The Perfect Start With Smoothwall Express 3.0

Linux-Tip.net - The perfect start with Smoothwall Express 3.
Home News Tips and Tricks Workshops Video-Tutorials Search Contact Us Disclaimer
Linux-Tip News
We are proud to present Linux-Tip Europe. This page is designed to provide the Linux users community (not only in Europe) with news and articles that are of
interest to them. It works by allowing members of the community to submit news and articles relating to Linux hardware and software. This same community can
then decide what tips should be promoted based on what they consider to be the most important or interesting to the community by voting stories up and down.
Stories that receive enough votes are promoted to the Linux-Tip Europe homepage.
Home Workshops Firewall/IDS The perfect start with Bookmark this

Smoothwall Express 3.0
article
RSA Log The perfect start with Smoothwall Express 3.0
Management Sunday, 09 September 2007
Rapid Alerts Detect
Network Threats Free Page 1 of 4
Smoothwall Express is an internet firewall, Article Index
Gartner Magic The perfect start with Smoothwall Express 3.0
which allows you to protect your network,
Quadrant Report as well as providing NAT functionality. It is Smoothwall Post-Install Configuration
www.RSA.com ease to use and configurable via a web- Configuring the Intrusion Detection System
based GUI. This open source firewall Smoothwall Status Log Files and Updates
distribution requires absolutely no
knowledge of Linux to install or use. This workshop shows the installation and basic
configuration of the current release Smoothwall Express 3.0.
Social Bookmarking
Stumble It!
Main Menu
Home
News
Tips and Tricks
Workshops
Video-Tutorials
Smoothwall can be used on any Pentium-class PC and it comes pre-configured to stop all Search
incoming traffic that is not the result of an outgoing request. The new “Purple network” Contact Us
interface keeps wireless clients like laptops safely off the main network. Smoothwall supports
Disclaimer
64bit, for Intel Core 2s (and other Intels with 64bit support) and 64bit Athlon chips.
Key features of the firewall are:
Compatible with wide range of hardware/systems

Flexible & Easy to Use
Multiple network zones – Client Local Network (Green), De- militarized Zone for hosting
servers (Orange), Wireless Client (Purple) and External (Red).
Comprehensive reporting & logging capabilities
POP3 Email antivirus proxy
Web proxy support
Snort IDS support
Static and dynamic DNS support
Remote Access and VPN support
DHCP and Network time server support
Powerful traffic graphs and bandwidth bars
Inline Proxy support for Instant Messaging (MSN, ICQ, Yahoo!, AOL) & VoIP with
logging capabilities
Universal Plug n Play Support (UPnP)
Bandwidth Management
Real-time Graphs & per IP Traffic Stats
Update system
Outbound traffic blocking with time-based controls
Smoothwall is using colours to differentiate the networks. The network interfaces are
designated accordingly.
http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Linux-Tip.net - The perfect start with Smoothwall Express 3.0
www.IMailServer.com
Ads by Google
The Workshop setup could look like this:

Virus Info Feed
Top Viruses
1. WORM_NYXEM.E
2. HTML_NETSKY.P
3. WORM_NETSKY.DAM
4. PAK_GENERIC.001
5. ADW_WEBSEARCH.K
Webmasters: add virus

info to your site
Alexa Traffic Stats

Step 1: Smoothwall Installation
Please download the current release here.
http://www.smoothwall.org/
Smoothwall Express runs on a workstation with a bootable CD-ROM drive. After booting it will
automatically check the workstation and hardware components. During the installation process
Smoothwall will delete all data you may have on your hard disk. So, before you start
the installation, ensure that all valuable data is safely backed up. The following screen will be
displayed:
Read the following information carefully and hit enter:

In this step Smoothwall will partition the hard disk.
Please select “No” and press Enter to start configuring your installation of Smoothwall Express.
The Keyboard mapping dialog box opens first:
It is time to configure the hostname. Leave the default settings:

Please select the security policy you would like to use.
The following policies are available:
Open:
Smoothwall Express allows all outgoing requests.
Half-Open:
Smoothwall Express allows most outgoing requests and blocks
potentially harmful requests
Closed:
Smoothwall Express blocks all outgoing requests. Anything to be allowed must be
explicitly enabled.
We are using the „half-open“ policy.
Network configuration
We are using the “GREEN+RED” configuration:
The “GREEN” interface card is connected to the internal network and the “RED” interface to the
external network. If you have a different setup or hardware, please use the configuration
accordingly.
Let’s configure both network cards.

