firewall ??
Timothy Payne
tim at tmpco.com
Thu Jul 8 13:45:23 UTC 2004
You might want to check out http://www.freesco.org/ It's very simple to
setup ( I need that ) free, and will run on one floppy 386 w/6 mb of
ram, and 2 nics.
A big THANK YOU to all you smart guys out there giving great replies to
our "stupid" questions. I started with RH 5.1 years ago and would see
and get nasty replies to simple questions, in the short time I've been
on this list I haven't see that.
Tim...
On Thu, 2004-07-08 at 02:50, Nigel Wade wrote:
> Bobby Knueven wrote:
> > I am getting ready to build my first firewall, using Fedora Core 2. I
> > have read a lot of tutorials, but all of them are for firewall with NAT
> > enabled. What do I do if I don't need NAT. For example, I have a network
> > with 50 Class B Ip's we use a default gateway supplied by our University
> > and DHCP to distribute the IP's. So the only thing I really need to do
> > is firewall my 50 IP's from the outside world while continuing to use
> > our given IP's and gateway. Any thoughts on how to set this up would be
> > appreciated.
> >
> > One more question, when connecting the outgoing NIC from the firewall to
> > the rest of the network do I need to use a crossover cable or will I
> > specify that the NIC is supposed to be outgoing in firewall configuration?
> >
> > Thanks for the help.
> >
> > Bobby K
> >
> >
>
> If you are putting a firewall between your subnet and the default gateway
> for your subnet the simplest setup is a bridging firewall. It's not as
> trivial to configure as a normal or routing firewall. I've only actually
> done this with RH7.3, but I don't think there are any fundamental differences.
>
> As a bridging firewall you can set it up to inspect packets as they pass
> through the bridge and reject or drop those it doesn't like. Otherwise it
> operates just like a bridge, and is effectively transparent to the rest of
> the network. If you want, you can give an IP to the bridge so that you can
> access it from other hosts, but that's not necessary if you maintain it from
> the console.
>
> --
> Nigel Wade, System Administrator, Space Plasma Physics Group,
> University of Leicester, Leicester, LE1 7RH, UK
> E-mail : nmw at ion.le.ac.uk
> Phone : +44 (0)116 2523548, Fax : +44 (0)116 2523555
>
More information about the fedora-list
mailing list