Fli4l Router als MAc-Filter vor Fritzbox im Studentenwohnheimnetzwerk
Hallo, ich wohne in einem Studentenwohnheim das komplett vernetzt ist. Nach der Anmeldung dort bekommt man automatisch eine feste IP zugewiesen mit der man dann auch surfen kann, DNS läuft auch über ddas Wohnheim. Da das Wohnheim Internet aber viel zu langsam ist(ca.150 Mitbewohner an ca 4Mbit) habe ich zusammen mit ein paar Kommilitonen DSL beantragt. Wir habe dazu eine Fritzbox bekommen. Bis jetzt haben wir dann unsere feste Ip manuell eingetragen und die Fritzbox als Gateway. Nun kann aber jeder im Wohheim unser Gateway(DSL) mitbenutzen.Nun möchten wir zwischen Wohnheim und der Fritzbox einen FLI4L Router mit Mac-Filter einsetzen,der nur uns Zugang zum Internet erlaubt.Aber wir bekommen den Router nicht zum laufen. Hier mal unsere Base.txt vielleicht kann uns jemand helfen.
Das MAC-Paket ist noch nicht in der Base drin.
##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.0.8
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.20.2.8 2002/12/02 15:21:02 rresch Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
HOSTNAME='sugar' #name of fli4l router
PASSWORD='0815' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
RAMSIZE='2048' #size of ramdisk for unzipped opt.tgz
PART_OPT='hda2' #location of opt-files? ram1 or disk-partition
UPDATE_MODE='full' #add, cfg, full, none, see documentation
#------------------------------------------------------------------------------
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
#ETH_DRV_1='3c505' # ISA: 3COM Etherlink Plus (3c505)
#ETH_DRV_1='3c507' # ISA: 3COM Etherlink 16 (3c507)
#ETH_DRV_1='3c509' # ISA: 3COM EtherLinkIII (3c509)
#ETH_DRV_1='3c515' # ISA: 3COM EtherLink XL ISA (3c515)
#ETH_DRV_1='3c59x' # PCI: 3COM Vortex/Boomerang 3c59x,3c900,3c905
#ETH_DRV_1='82596' # Apricot Xen-II on board Ethernet
#ETH_DRV_1='3c503' # ISA: 3COM EtherLinkII (3c503)
#ETH_DRV_1='e2100' # ISA: Cabletron E21xx ISA
#ETH_DRV_1='hp' # ISA: HP PCLAN (27245, 27xxx) ISA
#ETH_DRV_1='hp-plus' # ISA: HP PCLAN+ (27247B and 27252A) ISA
ETH_DRV_1='3c509' #ISA: NE2000 ISA clone (eg. Realtek 8019,
#ETH_DRV_1='smc-ultra32' # EISA: SMC ULTRA32 (NEW)
#ETH_DRV_1='wd' # ISA: SMC WD80*3
#ETH_DRV_1='at1700' # ISA: AT1700 (Fujitsu 86965) ISA
#ETH_DRV_1='cs89x0' # ISA: IBM Etherjet, cs89x0 based Cards (Option io=0xnnn necessary!)
#ETH_DRV_1='de4x5' # PCI/EISA: Digital DE425, DE434, DE435, DE450, DE500
#ETH_DRV_1='depca' # ISA: DEPCA, DE10x, DE200, DE201, DE202, DE422
#ETH_DRV_1='dgrs' # PCI: Digi International RightSwitch PCI/EISA
#ETH_DRV_1='dmfe' # PCI: DM9102 compatible PCI cards from Davicom
#ETH_DRV_1='lp486e' # ISA: Intel Professional Workstation/panther 82596
#ETH_DRV_1='eepro' # ISA: Intel EtherExpress Pro/10
#ETH_DRV_1='eepro100' # PCI: Intel EtherExpressPro PCI 10+/100B/100+
#ETH_DRV_1='eexpress' # ISA: EtherExpress16 ISA
#ETH_DRV_1='epic100' # PCI: SMC EPIC/100 (EtherPower II) PCI
#ETH_DRV_1='eth16i' # ISA/EISA: ICL EtherTeam 16i/32
#ETH_DRV_1='ewrk3' # ISA: EtherWORKS 3 ISA (DE203, DE204, DE205)
#ETH_DRV_1='fa3xx' # PCI: NETGEAR FA3XX PCI Ethernet Controller
#ETH_DRV_1='fealnx' # PCI: ASOUND LAN 8139 card - not RTL8139 (NEW)
#ETH_DRV_1='hp100' # ISA/EISA/PCI: HP 10/100VG PCLAN (ISA, EISA, PCI)
#ETH_DRV_1='lance' # ISA: AMD LANCE and PCnet (AT1500, NE2100) ISA
#ETH_DRV_1='old_tulip' # PCI: Old DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='pcnet32' # PCI: AMD PCI PCnet32
#ETH_DRV_1='rtl8139-orig' # PCI: RealTek 8129/8139 (not 8019/8029!)
ETH_DRV_1='rtl8139' # PCI: RealTek 8129/8139 (not 8019/8029!) (NEW)
#ETH_DRV_1='8139too' # PCI: RealTek 8139 10/100 MB (NEW)
#ETH_DRV_1='sis900' # PCI: SiS 900/7016
#ETH_DRV_1='sundance' # PCI: DFE-550FX or DFE-530TXS (NEW)
#ETH_DRV_1='tlan' # PCI: TI ThunderLAN (Compaq Netelligent ...)