We are using static IP addresses for both interfaces.
Please setup the DNS and Default Gateway accordingly.
Hit “Finished” to continue.
Enter Smoothwall admin password. You’ll need it for logging into the web interface later.

Setup the root password next.
The setup is now complete. Please remove the CD and restart Smoothwall.
Smoothwall starts with a nice screen…
… and loads the configuration.

Prev - Next >>
< Prev Next >

[ Back ]
Ubuntu Linux is hot. Really hot. How hot? Well, if you surf over to Distrowatch
, you'll notice that Ubuntu is listed as the number one distribution, at least in
terms of hit ranking on the site. SUSE and Fedora are usually duking it out for
second and third place. In fact, Ubuntu has been in first place for quite a while
now. [SysAdmin]
The information contained in this webpage is provided 'as is' without warranty of any kind.
The entire risk as to the results and the performance of the information is assumed by the user, and in no event shall Linux-Tip be liable for any
consequential, incidental or direct damages suffered in the course of using the information in this articles. Use of the information contained in this
material are governed by their respective license agreements and may contain restrictions on use.
Linux is a registered trademark of Linus Torvalds.

All trademarks here are property of their respective owners.
Articles are owned by their authors. The rest is © 2000-2010, Frank Neugebauer.

Home News Tips and Tricks Workshops Video-Tutorials Search Contact Us
Linux-Tip News
We are proud to present Linux-Tip Europe. This page is designed to provide the Linux users community (not only in Europe) with news
and articles that are of interest to them. It works by allowing members of the community to submit news and articles relating to Linux
hardware and software. This same community can then decide what tips should be promoted based on what they consider to be the most
important or interesting to the community by voting stories up and down. Stories that receive enough votes are promoted to the Linux-Tip
Europe homepage.
Home Workshops Firewall/IDS Bookmark this

Client Mgmt The perfect start with Smoothwall Express 3.0
article
The perfect start with Smoothwall
Software Express 3.0
Install MSI/EXE, Patch Sunday, 09 September 2007
Mgmt, Asset Mgmt &
Remote Control. Free Page 2 of 4
Article Index
Trial The perfect start with Smoothwall Express 3.0
Step 2:
www.ManageEngine.com/Des Smoothwall Post-Install Configuration
Configuring the Intrusion Detection System
10 Gig Analysis
Smoothwall Status Log Files and Updates
Platform
Line-rate record, Smoothwall Post-install Configuration
inspect, analyse Social Bookmarking
If everything worked fine in step 1, you will see a login prompt in
Open-source, open- your console window. As mentioned before, Smoothwall is easy
standard Main Menu
to configure by using a web based interface. Please use you
www.pcapexpress.com favorite browser and login as “admin”. Use the password you’ve Home
created in step 1.
Anonymous IP The URL should look like this: News
Address Tips and Tricks
Change IP and https://IP-Smoothwall_internal_interface Port 441
Workshops
become anonymous
In our workshop we’ll use : Video-Tutorials
Choose from a range
of IP's Search
https://192.168.10.99:441
HideMyAss.com Contact Us
Disclaimer
ATEN Serial Over
the NET
Serial console server
Serial Device Server,
Serial IP
www.aten.com
Network Config
Manager
Switch IP addressing
and more Award
winning, download
now!
www.MobileNetSwitch.com
After a successfully login, you will see the following screen:

Embedded
Computer
Small, rugged Moxa
computers for
http://www.linux-tip.net/cms/content/view/316/26/1/1/[9/10/2010 11:15:55 AM]

industrial use. RS-

485, LAN, more
www.moxa.com
RSA Log
Management
Rapid Alerts Detect
Network Threats Free
Gartner Magic
Quadrant Report
www.RSA.com
Get 99% Event

Reduction
Stop chasing
irrelevant IDS events Please take your time to explore the different menus and possible
setups. Take a look to the nice network graphs and monitoring
and focus on real tools but also to the log and maintenance possibilities.
network threats.
Sourcefire.com/Intrusion_Det You should double check the network configuration first by
clicking on “Network – Interfaces”:
Desktop
Management S/W
Install MSI/EXE, Patch
Mgmt, Asset Mgmt &
Remote Control. Free
Trial
www.ManageEngine.com/Des
10 Gig Analysis
Platform
Line-rate record,
inspect, analyse
Open-source, open-
standard
www.pcapexpress.com
Smoothwall comes preconfigured after the setup. By clicking on

“Networking – Outgoing”, you will see the default settings. You
can delete all rules for the “PURPLE” interface, because we are
not using a wireless device in our workshop. Add the a new
exception like in the screen below. Add a new “Application or
service” and choose “Infrastructure”. This will add DNS
functionality and it makes you able to browse the Internet from
your internal network.

