stolus
Goto Top

Fli4l Router als MAc-Filter vor Fritzbox im Studentenwohnheimnetzwerk

Hallo, ich wohne in einem Studentenwohnheim das komplett vernetzt ist. Nach der Anmeldung dort bekommt man automatisch eine feste IP zugewiesen mit der man dann auch surfen kann, DNS läuft auch über ddas Wohnheim. Da das Wohnheim Internet aber viel zu langsam ist(ca.150 Mitbewohner an ca 4Mbit) habe ich zusammen mit ein paar Kommilitonen DSL beantragt. Wir habe dazu eine Fritzbox bekommen. Bis jetzt haben wir dann unsere feste Ip manuell eingetragen und die Fritzbox als Gateway. Nun kann aber jeder im Wohheim unser Gateway(DSL) mitbenutzen.Nun möchten wir zwischen Wohnheim und der Fritzbox einen FLI4L Router mit Mac-Filter einsetzen,der nur uns Zugang zum Internet erlaubt.Aber wir bekommen den Router nicht zum laufen. Hier mal unsere Base.txt vielleicht kann uns jemand helfen.


Das MAC-Paket ist noch nicht in der Base drin.

##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.0.8
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.20.2.8 2002/12/02 15:21:02 rresch Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
  1. General settings:
#------------------------------------------------------------------------------
HOSTNAME='sugar' #name of fli4l router
PASSWORD='0815' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
RAMSIZE='2048' #size of ramdisk for unzipped opt.tgz
  1. the variables MOUNT_OPT, PART_OPT and UPDATE_MODE will be ignored if
  2. RAMSIZE is not empty. see docu
MOUNT_OPT='ro' #mount opt device: ro, rw
PART_OPT='hda2' #location of opt-files? ram1 or disk-partition
UPDATE_MODE='full' #add, cfg, full, none, see documentation
#------------------------------------------------------------------------------
  1. Ethernet card drivers:
  2. uncomment your ethernet card
#------------------------------------------------------------------------------
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
#ETH_DRV_1='3c505' # ISA: 3COM Etherlink Plus (3c505)
#ETH_DRV_1='3c507' # ISA: 3COM Etherlink 16 (3c507)
#ETH_DRV_1='3c509' # ISA: 3COM EtherLinkIII (3c509)
#ETH_DRV_1='3c515' # ISA: 3COM EtherLink XL ISA (3c515)
#ETH_DRV_1='3c59x' # PCI: 3COM Vortex/Boomerang 3c59x,3c900,3c905
#ETH_DRV_1='82596' # Apricot Xen-II on board Ethernet
#ETH_DRV_1='3c503' # ISA: 3COM EtherLinkII (3c503)
#ETH_DRV_1='e2100' # ISA: Cabletron E21xx ISA
#ETH_DRV_1='hp' # ISA: HP PCLAN (27245, 27xxx) ISA
#ETH_DRV_1='hp-plus' # ISA: HP PCLAN+ (27247B and 27252A) ISA
ETH_DRV_1='3c509' #ISA: NE2000 ISA clone (eg. Realtek 8019,
  1. Accton 16xx, NatSemi 8390, UMC 9003/9008)
#ETH_DRV_1='ne2k-pci' # PCI: NE2000 PCI clone (eg. Realtek 8029,
  1. Winbond 89c940)
#ETH_DRV_1='smc-ultra' # ISA: SMC ULTRA
#ETH_DRV_1='smc-ultra32' # EISA: SMC ULTRA32 (NEW)
#ETH_DRV_1='wd' # ISA: SMC WD80*3
#ETH_DRV_1='at1700' # ISA: AT1700 (Fujitsu 86965) ISA
#ETH_DRV_1='cs89x0' # ISA: IBM Etherjet, cs89x0 based Cards (Option io=0xnnn necessary!)