#ETH_DRV_1='tulip' # PCI: DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='natsemi' # PCI: Nat Semi
#ETH_DRV_1='starfire' # PCI: Starfire
#ETH_DRV_1='via-rhine' # PCI: VIA Rhine PCI (3043, VT86c100A, dfe-530tx)
#ETH_DRV_1='winbond-840' # PCI: Winbond 840
#ETH_DRV_1='lanstreamer' # Token Ring: IBM Auto LANStreamer PCI Adapter
#ETH_DRV_1='olympic' # Token Ring: IBM cards (Pit/Pit-Phy/Olympic)
#ETH_DRV_1='ibmtr' # Token Ring: IBM 16/4
#ETH_DRV_1='pcnet_cs' # PCMCIA: NS8390-based cards (NE2000, DLINK etc)
#ETH_DRV_1='3c574_cs' # PCMCIA: 3Com 574
#ETH_DRV_1='3c575_cb' # PCMCIA: 3Com 575
#ETH_DRV_1='3c589_cs' # PCMCIA: 3Com 589
#ETH_DRV_1='airo' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='airo_cs' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='eepro100_cb' # PCMCIA: EtherExpress Pro 100
#ETH_DRV_1='epic_cb' # PCMCIA: SMC 83c170 EPIC/100
#ETH_DRV_1='ibmtr_cs' # PCMCIA: IBM Token Ring
#ETH_DRV_1='netwave_cs' # PCMCIA: Netwave AirSurfer Wireless LAN
#ETH_DRV_1='nmclan_cs' # PCMCIA: New Media Ethernet LAN
#ETH_DRV_1='ray_cs' # PCMCIA: Raylink wireless cards
#ETH_DRV_1='smc91c92_cs' # PCMCIA: SMC91c92-based cards
#ETH_DRV_1='tulip_cb' # PCMCIA: DEC 21040-family cards
#ETH_DRV_1='wavelan_cs' # PCMCIA: WaveLAN
#ETH_DRV_1='wavelan2_cs' # PCMCIA: WaveLAN2
#ETH_DRV_1='wvlan_cs' # PCMCIA: Lucent WaveLAN/IEEE 802.11
#ETH_DRV_1='xirc2ps_cs' # PCMCIA: Xircom: CE2, CEM28, CEM33, or CE3
#ETH_DRV_1='wl24_cs' # PCMCIA: ELSA Airlancer MC-2
#ETH_DRV_1='cs89x0_cs' # PCMCIA: IBM EtherJet Ethernet Adapter
#ETH_DRV_1='orinoco_cs' # PCMCIA: Orinoco Based WLAN Cards (NEW)
#ETH_DRV_1='axnet_cs' # PCMCIA: Asix AX88190 Fast Ethernet (NEW)
ETH_DRV_1_OPTION=''
#------------------------------------------------------------------------------
IP_ETH_N='2' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.20.106' #IP address of your nth ethernet card
IP_ETH_1_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_1_NETMASK='255.255.0.0' #netmask of your LAN
IP_ETH_2_NAME=''
IP_ETH_2_IPADDR='192.168.20.107' #IP address of your nth ethernet card
IP_ETH_2_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_2_NETMASK='255.255.0.0' #netmask of your LAN
#------------------------------------------------------------------------------
IP_DEFAULT_GATEWAY='192.168.133.156' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
MASQ_NETWORK='192.168.0.0/24' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='14' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_2='icq' #icq (use with caution!)
MASQ_MODULE_3='irc' #irc
MASQ_MODULE_4='pptp' #pptp
MASQ_MODULE_5='raudio' #raudio
MASQ_MODULE_6='vdolive' #vdolive
MASQ_MODULE_7='quake' #quake
MASQ_MODULE_8='cuseeme' #cuseeme
MASQ_MODULE_9='mms' #MSN-Filetransfer
MASQ_MODULE_10='pptp' #pptp
MASQ_MODULE_11='ipsec' #ipsec
MASQ_MODULE_12='dplay' #dplay (direct play)
MASQ_MODULE_13='msn-0.02' #msn zone (use version 0.01 or 0.02)
MASQ_MODULE_14='udp_dloose' #pseudo mod: some internet games need it
MASQ_FTP_PORT_N='0' #using ftp masq-module on different ports
MASQ_FTP_PORT_1='21' #standard ftp port
MASQ_FTP_PORT_2='2021' #additional port
#------------------------------------------------------------------------------
OPT_PORTFW='yes' #install port forwarding tools/modules
PORTFW_N='0' #how many portforwardings to set up
PORTFW_1='8080 192.168.6.15:80 tcp' #sample 1: forward ext. port 8080 to int.
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
FORWARD_DENY_HOST_N='0' #number of denied hosts
FORWARD_DENY_HOST_1='192.168.6.5' #optional: 1st denied host
FORWARD_DENY_HOST_2='192.168.6.6' #optional: 2nd denied host
#------------------------------------------------------------------------------
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 REJECT' #deny/reject forwarding of netbios
FORWARD_TRUSTED_NETS='' #but allow forwarding between LANs
#------------------------------------------------------------------------------
FIREWALL_DENY_PORT_N='6' #no. of ports to reject/deny
FIREWALL_DENY_PORT_1='0:19 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_2='22:52 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_3='54:112 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_4='114:1023 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_5='5000:5001 REJECT' # imond/telmond ports: reject or deny
FIREWALL_DENY_PORT_6='8000 REJECT' # proxy access: reject or deny
FIREWALL_DENY_PORT_7='20012 REJECT' # vbox server access: reject or deny
FIREWALL_DENY_ICMP='no' #deny icmp (ping): yes or no
FIREWALL_LOG='yes' #log access to rejected/denied ports
#------------------------------------------------------------------------------
START_DNS='no' #start dns server: yes or no
DNS_FORWARDERS='192.76.144.66' #DNS servers of your provider, e.g. MSN
DNS_VERBOSE='no' #log queries in /usr/local/ens/ens.log
DOMAIN_NAME='wohnheim' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='7' #number of hosts in your domain
HOST_1='192.168.20.106 sugar 00:60:08:71:d5:1b'#1st host: ip and name
HOST_2='192.168.20.38 Stolus 00:20:18:53:0C:8C'#2nd host: ip and name
HOST_3='192.168.20.66 Zuhauserocker 00:10:4B:16:78:A5'#3rd host: ip and name
HOST_4='192.168.20.150 Zeissman 00:0B:DB:9D:9F:B2'#4th host: ip and name
HOST_5='192.168.20.168 Zeissman2 00:11:5B:34:83:93'#4th host: ip and name
HOST_6='192.168.15.243 DJEckhardt 00:C0:9F:31:00:AB'#4th host: ip and name
HOST_7='192.168.15.227 Forgetit 00:80:AD:3B:6B:70'#4th host: ip and name
#------------------------------------------------------------------------------
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='firma.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='' #imond-password, may be empty
IMOND_ADMIN_PASS='' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='no' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='yes' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='yes' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
OPT_PNP='no' #install isapnp tools: yes or no
Das MAC-Paket ist noch nicht in der Base drin.
