Dear all, I am trying to share the internet connection from my linux box to the other PCs on the network. I have no reason to have a firewall since this machine dials in check e-mail and dials out immediately. Can someone please help me with this one? Masquerading perhaps?? Chris PS: SuSE 8.1 out of the box PS2: I am a very new user!!!
Dear all,
I am trying to share the internet connection from my linux box to the other PCs on the network. I have no reason to have a firewall since this machine dials in check e-mail and dials out immediately. Can someone please help me with this one? Masquerading perhaps?? You can use suse firewall2 to achive this. It's silly to say that you don't need a firewall. Although it is not (yet) so bad with linux, an unprotected windows machine is infected with blaster within 5 minutes on
On Dec 1, Chris Bek
PS: SuSE 8.1 out of the box No updates?! PLEASE update your box using YOU or fou4s (fou4s.gaugusch.at)!
-- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
Still I have no answer regarding how to do this!!
Thanks for the information though.
Chris
----- Original Message -----
From: "Markus Gaugusch"
On Dec 1, Chris Bek
wrote: Dear all,
I am trying to share the internet connection from my linux box to the other PCs on the network. I have no reason to have a firewall since this machine dials in check e-mail and dials out immediately. Can someone please help me with this one? Masquerading perhaps?? You can use suse firewall2 to achive this. It's silly to say that you don't need a firewall. Although it is not (yet) so bad with linux, an unprotected windows machine is infected with blaster within 5 minutes on the internet. NEVER say that you don't need a firewall (except if you have NO port open, not even ssh)
PS: SuSE 8.1 out of the box No updates?! PLEASE update your box using YOU or fou4s (fou4s.gaugusch.at)!
-- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
Still I have no answer regarding how to do this!! There is a lot of documentation included with susefirewall2, and also in its main config file (/etc/sysconfig/SuSEfirewall2). The docs are in /usr/share/doc/packages/SuSEfirewall2.
Markus -- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
On Mon, 1 Dec 2003, Chris Bek wrote:
Dear all,
I am trying to share the internet connection from my linux box to the other PCs on the network. I have no reason to have a firewall since this machine dials in check e-mail and dials out immediately. Can someone please help me with this one? Masquerading perhaps??
Chris
PS: SuSE 8.1 out of the box PS2: I am a very new user!!!
Your request sounds a bit contradictory. If the gateway box truly dials in only intermittently, it doesn't seem to make sense to share the connection, since it won't be available most of the time. Masquerading and forwarding is one of the functions of a firewall, whether you choose to implement other filtering functions as well, or not. I would install the susefirewall2 package, and set it up to do masquerading of your internal network. The sample config file is quite well documented, and a simple read thru it will lead you to the few lines that need to be customized. Basically, it will be to declare your external (internet-looking) interface, the internal (LAN-looking) interface, and enable masquerading. YAST even has a module to make this easy. If the need to share the interface is only to retrieve mail, then maybe a fetchmail implementation on the gateway machine, which fetches mail for all your user accounts, and delivers them to local mailboxes. Your users on the LAN can fetch their mail from the gateway machine at will, and there'd be no need for any IP forwarding or masquerading. Think of it as an asyncronous email proxy. Unfortunately, I can't give you a step-by-step on this technique, since I've never set one up myself. -- Rick Green "They that can give up essential liberty to obtain a little temporary safety, deserve neither liberty nor safety." -Benjamin Franklin
participants (3)
-
Chris Bek
-
Markus Gaugusch
-
Rick Green