#ETH_DRV_1='de4x5' # PCI/EISA: Digital DE425, DE434, DE435, DE450, DE500
#ETH_DRV_1='depca' # ISA: DEPCA, DE10x, DE200, DE201, DE202, DE422
#ETH_DRV_1='dgrs' # PCI: Digi International RightSwitch PCI/EISA
#ETH_DRV_1='dmfe' # PCI: DM9102 compatible PCI cards from Davicom
#ETH_DRV_1='lp486e' # ISA: Intel Professional Workstation/panther 82596
#ETH_DRV_1='eepro' # ISA: Intel EtherExpress Pro/10
#ETH_DRV_1='eepro100' # PCI: Intel EtherExpressPro PCI 10+/100B/100+
#ETH_DRV_1='eexpress' # ISA: EtherExpress16 ISA
#ETH_DRV_1='epic100' # PCI: SMC EPIC/100 (EtherPower II) PCI
#ETH_DRV_1='eth16i' # ISA/EISA: ICL EtherTeam 16i/32
#ETH_DRV_1='ewrk3' # ISA: EtherWORKS 3 ISA (DE203, DE204, DE205)
#ETH_DRV_1='fa3xx' # PCI: NETGEAR FA3XX PCI Ethernet Controller
#ETH_DRV_1='fealnx' # PCI: ASOUND LAN 8139 card - not RTL8139 (NEW)
#ETH_DRV_1='hp100' # ISA/EISA/PCI: HP 10/100VG PCLAN (ISA, EISA, PCI)
#ETH_DRV_1='lance' # ISA: AMD LANCE and PCnet (AT1500, NE2100) ISA
#ETH_DRV_1='old_tulip' # PCI: Old DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='pcnet32' # PCI: AMD PCI PCnet32
#ETH_DRV_1='rtl8139-orig' # PCI: RealTek 8129/8139 (not 8019/8029!)
ETH_DRV_1='rtl8139' # PCI: RealTek 8129/8139 (not 8019/8029!) (NEW)
#ETH_DRV_1='8139too' # PCI: RealTek 8139 10/100 MB (NEW)
#ETH_DRV_1='sis900' # PCI: SiS 900/7016
#ETH_DRV_1='sundance' # PCI: DFE-550FX or DFE-530TXS (NEW)
#ETH_DRV_1='tlan' # PCI: TI ThunderLAN (Compaq Netelligent ...)
#ETH_DRV_1='tulip' # PCI: DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='natsemi' # PCI: Nat Semi
#ETH_DRV_1='starfire' # PCI: Starfire
#ETH_DRV_1='via-rhine' # PCI: VIA Rhine PCI (3043, VT86c100A, dfe-530tx)
#ETH_DRV_1='winbond-840' # PCI: Winbond 840
#ETH_DRV_1='lanstreamer' # Token Ring: IBM Auto LANStreamer PCI Adapter
#ETH_DRV_1='olympic' # Token Ring: IBM cards (Pit/Pit-Phy/Olympic)
#ETH_DRV_1='ibmtr' # Token Ring: IBM 16/4
#ETH_DRV_1='pcnet_cs' # PCMCIA: NS8390-based cards (NE2000, DLINK etc)
#ETH_DRV_1='3c574_cs' # PCMCIA: 3Com 574
#ETH_DRV_1='3c575_cb' # PCMCIA: 3Com 575
#ETH_DRV_1='3c589_cs' # PCMCIA: 3Com 589
#ETH_DRV_1='airo' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='airo_cs' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='eepro100_cb' # PCMCIA: EtherExpress Pro 100
#ETH_DRV_1='epic_cb' # PCMCIA: SMC 83c170 EPIC/100
#ETH_DRV_1='ibmtr_cs' # PCMCIA: IBM Token Ring
#ETH_DRV_1='netwave_cs' # PCMCIA: Netwave AirSurfer Wireless LAN
#ETH_DRV_1='nmclan_cs' # PCMCIA: New Media Ethernet LAN
#ETH_DRV_1='ray_cs' # PCMCIA: Raylink wireless cards
#ETH_DRV_1='smc91c92_cs' # PCMCIA: SMC91c92-based cards
#ETH_DRV_1='tulip_cb' # PCMCIA: DEC 21040-family cards
#ETH_DRV_1='wavelan_cs' # PCMCIA: WaveLAN
