This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Howto: install firewall...

hi everyone

after spending lot of time trying to get the astaro firewall work properly, i've come
back to find hopefully a answer.

first i'll describe short my hardware configuration wich is:

1x Zyxel Prestige 642R ADSL Router (from now on called router)
1x Compag Presario PIII with 2NIC's wich is firewall (from now on called firewall)
eth0: firewall_int
eth1: firewall_ext
1x Server with Apache, WarFTP and Mercury (from now on called server)
1x Homenet with 3PC's (called pc)

IP Configuration:
------------------------------------------------
router: 192.168.124.1
firewall_ext: 192.168.124.2
firewall_int: 192.168.123.2
server: 192.168.123.10
pc: dhcp (range 192.168.123.200-231)

They are connected as follows (warning: bad ascii art):

[Router]==[firewall_ext/firewall_int]==[Switch]==[Server, PC]

i've configured the router's SUA (something like NAT) with following rule:

Port Nr IP Adress
-------------------------------------
Default (means all) 192.168.124.2

the idea is to get whole traffic routed to firewall_ext, don't know
if correct, but workin.

Now the firewall config:

Network\Interfaces
---------------------------------------------
firewall_int 192.168.123.2 / 255.255.255.0
eth0 Gateway: none

firewall_ext 192.168.124.2 / 255.255.255.0
eth1 Gateway: 192.168.124.1

Network\Nat/Masquerading
--------------------------------------------------------------------------------------------
adslmasq firewall_int_network__ -> all / all MASQ_external none

Packet Filter\Rules
-----------------------------------------------------
1 firewall_int_network__ any any allow

So far so good. With configuration as described above all pc do have access to internet.
game's are working, messenger is working, for pc everything's ok.

doc's wich helped me coming that far are (all from http://docs.astaro.org/):

Guidebook-US-ASL-V4_dnat_web-server.pdf
Guidebook-US-ASL-V4_DSL.pdf
Guidebook-DE-ASL-V4_T-DSL.pdf
MNF-User.pdf

also usefull for me as bloody noob was the thread

https://community.sophos.com/products/unified-threat-management/astaroorg/f/52/t/27573
(posting from AJo)

now the problem:

i want to get my server (http, mail, ftp) working. how do i have to set DNAT/SNAT, Packetfilter
rules and services that the server is accessible from internet? hope that anyone could help me.

thanks
greetings from switzerland
uz [:S]

This thread was automatically locked due to age.

Parents

0 Overnet over 21 years ago

For your mailserver you must set up an smtp proxy service on ASL and set Outgoingmail network omly your´s internal nic let acces it
Cancel
Vote Up 0 Vote Down

Cancel
0 uzweifel over 21 years ago in reply to Overnet

thanks for answer, but could you explain this to a noob? i've done it like they describe in 'howto set up web server' but unfortunatelly it did not work.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 uzweifel over 21 years ago in reply to Overnet

thanks for answer, but could you explain this to a noob? i've done it like they describe in 'howto set up web server' but unfortunatelly it did not work.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data