|
Posted by James on August 6, 2006, 7:35 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Lamer-Newbie wrote:
> Doesn't your router have IPSEC security table?
> Put local IP or MAC of server in the "Block WAN Access" list
> on the router.
>
Hey Newbie,
Thanks -- checked the setup on the router and it looks okay (not a
security genius, so it probably has issues anyway).
The WAN-blocking idea is in fact set.
Thanks --
> James wrote:
> > James wrote:
> >> Hi all,
> >>
> >> I have two computers, one Windows and one linux; the linux one I want
> >> to setup Samba on, and also have it as a secure server. In other
> >> words, I want to be able to run security tools on the "network"
> >> (crossover cable needed?) - which terminates at a router.
> >>
> >> Here is the question: Using SATAN or equivalent tools, how do you
> >> prevent it from going outside the "LAN", so it doesnt start trying to
> >> scan the ISP connected to the router?
> >>
> >> Picture:
> >> Spare crossover cable (CAT5)
> >> Computer 1 (one ethernet jack) Computer two (one ethernet jack)
> >> \ //
> >>
> >> \ //
> >> CAT5/6 CAT5/6
> >> \ //
> >>
> >> |
> >> |-------------------------|
> >> Router (five ports plus one port for feed to
> >> internet)
> >> |
> >> |
> >> ISP < ------------------ > Internet
> >>
> >> Tools I want to run on my home "LAN":
> >> SATAN
> >> SAINT
> >> NMap
> >> etc.
> >>
> >> Additional question: There is also a unix for windows application
> >> installed on the Windows PC, can this be scanned as well as if it were
> >> an actual unix machine (i.e. it runs init and similar processes, and
> >> can also view ALL windows processes as well)?
> >>
> >> Hope that slight question makes sense and TIA.
> >>
> >> Me - Just Me
> >
> > Another question: Does the Linux computer have to be connected to the
> > other directly, or can they all be plugged into the router and
> > see/connect to each other?
> >
> > A few other details --
> > I want to have a static IP on the linux box, while the others are using
> > dhcp,
> > and the linux version is the 7.1 RedHat (Security Enhanced). It will
> > have all current updates/kernel revisions and patches installed before
> > it is connected to anything at all other than a power strip.
> >
> > It would be nice to have the linux computer function not only as a
> > network security scanner, but a samba server and a firewall as well. I
> > know this is a horrid idea and generally not recommended, but I'd like
> > to try to set this up.
> >
> > The package and tool installation and geral configuration I can do, I
> > would just like to solicit ideas and suggestions/advice on the
> > questions.
> >
| 
XML site map