#ETH_DRV_1='wavelan2_cs' # PCMCIA: WaveLAN2
#ETH_DRV_1='wvlan_cs' # PCMCIA: Lucent WaveLAN/IEEE 802.11
#ETH_DRV_1='xirc2ps_cs' # PCMCIA: Xircom: CE2, CEM28, CEM33, or CE3
#ETH_DRV_1='wl24_cs' # PCMCIA: ELSA Airlancer MC-2
#ETH_DRV_1='cs89x0_cs' # PCMCIA: IBM EtherJet Ethernet Adapter
#ETH_DRV_1='orinoco_cs' # PCMCIA: Orinoco Based WLAN Cards (NEW)
#ETH_DRV_1='axnet_cs' # PCMCIA: Asix AX88190 Fast Ethernet (NEW)
ETH_DRV_1_OPTION=''
#------------------------------------------------------------------------------
  1. Ether networks used with IP protocol:
#------------------------------------------------------------------------------
IP_ETH_N='2' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.20.106' #IP address of your nth ethernet card
IP_ETH_1_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_1_NETMASK='255.255.0.0' #netmask of your LAN
IP_ETH_2_NAME=''
IP_ETH_2_IPADDR='192.168.20.107' #IP address of your nth ethernet card
IP_ETH_2_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_2_NETMASK='255.255.0.0' #netmask of your LAN
#------------------------------------------------------------------------------
  1. Additional routes, optional
#------------------------------------------------------------------------------
IP_DEFAULT_GATEWAY='192.168.133.156' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
  1. Masquerading:
#------------------------------------------------------------------------------
MASQ_NETWORK='192.168.0.0/24' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='14' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_2='icq' #icq (use with caution!)
MASQ_MODULE_3='irc' #irc
MASQ_MODULE_4='pptp' #pptp
MASQ_MODULE_5='raudio' #raudio
MASQ_MODULE_6='vdolive' #vdolive
MASQ_MODULE_7='quake' #quake
MASQ_MODULE_8='cuseeme' #cuseeme
MASQ_MODULE_9='mms' #MSN-Filetransfer
MASQ_MODULE_10='pptp' #pptp
MASQ_MODULE_11='ipsec' #ipsec
MASQ_MODULE_12='dplay' #dplay (direct play)
MASQ_MODULE_13='msn-0.02' #msn zone (use version 0.01 or 0.02)
MASQ_MODULE_14='udp_dloose' #pseudo mod: some internet games need it
MASQ_FTP_PORT_N='0' #using ftp masq-module on different ports
MASQ_FTP_PORT_1='21' #standard ftp port
MASQ_FTP_PORT_2='2021' #additional port
#------------------------------------------------------------------------------
  1. Optional package: PORTFW
#
  1. If you set OPT_PORTFW='yes', you can also edit opt/etc/portfw.sh
#------------------------------------------------------------------------------
OPT_PORTFW='yes' #install port forwarding tools/modules
PORTFW_N='0' #how many portforwardings to set up
PORTFW_1='8080 192.168.6.15:80 tcp' #sample 1: forward ext. port 8080 to int.
