General :: Make Internet Go Through Firwall To Private Network?
May 14, 2011
I am new with IP tables stuff and i have a problem....
i have a pc Contain a fedora OS and i want to make a small network (4 PCs Contain XP OS) and using the pc of fedora OS as a firewall
i want to Prevent the ping (i think it called(ICMP)) in the privat network and prevent one of the PCs from Browsing Internet(prevent port 80 and 81 as i think)
and i still don't know how to make the Internet go Through the firewall to the private network...
note: WAN = eth0
LAN = eth1
View 9 Replies
ADVERTISEMENT
Nov 17, 2010
I deleted the firewall files "K09SuSEfirewall2_init", "K01SuSEfirewall2_setup", "S11SuSEfirewall2_setup" and "S01SuSEfirewall2_init" from "/etc/rc.d/rc5.d" in order to disable the firewall when rebooting.
As a consequence all network services are not working. I can't connect to any other machine nor to the internet.
I rebuilt the symbolic files based on the ones for runlevel 3, but still no network services are available.
Any suggestions how to make it work again? I'm using Suse 11.3.
View 9 Replies
View Related
May 17, 2011
I'm trying to make changes to several computers at once in a private network. I have ssh keys setup so that I can ssh from the main computer to all the other computers without having to enter my password. So I wrote a bash script like for computers in `cat computer list` do ssh $computers #type changes here exit done
but instead of executing the commands on every computer, it opens a shell on every computer for me to type into, just as if I had used ssh myself and not in a script. how to get this to work? I want to be able to add lines at the comment like "echo "test" > /testFile.txt" and be able to see the changes on each machine, in this case see testFile.txt on every machine.
View 6 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping [URL]... on the gateway machine, it works, while it doesn't work on the private network.
View 7 Replies
View Related
Jul 25, 2011
I have users using Windows XP, Windows 7, Linux (Fedora) and Mac. They all are in a single private network and all access internet through a Linux (RHEL5) system in which Squid acts as gateway. The same is true with my branch offices too except that private network is different and gateway system uses Fedora 9 instead of RHEL5. All the branch offices are connected through point to point leased lines with the head office for file transfer.
My requirement is this: I have a web server located at head office. Presently I am able to access this server from my branch offices through internet. I would like to access this server from branch offices through leased lines. This too I am able to access if I do routing in users system. The file transfer is taking place through one to one system at two ends by creating static routing in those systems.
View 1 Replies
View Related
Feb 8, 2011
Suppose that I am in a private network of computers (say each having ip addresses 192.168.. ). Some of the machines( we have no information regarding their ip, name and no physical access to the servers) in the network are connected to internet and they run an http proxy at some port say 3128. Is there a program which can be run on Windows or Linux which will give me the list of machines(ip addresses and ports if possible) acting as proxy servers?
View 1 Replies
View Related
Sep 21, 2010
My Linux username is "virchanza" and my group is "virchanza".How do I make a publicly-accessible folder within my private home folder?
View 3 Replies
View Related
Feb 26, 2010
I have openSUSE 11.2 installed and i need to create a gateway server that allows virtual private network connections. I want to play with my friends some lan games, but we are in different networks, so i want to create this gateway server so we can connect with VPN clients to this server and play freely.
View 7 Replies
View Related
Mar 19, 2010
i want to make a webpage so that only people on my network can see it. how do i do this
View 9 Replies
View Related
May 14, 2011
I am new with IP tables stuff and i have a problem....i have a pc Contain a fedora OS and i want to make a small network (4 PCs Contain XP OS) and using the pc of fedora OS as a firewall i want to Prevent the ping (i think it called(ICMP)) in the privat network and prevent one of the PCs from Browsing internet(prevent port 80 and 81 as i think) and i still don't know how to make the internet go Through the firewall to the private network...
Note: WAN = eth0
LAN = eth1
View 1 Replies
View Related
Oct 6, 2010
I'm running 11.2 on a Dell Latitude D630. Everything has been great other than issues with Suspend and hibernate not working correctly. However after about a month of use browsing the web has really slowed down bad. It doesn't seem to matter if it's in Firefox or Chrome either. I am using a wireless connection that is getting the signal at 85-95%. Even though I still tried using a direct cat-5 connection to the router and it was still slow as well. I have the fastest broadband connection my cable offers and my windows boxes on the same network are still flying.
View 2 Replies
View Related
Aug 8, 2011
I'm a absolute "server- noob" but I've got some experienced with desktop linux and want to build my own file server to access my stuff over the internet. I'm using dropbox for a while now like a cloud drive by simply mounting the "private" folder (which I encrypted with encfs/BoxCrypt) in order to cross-platform use important files. The problem is that Dropbox only provides 2 GB for free and I don't know how secure my data is up there. Moreover I don't wanna always sync all files locally.