##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.0.8
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.20.2.8 2002/12/02 15:21:02 rresch Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
- General settings:
HOSTNAME='sugar' #name of fli4l router
PASSWORD='0815' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
RAMSIZE='2048' #size of ramdisk for unzipped opt.tgz
- the variables MOUNT_OPT, PART_OPT and UPDATE_MODE will be ignored if
- RAMSIZE is not empty. see docu
PART_OPT='hda2' #location of opt-files? ram1 or disk-partition
UPDATE_MODE='full' #add, cfg, full, none, see documentation
#------------------------------------------------------------------------------
- Ethernet card drivers:
- uncomment your ethernet card
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
#ETH_DRV_1='3c505' # ISA: 3COM Etherlink Plus (3c505)
#ETH_DRV_1='3c507' # ISA: 3COM Etherlink 16 (3c507)
#ETH_DRV_1='3c509' # ISA: 3COM EtherLinkIII (3c509)
#ETH_DRV_1='3c515' # ISA: 3COM EtherLink XL ISA (3c515)
#ETH_DRV_1='3c59x' # PCI: 3COM Vortex/Boomerang 3c59x,3c900,3c905
#ETH_DRV_1='82596' # Apricot Xen-II on board Ethernet
#ETH_DRV_1='3c503' # ISA: 3COM EtherLinkII (3c503)
#ETH_DRV_1='e2100' # ISA: Cabletron E21xx ISA
#ETH_DRV_1='hp' # ISA: HP PCLAN (27245, 27xxx) ISA
#ETH_DRV_1='hp-plus' # ISA: HP PCLAN+ (27247B and 27252A) ISA
ETH_DRV_1='3c509' #ISA: NE2000 ISA clone (eg. Realtek 8019,
- Accton 16xx, NatSemi 8390, UMC 9003/9008)
- Winbond 89c940)
#ETH_DRV_1='smc-ultra32' # EISA: SMC ULTRA32 (NEW)
#ETH_DRV_1='wd' # ISA: SMC WD80*3
#ETH_DRV_1='at1700' # ISA: AT1700 (Fujitsu 86965) ISA
#ETH_DRV_1='cs89x0' # ISA: IBM Etherjet, cs89x0 based Cards (Option io=0xnnn necessary!)
#ETH_DRV_1='de4x5' # PCI/EISA: Digital DE425, DE434, DE435, DE450, DE500
#ETH_DRV_1='depca' # ISA: DEPCA, DE10x, DE200, DE201, DE202, DE422
#ETH_DRV_1='dgrs' # PCI: Digi International RightSwitch PCI/EISA
#ETH_DRV_1='dmfe' # PCI: DM9102 compatible PCI cards from Davicom
#ETH_DRV_1='lp486e' # ISA: Intel Professional Workstation/panther 82596
#ETH_DRV_1='eepro' # ISA: Intel EtherExpress Pro/10
#ETH_DRV_1='eepro100' # PCI: Intel EtherExpressPro PCI 10+/100B/100+
#ETH_DRV_1='eexpress' # ISA: EtherExpress16 ISA
#ETH_DRV_1='epic100' # PCI: SMC EPIC/100 (EtherPower II) PCI
#ETH_DRV_1='eth16i' # ISA/EISA: ICL EtherTeam 16i/32
#ETH_DRV_1='ewrk3' # ISA: EtherWORKS 3 ISA (DE203, DE204, DE205)
#ETH_DRV_1='fa3xx' # PCI: NETGEAR FA3XX PCI Ethernet Controller
#ETH_DRV_1='fealnx' # PCI: ASOUND LAN 8139 card - not RTL8139 (NEW)
#ETH_DRV_1='hp100' # ISA/EISA/PCI: HP 10/100VG PCLAN (ISA, EISA, PCI)
#ETH_DRV_1='lance' # ISA: AMD LANCE and PCnet (AT1500, NE2100) ISA
#ETH_DRV_1='old_tulip' # PCI: Old DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='pcnet32' # PCI: AMD PCI PCnet32
#ETH_DRV_1='rtl8139-orig' # PCI: RealTek 8129/8139 (not 8019/8029!)
ETH_DRV_1='rtl8139' # PCI: RealTek 8129/8139 (not 8019/8029!) (NEW)
#ETH_DRV_1='8139too' # PCI: RealTek 8139 10/100 MB (NEW)
#ETH_DRV_1='sis900' # PCI: SiS 900/7016
#ETH_DRV_1='sundance' # PCI: DFE-550FX or DFE-530TXS (NEW)
#ETH_DRV_1='tlan' # PCI: TI ThunderLAN (Compaq Netelligent ...)