  1. host 192.168.6.15 to port 80 (use tcp)
PORTFW_2='3000-3010 192.168.6.15 tcp' #sample 2: forward portrange to int. host
  1. 192.168.5.15 (use tcp)
#------------------------------------------------------------------------------
  1. Routing without masquerading
#------------------------------------------------------------------------------
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
  1. Routing: internal hosts to deny forwarding
#------------------------------------------------------------------------------
FORWARD_DENY_HOST_N='0' #number of denied hosts
FORWARD_DENY_HOST_1='192.168.6.5' #optional: 1st denied host
FORWARD_DENY_HOST_2='192.168.6.6' #optional: 2nd denied host
#------------------------------------------------------------------------------
  1. Routing: ports to reject/deny forwarding (from inside and outside!)
#------------------------------------------------------------------------------
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 REJECT' #deny/reject forwarding of netbios
FORWARD_TRUSTED_NETS='' #but allow forwarding between LANs
#------------------------------------------------------------------------------
  1. Firewall: ports to reject/deny from outside (all served ports)
#
  1. here we leave two ports untouched:
#
  1. 53 dns
  2. 113 auth
#------------------------------------------------------------------------------
FIREWALL_DENY_PORT_N='6' #no. of ports to reject/deny
FIREWALL_DENY_PORT_1='0:19 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_2='22:52 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_3='54:112 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_4='114:1023 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_5='5000:5001 REJECT' # imond/telmond ports: reject or deny
FIREWALL_DENY_PORT_6='8000 REJECT' # proxy access: reject or deny
FIREWALL_DENY_PORT_7='20012 REJECT' # vbox server access: reject or deny
FIREWALL_DENY_ICMP='no' #deny icmp (ping): yes or no
FIREWALL_LOG='yes' #log access to rejected/denied ports
#------------------------------------------------------------------------------
  1. Domain configuration:
#------------------------------------------------------------------------------
START_DNS='no' #start dns server: yes or no
DNS_FORWARDERS='192.76.144.66' #DNS servers of your provider, e.g. MSN
DNS_VERBOSE='no' #log queries in /usr/local/ens/ens.log
DOMAIN_NAME='wohnheim' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='7' #number of hosts in your domain
HOST_1='192.168.20.106 sugar 00:60:08:71:d5:1b'#1st host: ip and name
HOST_2='192.168.20.38 Stolus 00:20:18:53:0C:8C'#2nd host: ip and name
HOST_3='192.168.20.66 Zuhauserocker 00:10:4B:16:78:A5'#3rd host: ip and name
HOST_4='192.168.20.150 Zeissman 00:0B:DB:9D:9F:B2'#4th host: ip and name
HOST_5='192.168.20.168 Zeissman2 00:11:5B:34:83:93'#4th host: ip and name
HOST_6='192.168.15.243 DJEckhardt 00:C0:9F:31:00:AB'#4th host: ip and name
HOST_7='192.168.15.227 Forgetit 00:80:AD:3B:6B:70'#4th host: ip and name
#------------------------------------------------------------------------------
  1. Special DNS configuration
#------------------------------------------------------------------------------
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='firma.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
  1. imond configuration:
#------------------------------------------------------------------------------
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='' #imond-password, may be empty
IMOND_ADMIN_PASS='' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='no' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='yes' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
  1. Generic circuit configuration:
#------------------------------------------------------------------------------
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
  1. optional package: syslogd
#------------------------------------------------------------------------------
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
  1. optional package: klogd
#------------------------------------------------------------------------------
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
  1. optional package: y2k correction
#------------------------------------------------------------------------------
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='yes' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
  1. Optional package: PNP
#------------------------------------------------------------------------------
OPT_PNP='no' #install isapnp tools: yes or no

Content-ID: 19471

Url: https://administrator.de/contentid/19471

Ausgedruckt am: 22.11.2024 um 17:11 Uhr

filippg
filippg 10.11.2005 um 17:34:52 Uhr
Goto Top
Meine letzten Fli4l-Versuche sind ja schon lange her. Aber brauchts den denn? MAC - Adressen lassen sich fast genau so leicht fälschen (bzw. einfach entsprechend einstellen) wie IP-Adressen. Folglich wäre eine entsprechende Regel auf der Firewall der Fritzbox etwa genausosicher. Wirklich sicher ist das halt alles nicht, da bräuchte man irgendwie einen VPN-Tunnel auf den Fritzbox (bzw. in ein abgeschottetes Netz, in dem sie steht). Also: Wohnheimsnetz <- Router der nur VPN durchlässt und VPN-Tunnelendpunkt ist) -> "Rounternetz" <- Fritzbox -> Internet.

