koma3504
Advocate
Premium
join:2004-06-22
North Richland Hills, TX | reply to Mele20
Re: IPCop in VMWare: A How-to
doing a trace to the site ip along the way. there appears top be a problem. I also have a problem getting to the site.
10 71 ms 322 ms 866 ms cr1-loopback.sfo.savvis.net [206.24.210.70] |
|
beerbum
Premium
join:2000-05-06
Reading, PA
clubs:
| reply to Mele20
said by Mele20  :What is IPCop? I tried to go to Sourceforge but that site will never load. I would not have even tried if I had known that is where this software is located. this?
»ipcop.org/
IPCop Firewall is a Linux firewall distribution geared towards home and SOHO (Small Office/Home Office) users. The IPCop interface is very user-friendly and task-based. IPCop offers the critical functionality of an expensive network appliance using stock, or even obsolete, hardware and OpenSource Software. |
|
Mele20
Premium
join:2001-06-05
Hilo, HI
| reply to genewitch
What is IPCop? I tried to go to Sourceforge but that site will never load. I would not have even tried if I had known that is where this software is located.
I love VMWare Workstation so I was curious about this but it is not easy to follow why I would want this when I can't read anything about IPCop.
I did FINALLY get the download page for IPCop to load but no other pages there would load at all and the download page doesn't tell me anything about IPCop. I have cable broadband and no problems loading most sites.
I am guessing this acts like a firewall? So, you would have to boot this VMWare machine each time after you boot the host? That is a big drawback to VMWare Workstation. Plus, why would anyone want a firewall if they have a router and classic HIPS? That is why I got a router years ago and then ProcessGuard so I didn't need a software firewall...so is that what this is?
I only have one NIC so I couldn't do this anyway. But you have me confused...I have a home network but only one physical NIC....????
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason |
|
sagager
@comcast.net
|  reply to genewitch
Thank you for the explanation.
Now this is what I may be confused: I want to do the configuration above on a Win2K3 Server. Once all is setup, how will I force my client workstations (WinXPP) to pass all packets through the IP COP? Since the communication with the physical NIC on the server will be disabled (except for the bridging.
Based on the example above, what IP info should I feed the clients IP/SM/GW/DNS?
I am interested mainly in the URL Filter (which I found out how to install) for the client workstations.
TIA |
|
genewitch
join:2007-09-12
Klamath Falls, OR
 ·Charter Pipeline
·Suddenlink
·Cebridge Connections
1 edit | reply to genewitch
Bump, because i've gotten two emails saying it works like a charm.
Also an edit:
If you're trying to forward stuff to the host's services (like you're running apache on the host that has IPCop running in VMWare, Make sure that your port forwarding and external access settings in IPCOP are pointing to the Host's internal IP, and not IPcops!
IE 192.168.2.10 is the host, 192.168.2.1 is IPCop;
Ports on the host are routed via 192.168.2.10, even though you'd imagine they'd both get there... IPCop is running literally on it's own machine with it's own NIC. I hope this clears up some confusion for people!
Oh and one more thing:
VMWare player is astounding for this purpose. I set the available memory to the VM @ 64 MB, and boot vmwareplayer with the ipcop install. The super nice thing about VMware is you can back up your install VMDK(disk image) and if you ever want to go back to a known good copy of IPCop, you just swap the VMDKs out and you're as good as new without all the hassle of reinstalling! Also, using vmware player allows you to start the VM upon windows/linux load, thus minimizing network down time.
If anyone needs any clarification, or i get enough replies in here about this, i'll rewrite it using actual page layout technique and bullet lists and such. 
Thanks for trying this, to all of you who have, i hope it helps! |
|