#ETH_DRV_1='tulip' # PCI: DECchip Tulip (dc21x4x) PCI
#ETH_DRV_1='natsemi' # PCI: Nat Semi
#ETH_DRV_1='starfire' # PCI: Starfire
#ETH_DRV_1='via-rhine' # PCI: VIA Rhine PCI (3043, VT86c100A, dfe-530tx)
#ETH_DRV_1='winbond-840' # PCI: Winbond 840
#ETH_DRV_1='lanstreamer' # Token Ring: IBM Auto LANStreamer PCI Adapter
#ETH_DRV_1='olympic' # Token Ring: IBM cards (Pit/Pit-Phy/Olympic)
#ETH_DRV_1='ibmtr' # Token Ring: IBM 16/4
#ETH_DRV_1='pcnet_cs' # PCMCIA: NS8390-based cards (NE2000, DLINK etc)
#ETH_DRV_1='3c574_cs' # PCMCIA: 3Com 574
#ETH_DRV_1='3c575_cb' # PCMCIA: 3Com 575
#ETH_DRV_1='3c589_cs' # PCMCIA: 3Com 589
#ETH_DRV_1='airo' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='airo_cs' # PCMCIA: Airo 4500 & 4800 series cards
#ETH_DRV_1='eepro100_cb' # PCMCIA: EtherExpress Pro 100
#ETH_DRV_1='epic_cb' # PCMCIA: SMC 83c170 EPIC/100
#ETH_DRV_1='ibmtr_cs' # PCMCIA: IBM Token Ring
#ETH_DRV_1='netwave_cs' # PCMCIA: Netwave AirSurfer Wireless LAN
#ETH_DRV_1='nmclan_cs' # PCMCIA: New Media Ethernet LAN
#ETH_DRV_1='ray_cs' # PCMCIA: Raylink wireless cards
#ETH_DRV_1='smc91c92_cs' # PCMCIA: SMC91c92-based cards
#ETH_DRV_1='tulip_cb' # PCMCIA: DEC 21040-family cards
#ETH_DRV_1='wavelan_cs' # PCMCIA: WaveLAN
#ETH_DRV_1='wavelan2_cs' # PCMCIA: WaveLAN2
#ETH_DRV_1='wvlan_cs' # PCMCIA: Lucent WaveLAN/IEEE 802.11
#ETH_DRV_1='xirc2ps_cs' # PCMCIA: Xircom: CE2, CEM28, CEM33, or CE3
#ETH_DRV_1='wl24_cs' # PCMCIA: ELSA Airlancer MC-2
#ETH_DRV_1='cs89x0_cs' # PCMCIA: IBM EtherJet Ethernet Adapter
#ETH_DRV_1='orinoco_cs' # PCMCIA: Orinoco Based WLAN Cards (NEW)
#ETH_DRV_1='axnet_cs' # PCMCIA: Asix AX88190 Fast Ethernet (NEW)
ETH_DRV_1_OPTION=''
#------------------------------------------------------------------------------
- Ether networks used with IP protocol:
IP_ETH_N='2' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.20.106' #IP address of your nth ethernet card
IP_ETH_1_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_1_NETMASK='255.255.0.0' #netmask of your LAN
IP_ETH_2_NAME=''
IP_ETH_2_IPADDR='192.168.20.107' #IP address of your nth ethernet card
IP_ETH_2_NETWORK='192.168.0.0' #network of your LAN
IP_ETH_2_NETMASK='255.255.0.0' #netmask of your LAN
#------------------------------------------------------------------------------
- Additional routes, optional
IP_DEFAULT_GATEWAY='192.168.133.156' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
- Masquerading:
MASQ_NETWORK='192.168.0.0/24' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='14' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_2='icq' #icq (use with caution!)
MASQ_MODULE_3='irc' #irc
MASQ_MODULE_4='pptp' #pptp
MASQ_MODULE_5='raudio' #raudio
MASQ_MODULE_6='vdolive' #vdolive
MASQ_MODULE_7='quake' #quake
MASQ_MODULE_8='cuseeme' #cuseeme
MASQ_MODULE_9='mms' #MSN-Filetransfer
MASQ_MODULE_10='pptp' #pptp
MASQ_MODULE_11='ipsec' #ipsec
MASQ_MODULE_12='dplay' #dplay (direct play)
MASQ_MODULE_13='msn-0.02' #msn zone (use version 0.01 or 0.02)
MASQ_MODULE_14='udp_dloose' #pseudo mod: some internet games need it
MASQ_FTP_PORT_N='0' #using ftp masq-module on different ports
MASQ_FTP_PORT_1='21' #standard ftp port
MASQ_FTP_PORT_2='2021' #additional port
#------------------------------------------------------------------------------
- Optional package: PORTFW
- If you set OPT_PORTFW='yes', you can also edit opt/etc/portfw.sh
OPT_PORTFW='yes' #install port forwarding tools/modules
PORTFW_N='0' #how many portforwardings to set up
PORTFW_1='8080 192.168.6.15:80 tcp' #sample 1: forward ext. port 8080 to int.
- host 192.168.6.15 to port 80 (use tcp)
- 192.168.5.15 (use tcp)
- Routing without masquerading
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
- Routing: internal hosts to deny forwarding
FORWARD_DENY_HOST_N='0' #number of denied hosts
FORWARD_DENY_HOST_1='192.168.6.5' #optional: 1st denied host
FORWARD_DENY_HOST_2='192.168.6.6' #optional: 2nd denied host
#------------------------------------------------------------------------------
- Routing: ports to reject/deny forwarding (from inside and outside!)