Filipp
Mario-Admin
Mario-Admin 14.11.2005 um 20:22:39 Uhr
Goto Top
Hallo

hier mal meine base achtung version ist die 2.1.2
aber mit der base alleine kann ich nicht viel anfangen wenn du nicht zurecht kommst, kannste dich ja noch mal melden
die ip adressen,passwörter usw. sind natürlich nicht diese, die ich im einsatz habe

frage wie kommst du auf deine ip adressen eth1 & eth2 ?? eth1 = 192.168.20.100 und eth2 = 192.168.6.101 in der base stehen doch 192.168.20.106 bzw 107 ?? und warum ein default gateway

gruß mario


##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.1.2
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.55 2003/01/26 14:36:49 harri Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
  1. General settings:
#------------------------------------------------------------------------------
HOSTNAME='fli4l' #name of fli4l router
PASSWORD='fli4l' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
PART_OPT='auto' #disk-partition or size of ramdisk or auto
MOUNT_OPT='rw' #mount opt device: ro, rw
UPDATE_MODE='full' #add, cfg, full, none, see documentation
TIME_INFO='MEZ-1MESZ,M3.5.0,M10.5.0'
  1. description of local time
  2. zone, don't touch without reading
  3. documentation
#------------------------------------------------------------------------------
  1. Ethernet card drivers:
#
  1. Driver Bus Description
#
  1. 3c503 ISA 3COM EtherLinkII (3c503)
  2. 3c505 ISA 3COM Etherlink Plus (3c505)
  3. 3c507 ISA 3COM Etherlink 16 (3c507)
  4. 3c509 ISA 3COM EtherLinkIII (3c509)
  5. 3c515 ISA 3COM EtherLink XL ISA (3c515)
  6. 3c59x PCI 3COM Vortex/Boomerang 3c59x,3c900,3c905
  7. 8139cp PCI RealTek 8139C+
  8. 8139too PCI RealTek 8129/8139 10/100 MB (NEW)
  9. 82596 Apricot Xen-II on board Ethernet
  10. ac3200 EISA Ansel Communications AC3200 EISA
  11. acenic PCI Alteon AceNIC Gigabit Ethernet
  12. at1700 ISA AT1700 (Fujitsu 86965) ISA
  13. cs89x0 ISA IBM Etherjet, cs89x0 based Cards (Option io=0xnnn necessary!)
  14. de4x5 PCI/EISA Digital DE425, DE434, DE435, DE450, DE500
  15. depca ISA DEPCA, DE10x, DE200, DE201, DE202, DE422
  16. dgrs PCI Digi International RightSwitch PCI/EISA
  17. dl2k PCI D-Link DL2000-based Gigabit Ethernet Adapter
  18. dmfe PCI DM9102 compatible PCI cards from Davicom
  19. e1000 PCI Intel EtherExpress PRO/1000 Gigabit Ethernet
  20. e100 PCI Intel's original driver for EEPRO100
  21. e2100 ISA Cabletron E21xx ISA
  22. eepro100 PCI Intel EtherExpressPro PCI 10+/100B/100+
  23. eepro ISA Intel EtherExpress Pro/10
  24. eexpress ISA EtherExpress16 ISA
  25. epic100 PCI SMC EPIC/100 (EtherPower II) PCI
  26. eth16i ISA/EISA ICL EtherTeam 16i/32
  27. ewrk3 ISA EtherWORKS 3 ISA (DE203, DE204, DE205)
  28. fealnx PCI ASOUND LAN 8139 card - not RTL8139 (NEW)
