slackware 9.0 firewall/router setup

[jalbes]

I'm attempting to set up a firewall/router with an old p233.

This is my first 24 hours ever actually running Linux in my life and I've come to a screeching halt.

I solved a lot of hardware issues already (like onboard sound, onboard graphics, etc.). It's working fine and I'm able to connect to the net with one NIC but I can't seem to figure out how to set up the second NIC for DHCP to allow my WinXP system to connect through to the net.

I read through a few tutorials, but I can't find anything really relevant or clear.

I've followed the instructions on http://www.sarah31.ca/tutorials/router.html to set up the firewall, but it doesn't have the instructions on how to set up the second NIC card.

Anyhelp is appreciated. The both NIC are 3c59x if that helps at all.

Thanx,
Shaun

[monster]

Trying reading through http://www.linuxquestions.org/questi...ve/3/2003/06/2

[jalbes]

I went there and read through a few posts but most of it went right over my head.

as long as I can get my machines to ping each other, I'll be in good shape. But first I need to know how to get Linux to to recognize the second NIC.

I get this from dmesg:
...
3c59x: Donald Becker and others. www.scyld.com/network/vortex.html
00:0b.0: 3Com PCI 3c905B Cyclone 100baseTx at 0xf400. Vers LK1.1.16
PCI: Setting latency timer of device 00:0b.0 to 32
00:0d.0: 3Com PCI 3c905 Boomerang 100baseTx at 0xf700. Vers LK1.1.16
PCI: Setting latency timer of device 00:0d.0 to 32
...

When I try to configure the Network, it only prompts the first NIC which is connected to the net right now.

Let me know if there is anything else that I should do to install the second NIC.

[jalbes]

this is what is found in ifconfig, if this helps at all (some ip addy's changed to protect the innocent)

eth0 Link encap:Ethernet HWaddr 00:10:5A:1D:3C:CD
inet addr:123.456.7.89 Bcast:987.654.3.21 Mask:255.255.254.0
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1042 errors:0 dropped:0 overruns:0 frame:0
TX packets:1072 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:409478 (399.8 Kb) TX bytes:132167 (129.0 Kb)
Interrupt:11 Base address:0xf400

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

I noticed that eth1 at 0xf700 is not listed and thought that I'd update.

[kilgoretrout]

Check your /etc/modules.conf file. You should have separate lines for eth0 and eth1 there that look like:

alias eth0 [driver name]
alias eth1 [driver name]

Since you have two identical nics, they should have the same driver. My guess is you have an entry for eth0 but none for eth1. If that's the case just create one for eth1 by editing the file. It should load next time you boot up.

Once loaded, you'll get some output for eth1 when you run ifconfig. You will still have to configure the network settings for eth1 by editng /etc/rc.d/rc.inet1. I'm not the familiar with slack so I can't help you much here other than tell you that's what needs to be done.

[mairving]

If it is for a firewall/router why do you need sound? The 1st NIC card is eth0 and the 2nd is eth1. The netconfig command only sets up the first one. To set up the 2nd one, you can set it up using ifconfig or very simply as long as you installed dhclient, type dhclient eth1 or dhcpcd eth1. This will tell it to use DHCP for this card. This will only do so temporarily. To do it permanently, you need to uncomment out some lines in /etc/rc.d/rc.inet1 . Uncomment (remove the # from in front of) use DHCP2=yes.

You can also uncomment out the lines and restart like so:
. /etc/rc.d/rc.inet1 restart

[jalbes]

I tried what you had mentioned, but still no go. I may have misunderstood and did it incorrectly tho. So here's what I did.

In /etc/modules.conf I inputed:
alias eth0 3c59x
alias eth1 3c59x

In /etc/rc.d/rc.inet1 I uncommented the line from eth1:
use DHCP2=yes

I rebooted linux but my XP system still doesn't recognize the Linux box. I went to run ifconfig and this is all it had:
eth0 Link encap:Ethernet HWaddr 00:10:5A:1D:3C:CD
inet addrnot telling you) Bcastnot telling you) Mask:255.255.254.0
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500 Metric:1
RX packets:594 errors:0 dropped:0 overruns:0 frame:0
TX packets:680 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:150901 (147.3 Kb) TX bytes:107679 (105.1 Kb)
Interrupt:11 Base address:0xf400

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)


And when I tried restarting /etc/rc.d/rc.inet, this is what I got:
root@firewall:~# /etc/rc.d/rc.inet1 restart
SIOCADDRT: File exists
Attempting to configure eth0 by contacting a DHCP server...
**** /sbin/dhcpcd: already running
**** /sbin/dhcpcd: if not then delete /etc/dhcpc/dhcpcd-eth0.pid file
Attempting to configure eth1 by contacting a DHCP server...
dhcpcd: MAC address = 00:60:97:bd:b4:e3
root@firewall:~#

To me it looks like eth1 is looking for a DHCP server when its suppose to be a server for my windows box.
Any ideas?

[mairving]

After re-reading your post, there is much more involved than just getting the 2nd NIC to work. It looks like you are trying to use this machine as a proxy server to the Internet. This means that you can use DHCP on the first NIC to pull off an IP address from your ISP or Router. Then you are trying to use DHCP to assign an IP address to the 2nd NIC. The problem is that their is no DHCP server for the 2nd NIC. XP is not going to assign it an IP address. So you will have to manually assign an IP address to the 2nd NIC that is in the same subnet as the XP box. This will be your Internal Network, the one connected to the first NIC will be you External.

Now the other problem is that even if you assign an IP address to the 2nd NIC, it won't work. You will have to use either IP Masquerade or Squid as a Proxy Server.

To assign an IP address, edit the rc.inet1 file and put in the correct value and comment out the Use DHCP part.

[jalbes]

mairving:
I'm having a hell of a time setting this router up with slackware as I'm not very Linux literate yet.

Do you know of any other distributions that would be easier to setup for a home router/firewall? In the mean time, I'm using Coyote Linux to maintain my connection, but I would like to have linux installed so I can play around and eventually convert all of my systems over once I'm comfortable with it.

[mairving]

Slackware would be one of the best to use to set up a router. Personal opinion though is that it is just not worth doing since routers are so cheap nowadays.

[MichaelS]

hmm... I may be able to help as I have 4 machines running slack here.

if you can explain your network topology, it would probably help with coming up with a solution.

Regards,

Mike