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 REJECT' #deny/reject forwarding of netbios
FORWARD_TRUSTED_NETS='' #but allow forwarding between LANs
#------------------------------------------------------------------------------
- Firewall: ports to reject/deny from outside (all served ports)
- here we leave two ports untouched:
- 53 dns
- 113 auth
FIREWALL_DENY_PORT_N='6' #no. of ports to reject/deny
FIREWALL_DENY_PORT_1='0:19 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_2='22:52 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_3='54:112 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_4='114:1023 REJECT' # privileged ports: reject or deny
FIREWALL_DENY_PORT_5='5000:5001 REJECT' # imond/telmond ports: reject or deny
FIREWALL_DENY_PORT_6='8000 REJECT' # proxy access: reject or deny
FIREWALL_DENY_PORT_7='20012 REJECT' # vbox server access: reject or deny
FIREWALL_DENY_ICMP='no' #deny icmp (ping): yes or no
FIREWALL_LOG='yes' #log access to rejected/denied ports
#------------------------------------------------------------------------------
- Domain configuration:
START_DNS='no' #start dns server: yes or no
DNS_FORWARDERS='192.76.144.66' #DNS servers of your provider, e.g. MSN
DNS_VERBOSE='no' #log queries in /usr/local/ens/ens.log
DOMAIN_NAME='wohnheim' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='7' #number of hosts in your domain
HOST_1='192.168.20.106 sugar 00:60:08:71:d5:1b'#1st host: ip and name
HOST_2='192.168.20.38 Stolus 00:20:18:53:0C:8C'#2nd host: ip and name
HOST_3='192.168.20.66 Zuhauserocker 00:10:4B:16:78:A5'#3rd host: ip and name
HOST_4='192.168.20.150 Zeissman 00:0B:DB:9D:9F:B2'#4th host: ip and name
HOST_5='192.168.20.168 Zeissman2 00:11:5B:34:83:93'#4th host: ip and name
HOST_6='192.168.15.243 DJEckhardt 00:C0:9F:31:00:AB'#4th host: ip and name
HOST_7='192.168.15.227 Forgetit 00:80:AD:3B:6B:70'#4th host: ip and name
#------------------------------------------------------------------------------
- Special DNS configuration
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='firma.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
- imond configuration:
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='' #imond-password, may be empty
IMOND_ADMIN_PASS='' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='no' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='yes' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
- Generic circuit configuration:
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
- optional package: syslogd
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
- optional package: klogd
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
- optional package: y2k correction
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='yes' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
- Optional package: PNP
OPT_PNP='no' #install isapnp tools: yes or no
Bitte markiere auch die Kommentare, die zur Lösung des Beitrags beigetragen haben
Content-ID: 19471
Url: https://administrator.de/contentid/19471
Ausgedruckt am: 22.11.2024 um 17:11 Uhr
2 Kommentare
Neuester Kommentar
Meine letzten Fli4l-Versuche sind ja schon lange her. Aber brauchts den denn? MAC - Adressen lassen sich fast genau so leicht fälschen (bzw. einfach entsprechend einstellen) wie IP-Adressen. Folglich wäre eine entsprechende Regel auf der Firewall der Fritzbox etwa genausosicher. Wirklich sicher ist das halt alles nicht, da bräuchte man irgendwie einen VPN-Tunnel auf den Fritzbox (bzw. in ein abgeschottetes Netz, in dem sie steht). Also: Wohnheimsnetz <- Router der nur VPN durchlässt und VPN-Tunnelendpunkt ist) -> "Rounternetz" <- Fritzbox -> Internet.
Filipp
Filipp
Hallo
hier mal meine base achtung version ist die 2.1.2
aber mit der base alleine kann ich nicht viel anfangen wenn du nicht zurecht kommst, kannste dich ja noch mal melden
die ip adressen,passwörter usw. sind natürlich nicht diese, die ich im einsatz habe
frage wie kommst du auf deine ip adressen eth1 & eth2 ?? eth1 = 192.168.20.100 und eth2 = 192.168.6.101 in der base stehen doch 192.168.20.106 bzw 107 ?? und warum ein default gateway
gruß mario
##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.1.2
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.55 2003/01/26 14:36:49 harri Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
HOSTNAME='fli4l' #name of fli4l router
PASSWORD='fli4l' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
PART_OPT='auto' #disk-partition or size of ramdisk or auto
MOUNT_OPT='rw' #mount opt device: ro, rw
UPDATE_MODE='full' #add, cfg, full, none, see documentation
TIME_INFO='MEZ-1MESZ,M3.5.0,M10.5.0'
#------------------------------------------------------------------------------
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
ETH_DRV_1='ne' #1st driver: name (e.g. NE2000 PCI clone)
ETH_DRV_1_OPTION='io=0x280,0x240 irq=10,15'
#ETH_DRV_2_OPTION='io=0x240 irq=15'
#------------------------------------------------------------------------------
IP_ETH_N='1' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.7.1' #IP address of your nth ethernet card
IP_ETH_1_NETMASK='255.255.255.0' #netmask of your LAN
#------------------------------------------------------------------------------
IP_DEFAULT_GATEWAY='' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
MASQ_NETWORK='192.168.7.1/2' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='1' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_1_OPTION='' #options, see documentation
MASQ_MODULE_2='irc' #irc
MASQ_MODULE_2_OPTION='' #options, see documentation
#------------------------------------------------------------------------------
OPT_PORTFW='no' #install port forwarding tools/modules
PORTFW_N='1' #how many portforwardings to set up
PORTFW_1_SOURCE='8080' #sample 1: forward ext. port 8080
PORTFW_1_TARGET='192.168.6.15:80' #...to int. host 192.168.6.15 port 80
PORTFW_1_PROTOCOL='tcp' #...using tcp
PORTFW_2_SOURCE='3000-3010' #sample 2: forward portrange 3000-3010
PORTFW_2_TARGET='192.168.6.15' #...to int. host 192.168.6.15
PORTFW_2_PROTOCOL='tcp' #...using tcp
#------------------------------------------------------------------------------
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
FORWARD_HOST_WHITE='no' #no: black list, yes: white list