  29. hamachi PCI GNIC-II Gigabit Ethernet
  30. hp100 ISA/EISA/PCI HP 10/100VG PCLAN (ISA, EISA, PCI)
  31. hp ISA HP PCLAN (27245, 27xxx) ISA
  32. hp-plus ISA HP PCLAN+ (27247B and 27252A) ISA
  33. lance ISA AMD LANCE and PCnet (AT1500, NE2100) ISA
  34. lp486e Intel Professional Workstation/panther ethernet driver
  35. natsemi PCI National Semiconductor
  36. ne2k-pci PCI NE2000 PCI clone (eg. Realtek 8029, Winbond 89c940)
  37. ne ISA NE2000 ISA clone (eg. Realtek 8019,
  38. Accton 16xx, NatSemi 8390, UMC 9003/9008)
  39. ni5010 MiCom-Interlan NI5010
  40. ni52 NI5210 card (i82586 Ethernet chip)
  41. ni65 ni6510 (am7990 'lance' chip)
  42. ns83820 PCI cards with National Semiconductor 83820 chip
  43. pcnet32 PCI AMD PCI PCnet32
  44. sis900 PCI SiS 900/7016
  45. sk98lin PCI SysKonnect Gigabit Ethernet Server Adapters
  46. smc9194 SMC's 9000 series of Ethernet cards
  47. smc-ultra ISA SMC ULTRA
  48. starfire PCI Starfire
  49. sundance PCI DFE-550FX or DFE-530TXS (NEW)
  50. tg3 PCI Broadcom Tigon3
  51. tlan PCI TI ThunderLAN (Compaq Netelligent ...)
  52. tulip PCI DECchip Tulip (dc21x4x) PCI
  53. via-rhine PCI VIA Rhine PCI (3043, VT86c100A, dfe-530tx)
  54. wd ISA SMC WD80*3
  55. winbond-840 PCI Winbond 840
  56. yellowfin PCI Packet Engines G-NIC PCI Gigabit Eth Adapter
#
  1. Drivers below need the Package pcmcia installed:
#
  1. hostap_pci PCI Prism 2.5 based PCI Wlan Cards
  2. hostap_plx PCI Prism 2 and 3 based PCMCIA-WLan Cards in PLX-Adapter
#
  1. 3c574_cs PCMCIA 3Com 574
  2. 3c575_cb PCMCIA 3Com 575
  3. 3c589_cs PCMCIA 3Com 589
  4. airo_cs PCMCIA Airo 4500 & 4800 series cards
  5. axnet_cs PCMCIA Asix AX88190 Fast Ethernet (NEW)
  6. eepro100_cb PCMCIA EtherExpress Pro 100
  7. epic_cb PCMCIA SMC 83c170 EPIC/100
  8. fmvj18x_cs PCMCIA Fujitsu FMV-J181/182 Ethernet (NEW)
  9. netwave_cs PCMCIA Netwave AirSurfer Wireless LAN
  10. nmclan_cs PCMCIA New Media Ethernet LAN
  11. pcnet_cs PCMCIA NS8390-based cards (NE2000, DLINK etc)
  12. ray_cs PCMCIA Raylink wireless cards
  13. realtek_cb PCMCIA Realtek 8139 Based PCMCIA Cards (D-Link DFE-690TXD) (NEW)
  14. smc91c92_cs PCMCIA SMC91c92-based cards
  15. tulip_cb PCMCIA DEC 21040-family cards
  16. xirc2ps_cs PCMCIA Xircom: CE2, CEM28, CEM33, or CE3
#
  1. WLAN-Card Drivers IEEE802.11b:
#
  1. orinoco_cs PCMCIA Generic Driver for most WLAN-Cards
  2. hostap_cs PCMCIA PrismII/2.5/3 based Cards - supports AP-Mode (NEW)
#
  1. Special Drivers for some (mostly older) cards - try orinoco_cs first:
#
  1. wavelan_cs PCMCIA WaveLAN
  2. wavelan2_cs PCMCIA WaveLAN2
  3. wl24_cs PCMCIA ELSA Airlancer MC-2 (to be removed in future)
  4. wl24_n_cs PCMCIA ELSA Airlancer MC-2 (alternative, supports WEP!)(NEW)
