Author Topic: External firewall  (Read 24741 times)

archived

  • Hello, I'm new here
  • Posts: 0
    • View Profile
External firewall
« on: October 03, 2005, 07:44:50 am »
Is it possible to turn off the firewalling in Pluto? I have a separate firewall (IpCop) and would prefer to continue to use this.

The firewall's internal address is 10.10.10.1 and the external is a public address. I'm quite happy for Pluto to be the DHCP server so turned off the DHCP server on the firewall before installing Pluto and assigned Pluto an IP address of 10.10.10.11 with the gateway pointing to the firewall.

The Pluto install configured eth0 as 10.10.10.11 and added eth0:0 as 192.168.80.1. I'd prefer to have only one IP address on the Pluto (dedicated Core) but am not an expert at iptables and am also new to Pluto (looks like amazing software!!). Maybe I could simply change eth0:0 to something like 10.10.10.12? But I'm not sure what would break in such a setup.

As my external router does have several external (public) IP addresses, I may be able to set up Pluto "next to" the existing firewall to create a separate network. However, I'd prefer not to have two internal networks.

Any pointers would be greatly appreciated.

archived

  • Hello, I'm new here
  • Posts: 0
    • View Profile
Re: External firewall
« Reply #1 on: October 19, 2005, 11:10:06 am »
Sorry for not answering you until now. I missed your post.

Quote from: "leons"
Is it possible to turn off the firewalling in Pluto? I have a separate firewall (IpCop) and would prefer to continue to use this.

Pluto was thought as a gateway when it comes to Internet access. You can't disable the firewall using standard means. You can however disable it's startup script. In your pluto-admin website go to Advanced -> Boot Sequence and disable the Network_Firewall.sh script.

Quote from: "leons"
The firewall's internal address is 10.10.10.1 and the external is a public address. I'm quite happy for Pluto to be the DHCP server so turned off the DHCP server on the firewall before installing Pluto and assigned Pluto an IP address of 10.10.10.11 with the gateway pointing to the firewall.

The Pluto install configured eth0 as 10.10.10.11 and added eth0:0 as 192.168.80.1. I'd prefer to have only one IP address on the Pluto (dedicated Core) but am not an expert at iptables and am also new to Pluto (looks like amazing software!!). Maybe I could simply change eth0:0 to something like 10.10.10.12? But I'm not sure what would break in such a setup.

Since it's an alias, nothing should break (Things break when you have two network cards on the same subnet in the same computer).

Hope this helps.

archived

  • Hello, I'm new here
  • Posts: 0
    • View Profile
External firewall
« Reply #2 on: October 20, 2005, 06:49:02 pm »
Thanks for the advice - will try this out soon.