| |
| |
| |
|
Comments:
<0> I'm using 3 interfaces on a PIX 515E: Outside, DMZ, Inside. The Inside interface is security100, the DMZ interface is security50. The first acl entry on the dmz interface is a permit icmp any any. There's no acl on the inside interface.
<0> shouldn't I be able to ping from an internal host to a dmz host?
<1> hello friends
<0> you're not my friend
<0> unless of course you can help me out with my problem
<1> omfg
<1> come out of the closet
<0> you first
<1> everyoen will accept you...after random beatings and name calling
<1> leth come out together
<1> anybody use an HP EW2400 wireless puck adapter?
<2> When I was on cable, my modem would connect and my netgear router would do the rest (and I could see the external IP on the routers page)... I use a 'ADSL Router' now but want to use the same netgear one too, however I want the adsl router to act as JUST a modem and p*** it's external IP onto my router - what should I do?
<2> On the modem I have the choice to have DHCP on/off, PAT (nat i think) on/off, and also if the modem is connected to a PC/Hub... which combination would be needed to get it to act as just a modem to my proper netgear router can obtain the external IP?
<3> Cyorxamp, does it not have a bridge mode?
<2> i dont see anything like that
<2> I want to configure my adsl router to work as just a modem so my PROPER router can access the correct internet IP.... screenshots of my adsl router can be found here.... http://img311.imageshack.us/my.php?image=3comno2.jpg
<4> http://www.cnn.com/2006/TECH/ptech/08/03/microsoft.hackers.ap/index.html
<4> haha, idiots
<5> hi, how should I configure a firewall so active FTP can be used with it
<6> i gotta tell ya, a sony 24 inch flat crt trinitron monitor, looks mighty enticing
<6> what was the largest crt monitor ever manufactured? was it the sony 24 incher?
<6> except the DPI is like .. large, and that's not good... monitors have very fine pixels, so i ouldn't call a crt tv a monitor
<7> get a flat panel
<7> save energy
<8> [\snowe\] oh hells bells
<9> mornin snowebabe
<10> mornin hon
<11> anyone know anything about non-nat setups?
<12> I do
<12> I never use nat
<12> at least not since I got my ISP to give me more IPs
<11> cool
<11> im having a bit of trouble understanding how they work
<11> lets say you have 1 machine with an adsl modem running ipcop or smoothwall or something
<11> thats ***igned a public ip right? and the other machines on the network are also ***igned public ips?
<12> ok
<12> back
<12> Herms: ify ou have neough IPs for each machine you dont need nat
<12> you give each machine one unique public IP
<12> then each provides its own firewalla nd protection
<12> each will need to know the ip of the gateway
<12> and each will need to know your dns server settings
<12> and subnet mask
<11> ok
<12> of course you could setup dhcp to hand out this info based on mac addresss too
<12> but yous etup each other computer like you might the main computer only using different IPs and hostnames
<12> its actually a hell of alot simpler then nat is
<11> ive never used it before and im about to start, so trying to figure it out
<11> so they each need software firewalls really
<11> and each machine on the lan would still be able to communicate if the gateway went down
<12> Herms: if you ant application level firewalling yes
<12> but youc an set some clogal firewall rules based on ports and IPs on the router
<12> it dpeends on what your after
<12> if you know you ant to block all but certian ports globally jst do that ont he router
<12> but if you want to block on a per application basis then thats a local pc issue since no router can ever tell what application is actually running on a certain port
<11> no i dont want application level
<12> generally since each PC has its own ip there is no built in firewall protection..but on the pu side there is also no need for complciated port forwarding
<12> Herms: what you might want to do is just find the most offensive ports and close them ont he routers firewal
<12> maybe block all udp if you like..except maybe dns
<12> if your paranoid anyhow
<12> or just blokc certain imcps
<12> and block those vil windows sharing ports
<12> I dont know which they are
<12> but anything you block ont he router wont affect pc to pc inside you lan
<11> well id like to have an ipcop router as the gateway, then have a mail server and a vpn server behind that
<12> just blocks things coming from the internet to pc
<12> which is what youw ant anyhow
<12> well youc an do that
<11> everything else can be blocked
<12> youc an still run nat even too
<12> and just forward entire public IPs on a per machine basis
<12> but generally I would just block theports you know you never want incoming conenctions on at the router
<12> give each pc its own IP that is otherwise unrestricted
<12> and use the general built in windows firewall for anything else
<12> no need for a fancy ZA or norton if youd ont want it
<12> but good virus protection might be nnice
<11> ok
<12> you could force everything through a gateway you build though
<12> a simplke linux system can handle that and not even need nat
<12> then the gateway would have the chance to block or allow packets as they go over its firewall
<12> but chances are your router already can do all this for you
<12> otherwise it wouldn't be a router..we would call it a brudge
<11> ok thanks
<11> ill be trying it out soon
<11> once my isp gives me the ips
<12> ohh youd ont have them yet huh
<12> well good luck
<12> they gave me a /29 block here
<11> thanks
<12> might be tome for /28 though soon
<11> what about the machines that wont be given public ips, they remain on a 192.168.1.* type address right?
<8> [snowe] oh hells bells
<12> Herms: if you dont have enough IPs for all machines
<12> then you will need to set aside one publicIP for them all to use via nat
<12> this means you can ***ign all but 1 ip you get from your isp to static machiens
<12> the last IP is used for the nat and all machines that wont have their own static ip
<12> I prefer to just give every box its own IP by getting more IPs
<11> thanks kib, youve been most helpful!
<13> anyone know of a really fast free proxy?
<14> mikeo1: Try Squid and Privoxy.
<13> or rather ip address to an open server
<13> i am using squid tho
<14> mikeo1: Oh, no, I don't. Try antiproxy, stayinvisible, samair.ru, and such services. But they usually ****.
<15> anyone know about this card, what type of ext antenna connection it has, http://www.buy.com/retail/product.asp?sku=10365601&SearchEngine=DealTime&SearchTerm=10365601&Type=PE&Category=Comp&Gad=0&dcaid=15891, to kow if it will work with this http://www.buy.com/retail/product.asp?sku=10403540&adid=17662
<7> im not too sure
<16> When i put a wireless g card in my pc i only get like 300k download but when im wired i get 900k. The router is a g router and its only 3 feet away
<16> any ideas how i can speed up the performance?
Return to
#networking
or
Go to some related
logs:
#stocks
#stocks
#politics
#gentoo
#linux-noob
#beginner
#gamedev
#heroin
#beginner
#nintendo
|
|