  5. wvlan_cs PCMCIA Lucent WaveLAN/IEEE 802.11
#
  1. USB-Card Drivers
#
  1. pegasus teledat Fast Ethernet USB
#
  1. kaweth 3Com 3C19250
  2. ADS USB-10BT
  3. ATEN USB Ethernet
  4. ASANTE USB To Ethernet Adapter
  5. AOX Endpoints USB Ethernet
  6. Correga K.K.
  7. D-Link DSB-650C and DU-E10
  8. Entrega / Portgear E45
  9. I-O DATA USB-ET/T
  10. Jaton USB Ethernet Device Adapter
  11. Kingston Technology USB Ethernet Adapter
  12. Linksys USB10T
  13. Mobility USB-Ethernet Adapter
  14. NetGear EA-101
  15. Peracom Enet and Enet2
  16. Portsmith Express Ethernet Adapter
  17. Shark Pocket Adapter
  18. SMC 2202USB
  19. Sony Vaio port extender
  20. rtl8150 RTL8150-based USB-Ethernet-Cards
  21. catc Belkin F5U111
  22. CATC NetMate
  23. CATC NetMate II
  24. smartBridges smartNIC
#
  1. DSL-Modems shown as Ethernetcards
#
  1. CDCEther Ericsson PipeRider (all variants)
  2. Motorola (DM100 and SB4100)
  3. Broadcom Cable Modem (reference design)
  4. Toshiba PCX1100U and possibly other cable modems
  5. Sharp Zaurus SL-5000D
#
  1. USB-to-USB-network-cable
#
  1. usbnet Driver for usb-to-usb networklinks
#
#------------------------------------------------------------------------------
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
ETH_DRV_1='ne' #1st driver: name (e.g. NE2000 PCI clone)
ETH_DRV_1_OPTION='io=0x280,0x240 irq=10,15'
  1. 1st driver: additional option
#ETH_DRV_2='ne' # 2nd driver: name (e.g. NE2000 ISA clone)
#ETH_DRV_2_OPTION='io=0x240 irq=15'
#------------------------------------------------------------------------------
  1. Ether networks used with IP protocol:
#------------------------------------------------------------------------------
IP_ETH_N='1' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.7.1' #IP address of your nth ethernet card
IP_ETH_1_NETMASK='255.255.255.0' #netmask of your LAN
#------------------------------------------------------------------------------
  1. Additional routes, optional
#------------------------------------------------------------------------------
IP_DEFAULT_GATEWAY='' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
  1. Masquerading:
#------------------------------------------------------------------------------
MASQ_NETWORK='192.168.7.1/2' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='1' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_1_OPTION='' #options, see documentation
MASQ_MODULE_2='irc' #irc
MASQ_MODULE_2_OPTION='' #options, see documentation
#------------------------------------------------------------------------------
  1. Optional package: PORTFW
#------------------------------------------------------------------------------
OPT_PORTFW='no' #install port forwarding tools/modules
PORTFW_N='1' #how many portforwardings to set up
PORTFW_1_SOURCE='8080' #sample 1: forward ext. port 8080
PORTFW_1_TARGET='192.168.6.15:80' #...to int. host 192.168.6.15 port 80
PORTFW_1_PROTOCOL='tcp' #...using tcp
PORTFW_2_SOURCE='3000-3010' #sample 2: forward portrange 3000-3010
PORTFW_2_TARGET='192.168.6.15' #...to int. host 192.168.6.15
PORTFW_2_PROTOCOL='tcp' #...using tcp
#------------------------------------------------------------------------------
  1. Routing without masquerading
#------------------------------------------------------------------------------
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
  1. Routing: internal hosts to allow/deny forwarding
#
  1. FORWARD_HOST_WHITE='no' describes a black list (forbidden)
  2. FORWARD_HOST_WHITE='yes' describes a white list (allowed)
#
  1. Example:
  2. FORWARD_HOST_WHITE='no' and FORWARD_HOST_N='0':
  3. -> forwarding of 0 hosts is denied
  4. -> forwarding of all hosts is allowed.
