SnapGear 1.7.8 manual Initial setup using Linux, Using linsetip

Page 24

Initial setup using Linux

By default, your SnapGear appliance as shipped does not have any IP addresses configured. When the SnapGear appliance is powered on, if it has no LAN IP address all the front panel LEDs except Power will flash (except on LITE+ and LITE2+). The LEDs remain flashing until a LAN IP address is acquired.

The first setup task is to add an IP address in the SnapGear appliance using either DHCP or BOOTP. You may use an existing local DHCP/BOOTP server, set up a new local DHCP/BOOTP server, or use the lin_set_ip program on the SnapGear CD in the /tools directory.

Alternately, you may choose to boot the SnapGear appliance with the initial, static IP address of 192.168.0.1 (netmask 255.255.255.0). Refer to the start of this chapter for details on how to activate this option.

Using lin_set_ip

The lin_set_ip program is a command line tool for assigning an IP address or you SnapGear appliance. Depending on your system configuration, you may need root privileges to run this tool.

You may also need to add an extra static route using:

route add –host 255.255.255.255 eth0

where eth0 is the name of your LAN interface. You may need to prefix this line with the route command’s directory path (e.g./sbin/route add, etc.).

Run lin_set_ip with the additional arguments of the IP address and netmask for your SnapGear appliance, e.g.:

./lin_set_ip 192.168.0.1 255.255.255.0

After a short time, the IP address is assigned to the SnapGear appliance and the LEDs will stop flashing.

21

Getting started

Image 24

Contents Rev May 2nd Table of contents Virtual Private Networking Introduction Terminology Term MeaningLAN Document conventions TCP/IPInstalling and configuring your SnapGear appliance Step ChapterYour SnapGear appliance LEDsLabel Activity Description SnapGear appliance back panels Network interconnections SnapGear appliance features Software featuresInternet link features LAN link featuresDial-in connection features Environmental features Static IP reset Getting startedNew Networks 10.0.0.0 10.255.255.255 10/8 prefix192.168.0.0 192.168.0.255 192.168.0/24 prefix Configuring the SnapGear appliance on your network Page Set up IP addresses Your SnapGear appliance was found on the network Multiple SnapGear appliances were found on the networkYour SnapGear appliance needs an IP address Administrative password SnapGear Management Console web administration pagesInitial setup using Linux Using linsetipUsing an existing local Dhcp or Bootp server Ping -b subnet broadcast address Arp -aConfiguring a new local Dhcp or Bootp server Edit the /etc/inetd.conf fileSnapGear Quick Setup LAN port quick setup LAN port quick setupISP connection quick setup ISP connection quick setupGetting started Configuring the PCs on your network TCP/IP properties Connecting to the Internet Physically connect modem deviceSelect Internet connection Connect to Internet cable modemConnect to Internet Adsl Connect to Internet direct Connect to Internet modemISP. The Password and Confirm Password fields must Field DescriptionAdvanced configuration option Internet failoverFollowing figure shows the failover configuration screen Failed connection Configure PCs to use SnapGear appliance Internet gateway Establishing the connectionDial-in server configuration Dial-in server configuration Dial-in setup Dial-in setupField Description Dial-in user accounts Dial-in user account creationFollowing figure shows the user maintenance screen Dial-in password error Account listRemote user configuration For Windows 95 and WindowsServer types Windows Connect to dialogue boxClick Next to continue 11 Connection availability 13 Remote access login screen Network configuration IP configurationNetwork configuration Advanced IP configuration Advanced IP configurationNetwork configuration Dhcp server configuration Dhcp serverNetwork configuration Advanced networking Traffic shapingAdditional routes Incoming access FirewallIncoming access administration services Incoming access configurationExternal access to services Configure external access to servicesPort forwarding configuration Port forwardingOutgoing access Security group classes configurationOutgoing access settings Firewall rulesIntrusion detection and blocking configuration Intrusion detection and blockingPage Content filtering Content filtering Filtering levels and reporting Filtering Level Description1VPN tunneling using the Pptp server Virtual Private NetworkingPptp client setup Pptp client configuration Pptp server setup Enable and configure the Pptp VPN server Pptp server setupField Description Configuring user accounts for VPN server 4PPTP VPN server accounts screenVirtual Private Networking Configuring the remote VPN client VPN Pptp IP addressVirtual Private Networking VPN client setup Windows 95 and WindowsYour VPN client is now set up correctly Windows NT Network and dial-up connections This displays the Destination Address window Connecting the remote VPN client IPSec setup 12 IPSec setup13 Add new IPSec connection Virtual Private Networking 14 Automatic keying setup Aggressive mode phase 1 settings Technique DescriptionIPSec interoperability Password SystemTime server Diagnostics AdvancedFlash upgrade Reset buttonTechnical support Technical supportAppendix a LED status patterns LED Pattern Status ActionAccess Logging Appendix B System LogDefault Deny Eth0Eth1 PppCreating Custom Log Rules Forward Iptables -I Forward -j LOG -i eth+ -o eth+ -p tcp Administrative Access Logging Rate LimitingBoot Log Messages