FORWARD_HOST_N='0' #number of allowed/denied hosts
FORWARD_HOST_1='192.168.6.5' #optional: 1st allowed/denied host
FORWARD_HOST_2='192.168.6.6' #optional: 2nd allowed/denied host
#------------------------------------------------------------------------------
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 reject' #drop/reject forwarding of netbios
TRUSTED_NETS='' #but optionally allow forwarding between LANs
#------------------------------------------------------------------------------
INPUT_POLICY='reject' #policy for input chain: reject or drop
INPUT_ACCEPT_PORT_N='1' #no. of ports to accept from outside
INPUT_ACCEPT_PORT_1='22 TCP' #e.g. allow connection to ssh service
DENY_ICMP='no' #deny icmp (ping): yes or no
PACKETFILTER_LOG='no' #log access to rejected/denied ports
#------------------------------------------------------------------------------
START_DNS='yes' #start dns server: yes or no
DNS_FORWARDERS='194.25.0.125 217.237.150.97 217.237.151.225 217.237.149.161 217.237.151.97 194.64.31.2 192.76.144.66'
DOMAIN_NAME='*' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='2' #number of hosts in your domain
HOST_1_NAME='fli4l' #1st host: ip and name
HOST_1_IP='192.168.7.1'
#HOST_1_ALIAS_N='0' # number of optional alias names
#HOST_1_ALIAS_1='router.lan.fli4l' # optional alias name
#HOST_1_ALIAS_2='gateway.lan.fli4l' # optional alias name
HOST_2_NAME='ISA-Server' #2st host: ip and name
HOST_2_IP='192.168.7.2'
#HOST_2_MAC='de:ad:af:fe:07:19' # optional mac address used by dhcpd
HOST_3_NAME='S*' #3st host: ip and name
HOST_3_IP='*'
#HOST_3_MAC='de:ad:be:ef:07:19' # optional mac address used by dhcpd
HOST_4_NAME='' #4st host: ip and name
HOST_4_IP='*'
#HOST_4_MAC='de:ad:be:ef:08:15' # optional mac address used by dhcpd
#------------------------------------------------------------------------------
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='l' #imond-password, may be empty
IMOND_ADMIN_PASS='*' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='yes' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='no' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
OPT_PNP='no' #install isapnp tools: yes or no
#IP_ETH_1_NETWORK=''
#FIREWALL_DENY_ICMP='yes'
#FIREWALL_LOG='no'
#FIREWALL_DENY_PORT_1='0:52 54:112'
#FIREWALL_DENY_PORT_2='114:1023 5000:5001'
#FIREWALL_DENY_PORT_3='8000 20012'
#FIREWALL_DENY_PORT_N='3'
hier mal meine base achtung version ist die 2.1.2
aber mit der base alleine kann ich nicht viel anfangen wenn du nicht zurecht kommst, kannste dich ja noch mal melden
die ip adressen,passwörter usw. sind natürlich nicht diese, die ich im einsatz habe
frage wie kommst du auf deine ip adressen eth1 & eth2 ?? eth1 = 192.168.20.100 und eth2 = 192.168.6.101 in der base stehen doch 192.168.20.106 bzw 107 ?? und warum ein default gateway
gruß mario
##-----------------------------------------------------------------------------
## base.txt - fli4l configuration parameters 2.1.2
##
##
## P L E A S E R E A D T H E D O C U M E N T A T I O N ,
## S E E R E A D M E . T X T
##
## B I T T E U N B E D I N G T D I E D O K U M E N T A T I O N
## L E S E N , S I E H E R E A D M E . T X T
##
## Creation: 26.06.2001 fm
## Last Update: $Id: base.txt,v 1.55 2003/01/26 14:36:49 harri Exp $
##
## Copyright (c) 2001-2002 Frank Meyer <frank@fli4l.de>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##-----------------------------------------------------------------------------
#------------------------------------------------------------------------------
- General settings:
HOSTNAME='fli4l' #name of fli4l router
PASSWORD='fli4l' #password for telnetd, ftpd and sshd
MOUNT_BOOT='rw' #mount boot device (floppy): ro, rw, no
PART_OPT='auto' #disk-partition or size of ramdisk or auto
MOUNT_OPT='rw' #mount opt device: ro, rw
UPDATE_MODE='full' #add, cfg, full, none, see documentation
TIME_INFO='MEZ-1MESZ,M3.5.0,M10.5.0'
- description of local time
- zone, don't touch without reading
- documentation
- Ethernet card drivers:
- Driver Bus Description
- 3c503 ISA 3COM EtherLinkII (3c503)
- 3c505 ISA 3COM Etherlink Plus (3c505)
- 3c507 ISA 3COM Etherlink 16 (3c507)
- 3c509 ISA 3COM EtherLinkIII (3c509)
- 3c515 ISA 3COM EtherLink XL ISA (3c515)
- 3c59x PCI 3COM Vortex/Boomerang 3c59x,3c900,3c905
- 8139cp PCI RealTek 8139C+
- 8139too PCI RealTek 8129/8139 10/100 MB (NEW)
- 82596 Apricot Xen-II on board Ethernet
- ac3200 EISA Ansel Communications AC3200 EISA
- acenic PCI Alteon AceNIC Gigabit Ethernet
- at1700 ISA AT1700 (Fujitsu 86965) ISA
- cs89x0 ISA IBM Etherjet, cs89x0 based Cards (Option io=0xnnn necessary!)
- de4x5 PCI/EISA Digital DE425, DE434, DE435, DE450, DE500
- depca ISA DEPCA, DE10x, DE200, DE201, DE202, DE422
- dgrs PCI Digi International RightSwitch PCI/EISA
- dl2k PCI D-Link DL2000-based Gigabit Ethernet Adapter
- dmfe PCI DM9102 compatible PCI cards from Davicom
- e1000 PCI Intel EtherExpress PRO/1000 Gigabit Ethernet
- e100 PCI Intel's original driver for EEPRO100
- e2100 ISA Cabletron E21xx ISA
- eepro100 PCI Intel EtherExpressPro PCI 10+/100B/100+
- eepro ISA Intel EtherExpress Pro/10
- eexpress ISA EtherExpress16 ISA
- epic100 PCI SMC EPIC/100 (EtherPower II) PCI
- eth16i ISA/EISA ICL EtherTeam 16i/32
- ewrk3 ISA EtherWORKS 3 ISA (DE203, DE204, DE205)
- fealnx PCI ASOUND LAN 8139 card - not RTL8139 (NEW)
- hamachi PCI GNIC-II Gigabit Ethernet
- hp100 ISA/EISA/PCI HP 10/100VG PCLAN (ISA, EISA, PCI)
- hp ISA HP PCLAN (27245, 27xxx) ISA
- hp-plus ISA HP PCLAN+ (27247B and 27252A) ISA
- lance ISA AMD LANCE and PCnet (AT1500, NE2100) ISA
- lp486e Intel Professional Workstation/panther ethernet driver
- natsemi PCI National Semiconductor
- ne2k-pci PCI NE2000 PCI clone (eg. Realtek 8029, Winbond 89c940)
- ne ISA NE2000 ISA clone (eg. Realtek 8019,
- Accton 16xx, NatSemi 8390, UMC 9003/9008)
- ni5010 MiCom-Interlan NI5010
- ni52 NI5210 card (i82586 Ethernet chip)
- ni65 ni6510 (am7990 'lance' chip)
- ns83820 PCI cards with National Semiconductor 83820 chip
- pcnet32 PCI AMD PCI PCnet32
- sis900 PCI SiS 900/7016
- sk98lin PCI SysKonnect Gigabit Ethernet Server Adapters
- smc9194 SMC's 9000 series of Ethernet cards
- smc-ultra ISA SMC ULTRA
- starfire PCI Starfire
- sundance PCI DFE-550FX or DFE-530TXS (NEW)
- tg3 PCI Broadcom Tigon3
- tlan PCI TI ThunderLAN (Compaq Netelligent ...)