I got an intel atom machine standing around and so I want to build my own file server to provide the same or at least a similar service.
1. Which type of server application provides a "network drive" that computers (several users) from the internet can access?
2. What's the best way to encrypt my data and transmission in order to make the system absolutely unattackable/unreadable from outside?
3. Is there a service that can provide a dropbox-style sync mechanism?
4. Which distro should I use? I'd prefer a non-desktop enviroment solution but never had anything to do with it. Is that possible for an average linux user?
I'm aware that this solution won't be very fast because of the limited upload of a standard internet connection but that would be ok! It's more that I want to have the possibiltiy to access all my data as a thin-client anywhere, anytime on any machine and still be on the safe side. I know that this is some kind of contradiction but what would be the best compromise? I know some questions may sound stupid but I really never had anything to do with servers at all in the past...
View 3 Replies
View Related
Aug 18, 2010
i noticed that all files can be seen by another computer if the drive is accessed
can I stop this? can i set a private folder?
View 7 Replies
View Related
Apr 6, 2010
I need to install Trac on a server that's on a private development VLAN (no internet access). Obviously Trac needs to go out over the internet to download/install various things. Does anyone know of an RPM or tarball out there that I can use to install Trac without being connected to the net?
View 2 Replies
View Related
Dec 30, 2009
I am setting up a publicly exposed ssh server.uld like to require both password and private key. Does anyone know how to configure this
View 4 Replies
View Related
Jul 6, 2009
My goal is to have users(Unix Users like root on host1) use evolution /sendmail to send and receive emails between users( Unix users either from host1 or any other host on n a private network. The network is a private network with a few servers without any connection to Internet and no DNS. They resolve one another by /etc/hosts. with smtp configured am able to send and receive emails on one machine(host1) from unix user abc on host1 to user xyz on host1 and vice versa. the commad i used to test is host1@abc #echo "this is a test mail" |mailx zyx@host1 But when i tried sending from user abc on host1 to user xyz on host2 its giving error for DNS unable to resolve hostname.
the commad i used to test is host1@abc# echo "this is a test mail" |mailx zyx@host2 create a simple sendmail config so that i can send mails between multiple hosts using unix usernames within one network. I can use one of the server as mail server and rest as clients. I dont want to configure any other softwares for pop or imap access. I want to keep it simple and use evolution on the clients to send emails between one another on the private network without internet.
View 1 Replies
View Related
Mar 14, 2010
i am totally new to Opensuse and to filezilla. I formerly used winscp - a windows-client for ssh.now i have a linux box and want to connect to the server via ssh ing filezilla.Can i use the same keys as i used in WinSCP - where should i store them and the third question.I read something about a certain so called certificate-file that has to be created!?
View 1 Replies
View Related
May 24, 2010
Well to make this straight forward as possible I want a program like The Hotspot Shield In Windows and Mac, Its uses's VPN (Virtual Private Network). To view Hulu (And other stuff). A link: [URL]. Or can I use it wine (I don't really think so, by the way I didn't test it out Because its blocked in my country).
View 4 Replies
View Related
Jan 11, 2011
We have to connect one PC in private network (campus) with other PC (mostly a modem in our case)in public network. Connection should be peer to peer like and we have to use C coding for establishing connection between this two systems. Is it possible if we use port forwarding or is there any other way?
View 2 Replies
View Related
May 24, 2011
The facts are as follows:
1. I have at work a regular LAN with many PCs, each with a DNS-registered public IP. Therefore I am able to address each of these PCs by their fully-qualified names and, for instance, initiate ssh sessions to any of these computers just by typing "ssh <name_of_machine>" from a terminal.
2. Within the aforementioned LAN I have just created a private network with some clients, which access the LAN through a router (a D-link DIR-825). We have created this private network for many reasons, but most importantly because we need to guarantee that the hosts in this network will remain networked among them even if the LAN goes down for any reason (which unfortunately happens often). But we still need to have access to the hosts in the private network from the LAN.
3. I am able to define port forwarding rules in the router in order to access certain services on the private network's clients. For example. I am able to access (by ssh) hosts "H1" and "H2" on the private network from a client on the LAN by defining rules for forwarding ports "P1" and "P2" on the router's public IP to TCP port 22 on the private IPs of "H1" and "H2", respectively. Then I would access each of these hosts from the LAN by using:
>ssh -p P1 [ip.address.of.router] (for accessing H1) and >ssh -p P2 [ip.address.of.router] (for accessing H2)
4. The problem with the port forwarding approach is that it is not easily scalable. For instance, If I wanted to enable ssh access to each host in the private network, I would have to define a port forwarding rule for each machine, and then REMEMBER all these port rules when initiating a ssh session from the LAN in order to point to the right host. And the problem gets worse when considering more services in addition to ssh.