#------------------------------------------------------------------------------
FORWARD_HOST_WHITE='no' #no: black list, yes: white list
FORWARD_HOST_N='0' #number of allowed/denied hosts
FORWARD_HOST_1='192.168.6.5' #optional: 1st allowed/denied host
FORWARD_HOST_2='192.168.6.6' #optional: 2nd allowed/denied host
#------------------------------------------------------------------------------
  1. Routing: ports to reject/deny forwarding (from inside and outside!)
#------------------------------------------------------------------------------
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 reject' #drop/reject forwarding of netbios
TRUSTED_NETS='' #but optionally allow forwarding between LANs
#------------------------------------------------------------------------------
  1. Filter: accept connections from outside to several ports (served ports)
#------------------------------------------------------------------------------
INPUT_POLICY='reject' #policy for input chain: reject or drop
INPUT_ACCEPT_PORT_N='1' #no. of ports to accept from outside
INPUT_ACCEPT_PORT_1='22 TCP' #e.g. allow connection to ssh service
DENY_ICMP='no' #deny icmp (ping): yes or no
PACKETFILTER_LOG='no' #log access to rejected/denied ports
#------------------------------------------------------------------------------
  1. Domain configuration:
#------------------------------------------------------------------------------
START_DNS='yes' #start dns server: yes or no
DNS_FORWARDERS='194.25.0.125 217.237.150.97 217.237.151.225 217.237.149.161 217.237.151.97 194.64.31.2 192.76.144.66'
  1. DNS servers of your provider, e.g. MSN
DNS_VERBOSE='no' #log queries in /usr/local/ens/ens.log
DOMAIN_NAME='*' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='2' #number of hosts in your domain
HOST_1_NAME='fli4l' #1st host: ip and name
HOST_1_IP='192.168.7.1'
#HOST_1_ALIAS_N='0' # number of optional alias names
#HOST_1_ALIAS_1='router.lan.fli4l' # optional alias name
#HOST_1_ALIAS_2='gateway.lan.fli4l' # optional alias name
HOST_2_NAME='ISA-Server' #2st host: ip and name
HOST_2_IP='192.168.7.2'
#HOST_2_MAC='de:ad:af:fe:07:19' # optional mac address used by dhcpd
HOST_3_NAME='S
*' #3st host: ip and name
HOST_3_IP='*'
#HOST_3_MAC='de:ad:be:ef:07:19' # optional mac address used by dhcpd
HOST_4_NAME='
' #4st host: ip and name
HOST_4_IP='*'
#HOST_4_MAC='de:ad:be:ef:08:15' # optional mac address used by dhcpd
#------------------------------------------------------------------------------
  1. Special DNS configuration
#------------------------------------------------------------------------------
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
  1. imond configuration:
#------------------------------------------------------------------------------
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='
l' #imond-password, may be empty
IMOND_ADMIN_PASS='*' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='yes' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='no' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
  1. Generic circuit configuration:
#------------------------------------------------------------------------------
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
  1. optional package: syslogd
#------------------------------------------------------------------------------
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
  1. optional package: klogd
#------------------------------------------------------------------------------
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
  1. optional package: y2k correction
#------------------------------------------------------------------------------
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
  1. Optional package: PNP
#------------------------------------------------------------------------------
OPT_PNP='no' #install isapnp tools: yes or no
#IP_ETH_1_NETWORK=''
#FIREWALL_DENY_ICMP='yes'
#FIREWALL_LOG='no'
#FIREWALL_DENY_PORT_1='0:52 54:112'
#FIREWALL_DENY_PORT_2='114:1023 5000:5001'
#FIREWALL_DENY_PORT_3='8000 20012'
#FIREWALL_DENY_PORT_N='3'