- tulip PCI DECchip Tulip (dc21x4x) PCI
- via-rhine PCI VIA Rhine PCI (3043, VT86c100A, dfe-530tx)
- wd ISA SMC WD80*3
- winbond-840 PCI Winbond 840
- yellowfin PCI Packet Engines G-NIC PCI Gigabit Eth Adapter
- Drivers below need the Package pcmcia installed:
- hostap_pci PCI Prism 2.5 based PCI Wlan Cards
- hostap_plx PCI Prism 2 and 3 based PCMCIA-WLan Cards in PLX-Adapter
- 3c574_cs PCMCIA 3Com 574
- 3c575_cb PCMCIA 3Com 575
- 3c589_cs PCMCIA 3Com 589
- airo_cs PCMCIA Airo 4500 & 4800 series cards
- axnet_cs PCMCIA Asix AX88190 Fast Ethernet (NEW)
- eepro100_cb PCMCIA EtherExpress Pro 100
- epic_cb PCMCIA SMC 83c170 EPIC/100
- fmvj18x_cs PCMCIA Fujitsu FMV-J181/182 Ethernet (NEW)
- netwave_cs PCMCIA Netwave AirSurfer Wireless LAN
- nmclan_cs PCMCIA New Media Ethernet LAN
- pcnet_cs PCMCIA NS8390-based cards (NE2000, DLINK etc)
- ray_cs PCMCIA Raylink wireless cards
- realtek_cb PCMCIA Realtek 8139 Based PCMCIA Cards (D-Link DFE-690TXD) (NEW)
- smc91c92_cs PCMCIA SMC91c92-based cards
- tulip_cb PCMCIA DEC 21040-family cards
- xirc2ps_cs PCMCIA Xircom: CE2, CEM28, CEM33, or CE3
- WLAN-Card Drivers IEEE802.11b:
- orinoco_cs PCMCIA Generic Driver for most WLAN-Cards
- hostap_cs PCMCIA PrismII/2.5/3 based Cards - supports AP-Mode (NEW)
- Special Drivers for some (mostly older) cards - try orinoco_cs first:
- wavelan_cs PCMCIA WaveLAN
- wavelan2_cs PCMCIA WaveLAN2
- wl24_cs PCMCIA ELSA Airlancer MC-2 (to be removed in future)
- wl24_n_cs PCMCIA ELSA Airlancer MC-2 (alternative, supports WEP!)(NEW)
- wvlan_cs PCMCIA Lucent WaveLAN/IEEE 802.11
- USB-Card Drivers
- pegasus teledat Fast Ethernet USB
- kaweth 3Com 3C19250
- ADS USB-10BT
- ATEN USB Ethernet
- ASANTE USB To Ethernet Adapter
- AOX Endpoints USB Ethernet
- Correga K.K.
- D-Link DSB-650C and DU-E10
- Entrega / Portgear E45
- I-O DATA USB-ET/T
- Jaton USB Ethernet Device Adapter
- Kingston Technology USB Ethernet Adapter
- Linksys USB10T
- Mobility USB-Ethernet Adapter
- NetGear EA-101
- Peracom Enet and Enet2
- Portsmith Express Ethernet Adapter
- Shark Pocket Adapter
- SMC 2202USB
- Sony Vaio port extender
- rtl8150 RTL8150-based USB-Ethernet-Cards
- catc Belkin F5U111
- CATC NetMate
- CATC NetMate II
- smartBridges smartNIC
- DSL-Modems shown as Ethernetcards
- CDCEther Ericsson PipeRider (all variants)
- Motorola (DM100 and SB4100)
- Broadcom Cable Modem (reference design)
- Toshiba PCX1100U and possibly other cable modems
- Sharp Zaurus SL-5000D
- USB-to-USB-network-cable
- usbnet Driver for usb-to-usb networklinks
#------------------------------------------------------------------------------
ETH_DRV_N='1' #number of ethernet drivers to load, usually 1
ETH_DRV_1='ne' #1st driver: name (e.g. NE2000 PCI clone)
ETH_DRV_1_OPTION='io=0x280,0x240 irq=10,15'
- 1st driver: additional option
#ETH_DRV_2_OPTION='io=0x240 irq=15'
#------------------------------------------------------------------------------
- Ether networks used with IP protocol:
IP_ETH_N='1' #number of ip ethernet networks, usually 1
IP_ETH_1_NAME='' #optional: other device name than ethX
IP_ETH_1_IPADDR='192.168.7.1' #IP address of your nth ethernet card
IP_ETH_1_NETMASK='255.255.255.0' #netmask of your LAN
#------------------------------------------------------------------------------
- Additional routes, optional
IP_DEFAULT_GATEWAY='' #normally not used, read documentation!
IP_ROUTE_N='0' #number of additional routes
IP_ROUTE_1='192.168.7.0 255.255.255.0 192.168.6.99'# network netmask gateway
#------------------------------------------------------------------------------
- Masquerading:
MASQ_NETWORK='192.168.7.1/2' #networks to masquerade (e.g. our LAN)
MASQ_MODULE_N='1' #load n masq modules (default: only ftp)
MASQ_MODULE_1='ftp' #ftp
MASQ_MODULE_1_OPTION='' #options, see documentation
MASQ_MODULE_2='irc' #irc
MASQ_MODULE_2_OPTION='' #options, see documentation
#------------------------------------------------------------------------------
- Optional package: PORTFW
OPT_PORTFW='no' #install port forwarding tools/modules
PORTFW_N='1' #how many portforwardings to set up
PORTFW_1_SOURCE='8080' #sample 1: forward ext. port 8080
PORTFW_1_TARGET='192.168.6.15:80' #...to int. host 192.168.6.15 port 80
PORTFW_1_PROTOCOL='tcp' #...using tcp
PORTFW_2_SOURCE='3000-3010' #sample 2: forward portrange 3000-3010
PORTFW_2_TARGET='192.168.6.15' #...to int. host 192.168.6.15
PORTFW_2_PROTOCOL='tcp' #...using tcp
#------------------------------------------------------------------------------
- Routing without masquerading
ROUTE_NETWORK='' #optional: route from/to network, no masq
#------------------------------------------------------------------------------
- Routing: internal hosts to allow/deny forwarding
- FORWARD_HOST_WHITE='no' describes a black list (forbidden)
- FORWARD_HOST_WHITE='yes' describes a white list (allowed)
- Example:
- FORWARD_HOST_WHITE='no' and FORWARD_HOST_N='0':
- -> forwarding of 0 hosts is denied
- -> forwarding of all hosts is allowed.
