dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
1306
share rss forum feed


NOYB
St. John 3.16
Premium
join:2005-12-15
Forest Grove, OR
kudos:1

4 edits

Notebook Based Rotuer/Firewall/NAT

Looking into setting up a PC based router/firewall/NAT.
Have an old notebook (Dell Inspiron 5100) with 1 LAN and 1 WLAN. Don’t really want to use the WLAN. Is there anyway to dual LAN/WAN NIC this thing?

Dell Inspiron 5100
Pentium 4, 2.66 GHz
Broadcom 440x 10/100 Integrated Controller
Dell TrueMoble 1400 Dual Band WLAN Mini-PCI
1394 Net Adapter, TI OHCI Compliant

What are the possibilities with this?

Oh think maybe what I need is a PC card NIC. Suggestions?

Cool, found an old Intel Pro/100 CardBus II. Wonder if Linux and Windows drivers are available for it? Also hope the Dell 5100 PC slot is CardBus II.

--
Be a Good Netizen - Read, Know & Complain About Overly Restrictive Tyrannical ISP ToS & AUP »comcast.net/terms/ »verizon.net/policies/
Say Thanks with a Tool Points Donation

fox7

join:2001-02-12
Culver City, CA
Look at this thread:
»Smoothwall? M0n0wall? pfsense???

fox7

Bink
Villains... knock off all that evil

join:2006-05-14
Castle Rock, CO
kudos:4
Reviews:
·VOIPO
reply to NOYB
I do this—using a MUCH older notebook, two Intel CardBus cards and OpenBSD.

$ grep fxp /var/run/dmesg.boot
fxp0 at pci2 dev 8 function 0 "Intel 82562" rev 0x03, i82562: irq 11, address 00:00:39:a4:df:32
inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0
fxp1 at cardbus0 dev 0 function 0 "Intel 8255x" rev 0x09: irq 11, address 00:a0:c9:bc:ad:ad
inphy1 at fxp1 phy 1: i82555 10/100 PHY, rev. 4
fxp2 at cardbus1 dev 0 function 0 "Intel 8255x" rev 0x09: irq 11, address 00:03:47:18:1f:5d
inphy2 at fxp2 phy 1: i82555 10/100 PHY, rev. 4
 


NOYB
St. John 3.16
Premium
join:2005-12-15
Forest Grove, OR
kudos:1

2 edits
reply to NOYB
Here is where it stands so far.

Host Machine:
Dell Inspiron 5100 (notebook)
Pentium 4, 2.66 GHz
12MB 266MHz RAM (PC2100)
80GB, 4200 RPM (FUJITSU MHW2080AT)
ATI Radeon 7500C, 32 MB
15" XGA

LAN: Broadcom 440x 10/100 Integrated Controller
WAN: Intel Pro/100 CardBus II

Host OS:
Windows XP Professional (SP3)
Remote Desktop Enabled
Microsoft Virtual PC 2007 (SP1)

Virtual Machine (Router):
CentOS 5.4 (Linux) (base only config)
128MB RAM, 2GB Virtual Disk

Install Webmin:
wget http://www.webmin.com/download/rpm/webmin-current.rpm
rpm -U webmin-1.500-1.noarch.rpm
 

Next is to set up iptables for routing, firewall, and NAT using the Linux Firewall Webmin module.
Hoping the host OS, Windows XP, can have the WAN NIC disabled and still have it available in the virtual Linux router machine.

--
Be a Good Netizen - Read, Know & Complain About Overly Restrictive Tyrannical ISP ToS & AUP »comcast.net/terms/ »verizon.net/policies/
Say Thanks with a Tool Points Donation


NOYB
St. John 3.16
Premium
join:2005-12-15
Forest Grove, OR
kudos:1

3 edits
said by NOYB:

Next is to set up iptables for routing, firewall, and NAT using the Linux Firewall Webmin module.
Hoping the host OS, Windows XP, can have the WAN NIC disabled and still have it available in the virtual Linux router machine.


Host OS, Windows XP, WAN NIC just needs the "Virtual Machine Network Services" enable and the others can be disabled. Disabling "Internet Protocol (TCP/IP) prevents the host machine from having a WAN connection.


WAN NIC Properties for Windows XP VM Host

downloadIPTables.txt 4815 bytes
Firewall, NAT & Port Forwarding IP Tables

downloadShieldsUpResults.txt 687 bytes
Shields Up Port Scan Results


Remote Desktop to the VM hosting Windows XP machine fails. Makes initial connection then immediately hangs. Remote Desktop to other Windows XP machine works fine.

Also would like to get port 9 to forward to 192.168.1.255 (broadcast). Rather that 192.168.1.254 (self made broadcast device) for Wake on LAN.

Suggestions?

--
Be a Good Netizen - Read, Know & Complain About Overly Restrictive Tyrannical ISP ToS & AUP »comcast.net/terms/ »verizon.net/policies/
Say Thanks with a Tool Points Donation

Bink
Villains... knock off all that evil

join:2006-05-14
Castle Rock, CO
kudos:4

1 recommendation

Make your life easy and drop iptables. The pf packet filter used in the BSD operating systems is better—and far more understandable.


NOYB
St. John 3.16
Premium
join:2005-12-15
Forest Grove, OR
kudos:1

3 edits
said by Bink:

The pf packet filter used in the BSD operating systems is better...


Please describe "better".

Installed pfSense (based on FreeBSD) into a VM and played with that some. Very easy to install and setup. But the purpose here is to MAKE the router at the nuts and bolts level rather than installing an appliance.

--
Be a Good Netizen - Read, Know & Complain About Overly Restrictive Tyrannical ISP ToS & AUP »comcast.net/terms/ »verizon.net/policies/
Say Thanks with a Tool Points Donation

Bink
Villains... knock off all that evil

join:2006-05-14
Castle Rock, CO
kudos:4
Reviews:
·VOIPO
I guess better might be the wrong word/subjective. pf integrates QoS with filtering—and has far less scary things operating on packet data in comparison to its Linux variant. The pf in pfSense is an older version of pf, which is produced by the OpenBSD team—so you don’t need an appliance like pfSense to use pf—and a stripped down version of OpenBSD is as close as you’ll get to having a nuts and bolts router that uses pf for packet filtering.