhat based and does a wonderfull job as a router. as a nice web interface and can be loged on using ssh (you have to enable that in the interface first). I'm using the beta for version 2 and it's awesome
that might be a better alternative then gentoo on a P1 200Mhz. not that gentoo won't run quite well on it, just will take a LOOOOOOONG time to install, lol.
as for what you need to have in the kernel, under networking, there is an option that says it replaces ipchain, that's what you need, as well as some things in the option that will apear when you select that.
_________________
Someone asked me once if I suffered from mental illness. I told him I enjoyed every second of it.
www.madchaz.com A small candle of a website. As my lab specs on it. |
|
| Back to top |
|
|
To
Veteran
Joined: 12 Apr 2003
Posts: 1145
Location: Coimbra, Portugal
|
| Posted: Tue Aug 19, 2003 9:50 pm Post subject: |
|
|
Shorewall may be what you're looking for. You have well detailed guide on the web site, like it was allready refered. | Code: | | emerge -s shorewall |
Tó
_________________
------------------------------------------------
Linux Gandalf 3.2.35-grsec
Gentoo Base System version 2.2
------------------------------------------------ |
|
| Back to top |
|
|
lizardloop
Apprentice
Joined: 16 Mar 2003
Posts: 278
|
| Posted: Tue Aug 19, 2003 10:57 pm Post subject: |
|
|
| thanks for all your help, as I'm having trouble getting gentoo to install on the machine I'll try smoothwall, but the only condition thats been placed on me is that MSN file transfers must work otherwise I have to leave the server as windows xp (which i really dont want to do). So can anyone tell me whether they have got MSN file transfers working with smoothwall or any kind of linux NAT router. |
|
| Back to top |
|
|
taskara
Advocate
Joined: 10 Apr 2002
Posts: 3763
Location: Australia
|
| Posted: Wed Aug 20, 2003 12:48 am Post subject: |
|
|
I like IPCOP.. works well.. good firewalling support, external aliases, external access, port forward, packit sniffing, dhcp, dyndns support, etc...
_________________
Kororaa install method - have Gentoo up and running quickly and easily, fully automated with an installer! |
|
| Back to top |
|
|
think4urs11
Bodhisattva
Joined: 25 Jun 2003
Posts: 6659
Location: above the cloud
|
| Posted: Wed Aug 20, 2003 2:16 pm Post subject: |
|
|
Hi lizardloop!
Maybe this article helps out...
http://support.microsoft.com/default.aspx?scid=kb;en-us;278887
Seems to as if MSN file transfer AND NAT can't work together.
Don't nail me on this but i think you can use dante as winsock proxy.
HTH
T.
_________________
Nothing is secure / Security is always a trade-off with usability / Do not assume anything / Trust no-one, nothing / Paranoia is your friend / Think for yourself |
|
| Back to top |
|
|
To
Veteran
Joined: 12 Apr 2003
Posts: 1145
Location: Coimbra, Portugal
|
| Posted: Wed Aug 20, 2003 2:20 pm Post subject: |
|
|
The new MSN is a pain. Not to allow but to block. We tryed to block it on my university but the new one 6.0, makes a connection to microsoft and then msg back the router for a NAT port, really crazy thing. If you have any problems to allow it, clients may try the new version.
Tó
_________________
------------------------------------------------
Linux Gandalf 3.2.35-grsec
Gentoo Base System version 2.2
------------------------------------------------ |
|
| Back to top |
|
|
lizardloop
Apprentice
Joined: 16 Mar 2003
Posts: 278
|
|
| Back to top |
|
|
senectus
Guru
Joined: 17 Jul 2003
Posts: 534
|
|
| Back to top |
|
|
|
Networking & Security