FORWARD_HOST_WHITE='no' #no: black list, yes: white list
FORWARD_HOST_N='0' #number of allowed/denied hosts
FORWARD_HOST_1='192.168.6.5' #optional: 1st allowed/denied host
FORWARD_HOST_2='192.168.6.6' #optional: 2nd allowed/denied host
#------------------------------------------------------------------------------
- Routing: ports to reject/deny forwarding (from inside and outside!)
FORWARD_DENY_PORT_N='1' #no. of ports to reject/deny forwarding
FORWARD_DENY_PORT_1='137:139 reject' #drop/reject forwarding of netbios
TRUSTED_NETS='' #but optionally allow forwarding between LANs
#------------------------------------------------------------------------------
- Filter: accept connections from outside to several ports (served ports)
INPUT_POLICY='reject' #policy for input chain: reject or drop
INPUT_ACCEPT_PORT_N='1' #no. of ports to accept from outside
INPUT_ACCEPT_PORT_1='22 TCP' #e.g. allow connection to ssh service
DENY_ICMP='no' #deny icmp (ping): yes or no
PACKETFILTER_LOG='no' #log access to rejected/denied ports
#------------------------------------------------------------------------------
- Domain configuration:
START_DNS='yes' #start dns server: yes or no
DNS_FORWARDERS='194.25.0.125 217.237.150.97 217.237.151.225 217.237.149.161 217.237.151.97 194.64.31.2 192.76.144.66'
- DNS servers of your provider, e.g. MSN
DOMAIN_NAME='*' #your domain name
DNS_FORBIDDEN_N='0' #number of forbidden domains
DNS_FORBIDDEN_1='foo.bar' #1st forbidden domain
DNS_FORBIDDEN_2='bar.foo' #2nd forbidden domain
HOSTS_N='2' #number of hosts in your domain
HOST_1_NAME='fli4l' #1st host: ip and name
HOST_1_IP='192.168.7.1'
#HOST_1_ALIAS_N='0' # number of optional alias names
#HOST_1_ALIAS_1='router.lan.fli4l' # optional alias name
#HOST_1_ALIAS_2='gateway.lan.fli4l' # optional alias name
HOST_2_NAME='ISA-Server' #2st host: ip and name
HOST_2_IP='192.168.7.2'
#HOST_2_MAC='de:ad:af:fe:07:19' # optional mac address used by dhcpd
HOST_3_NAME='S*' #3st host: ip and name
HOST_3_IP='*'
#HOST_3_MAC='de:ad:be:ef:07:19' # optional mac address used by dhcpd
HOST_4_NAME='' #4st host: ip and name
HOST_4_IP='*'
#HOST_4_MAC='de:ad:be:ef:08:15' # optional mac address used by dhcpd
#------------------------------------------------------------------------------
- Special DNS configuration
DNS_N='0' #number of special dns servers, normally 0
#DNS_1='.de 192.168.1.12' # 1st special dns server for firma.de
#DNS_2='lan.firma.de 192.168.2.12' # 2nd special dns server for lan.firma.de
#------------------------------------------------------------------------------
- imond configuration:
START_IMOND='yes' #start imond: yes or no
IMOND_PORT='5000' #TCP-Port, see also FIREWALL_DENY_PORT_x!
IMOND_PASS='l' #imond-password, may be empty
IMOND_ADMIN_PASS='*' #imond-admin-password, may be empty
IMOND_LED='' #tty for led: com1 - com4 or empty
IMOND_BEEP='yes' #beep if connection going up/down
IMOND_LOG='no' #log /var/log/imond.log: yes or no
IMOND_LOGDIR='/var/log' #log-directory, e.g. /var/log
IMOND_ENABLE='yes' #accept "enable/disable" commands
IMOND_DIAL='yes' #accept "dial/hangup" commands
IMOND_ROUTE='no' #accept "route" command
IMOND_REBOOT='yes' #accept "reboot" command
#------------------------------------------------------------------------------
- Generic circuit configuration:
IP_DYN_ADDR='yes' #use dyn. ip addresses (most providers do)
DIALMODE='auto' #standard dialmode: auto, manual, or off
#------------------------------------------------------------------------------
- optional package: syslogd
OPT_SYSLOGD='no' #start syslogd: yes or no
SYSLOGD_DEST_N='1' #number of destinations
SYSLOGD_DEST_1='*.* /dev/console' #nth prio & destination of syslog msgs
SYSLOGD_DEST_2='*.* @192.168.6.2' #example: loghost 192.168.6.2
SYSLOGD_DEST_3='kern.info /var/log/dial.log'# example: log infos
#------------------------------------------------------------------------------
- optional package: klogd
OPT_KLOGD='no' #start klogd: yes or no
#------------------------------------------------------------------------------
- optional package: y2k correction
OPT_Y2K='no' #y2k correction: yes or no
Y2K_DAYS='' #correct hardware Y2K-Bug: add x days
#------------------------------------------------------------------------------
- Optional package: PNP
OPT_PNP='no' #install isapnp tools: yes or no
#IP_ETH_1_NETWORK=''
#FIREWALL_DENY_ICMP='yes'
#FIREWALL_LOG='no'
#FIREWALL_DENY_PORT_1='0:52 54:112'
#FIREWALL_DENY_PORT_2='114:1023 5000:5001'
#FIREWALL_DENY_PORT_3='8000 20012'
#FIREWALL_DENY_PORT_N='3'