5. The ideal solution would be to be have a means for addressing each host in the private network individually, in much the same way in which I address the hosts in the LAN (which have DNS-registered names). For instance, in order to access hosts H1 and H2 as in the previous example, i would like to be able to just type
>ssh [name_of_host_H1] (for accessing H1) and >ssh [name_of_host_H2] (for accessing H2)
The bottom line:
I guess I can say that what I need is some kind of combined DNS-ing and routing that allows me to communicate with the hosts in the private network from outside of it in a transparent way.
The question is: what are any possible solutions for accomplishing this? I have searched the web and found stuff about things like VPNs, reverse-proxies and NAT servers, but I really can't understand if any of these could serve to solve my problem (BTW, isn't my router doing some sort of NAT-ing already? could I just add some DNS-ing in some way?)
View 3 Replies
View Related
Jul 27, 2011
I run a server that is connected to several other boxes in a private network (192.168.0.0). I have had no problems previously, but upon a reinstall of Debian squeeze I have no connectivity to the private network: a ping of other addresses on that network fail. Ping and connection to outside world is fine. This box is configured similarly to another on this private network which connects successfully. I have quadruple-checked all my basic information. I post my ifconfig below of the malfunctioning device, then the ifconfig for equivalent nic on a box connected succesfully to the private network.
Questions:
1.Could it be a cable problem? (I don't see how since the cables have not been changed I do not believe since my reinstallation).
2. What about the difference in the last lines of eth1 below and eth2 of the successful box. Is it significant that the bad eth1 reads Memory:fc3a0000-fc3c0000
View 5 Replies
View Related
Aug 10, 2010
My ISP has for a long time had a broken forward/reverese DNS so that my ADSL connection with static IP address resolves to a completely different IP address on a reverse query. This has not been a problem until I upgraded a remote server from 10.3 to 11.3 last weekend and now ssh connections from my ADSL connection to it using public/private keys are being rejected with the following message in /var/log/messages (IP addresses changed):
Aug 10 12:00:32 penguin1 sshd[1270]: Address 83.175.246.243 maps to 83-175-246-243.static.dsl.aupex.com, but this does not map back to the address - Possible Break in Attempt!
But if I log in interactively with username & password, the connection succeeds. I've changed the StrictModes setting in sshd_config to 'no' but this hasn't resolved the problem. Obviously something in 11.3 is being stricter about this IP mismatch than it was in 10.2 (and no, the server is not using a firewall). There must be something I can change to make sshd more permissive? I've tried before to get my ISP to fix their problem but no luck. This needs to be sorted as a server at my home (which does not run SuSE) retrieves backups from the remote OpenSuSE 11.3 server every night using scp and these are now failing.
View 3 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping google.com on the gateway machine, it works, while it doesn't work on the private network. Note: I am using VmWare 7. I need your quick assistance about this issue.
View 2 Replies
View Related
Jul 10, 2010
I just installed ubuntu 10.04 and my Internet wont work properly I can go on sites like Google but almost any other non Major website i cannot visit
View 13 Replies
View Related
Aug 13, 2010
I,m new to linux. I don't know how to do settings for Internet connection.
so, please send me complete detail of how to make settings for Internet connection.
View 3 Replies
View Related
Dec 23, 2010
On computer, I have apache server, configured at port 80, running. In local network, web page is accessible by my local IP (192...). Although, when I want to get to the page from the internet, I don't know right ip address, since router's one should be local, and also, router has it's own web page running at port 80. So I guessed that my server IP would be modem's one, which I don't know. Sometime in past, I figured out address of modem too, but it has it's own application running. Also, router supports port forwarding (which I guess, is needed), but I don't know how to get using to it. what address from internet should I have? How should I determine it?
View 8 Replies
View Related
Jun 4, 2010
After upgrading to Ubuntu 10.04, I'm not able to make any connection to the internet with either my netbook through WiFi or my computer on wired LAN. I can, however, ping my Solaris machines and Macbook. How do I fix this?
View 9 Replies
View Related
Sep 24, 2009
Fedora 11 I have tried just about everything in webmin, the current one I am working with is openswan, and I get this error: ipsec newhostkey --configdir /etc/ipsec.d --output /etc/ipsec.secrets ipsec rsasigkey: key pair generation failed: "-8037"
My boss would like to have our employees connect to our linux server, then access their personal computers to work when they are unable to be in the office. Everyone else in the office uses winblows and they are unwilling to try anything else no matter what the benefit. The most important one is the CAD guy, we need him to work on drawings from school or his latest flings house and I am just running out of steam. how to fix this error or radically change my approach, I will try or do anything.
View 2 Replies
View Related
Mar 15, 2011
I'm trying to setup a OpenVpn on my Ubuntu 10.04 and after doing the configs from here: [URL] I get an error:
[Code]....
View 1 Replies
View Related
May 31, 2011
I got a task to discover printers available in my network using cups.
View 10 Replies
View Related