Enable the HTTP Proxy by clicking on “Services – Web Proxy” Virus Info Feed
and “Transparent” – “Enabled” like in the picture below. Do not
forget to save the settings. Top Viruses
1. WORM_NYXEM.E
2. HTML_NETSKY.P
3. WORM_NETSKY.DAM
4. PAK_GENERIC.001
5. ADW_WEBSEARCH.K

info to your site
Top Viruses
1. WORM_NYXEM.E
2. HTML_NETSKY.P
3. WORM_NETSKY.DAM
4. PAK_GENERIC.001
5. ADW_WEBSEARCH.K
You should now be able to browse the Internet without changing
the proxy settings on your browsers in the internal network.
This is a nice opportunity the check the log files using the web
interface. Please click on “Logs – webproxy”. You should now see
the log entries like this:
info to your site
Alexa Traffic Stats
<< Prev - Next >>
< Prev Next >

[ Back ]

My laptop display resolution wasn't configured by default, so I had

to edit the xorg.conf file and correctly specify the 1920x1200
resolution at all color depths. Plus, Slackware doesn't come with
binary driver support for ATI or nVidia graphics cards but you can
easily add them by downloading the latest version and following
the install directions for whichever card you have. The Open
Addict DELL XPS M170 test laptop comes with a nVidia card, so I
grabbed the latest drivers from nvidia.com and installed from that
point. No big deal there. [Open Addict]
The entire risk as to the results and the performance of the information is assumed by the user, and in no event shall Linux-Tip be liable for
any
consequential, incidental or direct damages suffered in the course of using the information in this articles. Use of the information contained in
this


Linux-Tip News
Europe homepage.

The perfect start with Smoothwall Express 3.0
article
Intrusion Detection The perfect start with Smoothwall
System Express 3.0
Rapid Alerts Detect Sunday, 09 September 2007
Page 3 of 4
Gartner Magic Article Index
Quadrant Report The perfect start with Smoothwall Express 3.0
www.RSA.com Step 3: Smoothwall Post-Install Configuration
Smoothwall Status Log Files and Updates

Social Bookmarking
Smoothwall comes with Snort support. Snort is an open source
network intrusion prevention system (IPS) capable of performing
Main Menu
real-time traffic analysis and packet-logging on IP networks. It
can perform protocol analysis, content searching & matching and Home
can be used to detect a variety of attacks and probes, such as
buffer overflows, stealth port scans, CGI attacks, SMB probes, OS News
fingerprinting attempts and more. Tips and Tricks
In our case, the supported Snort IDS detects potential security Workshops
attempts from outside our network, but Snort does not prevent Video-Tutorials
these attempts!
Search
To get snort running on your system, you need to register on Contact Us
the Snort website first. After minutes, you will receive an email
Disclaimer
with further instructions to get the “Oink code”.
Please use this code like the picture shows below:
Intrusion Detection
System
Rapid Alerts Detect
That’s it. Let’s test if Snort is really doing its job. You can use a

Network Threats Free port scanner or a penetration test tool like Nessus to check this
Gartner Magic out. Please check the IDS Log entries after “attacking” your box.
Quadrant Report You should see similar entries like this:
www.RSA.com
<< Prev - Next >>
< Prev Next >

[ Back ]
Zmanda.com
Ads by Google

Zmanda.com
Ads by Google
Virus Info Feed

Top Viruses
1. WORM_NYXEM.E
2. HTML_NETSKY.P
3. WORM_NETSKY.DAM
4. PAK_GENERIC.001
5. ADW_WEBSEARCH.K

info to your site
Top Viruses
1. WORM_NYXEM.E
2. HTML_NETSKY.P
3. WORM_NETSKY.DAM
4. PAK_GENERIC.001
5. ADW_WEBSEARCH.K


info to your site
Alexa Traffic Stats
While still far from perfect, Ubuntu 6.10 "Edgy Eft" is both an
improvement over the so-called "long-term support" release and a
decent operating system in its own right. It's in a much better
place than any other free-of-charge operating system has been
before now, but I don't think it'll give any commercial operating
systems a run for their money. [Softwareinreview]
any
this



Linux-Tip News
Europe homepage.

The perfect start with Smoothwall Express 3.0
article
Network Log The perfect start with Smoothwall
Visualization Express 3.0
Rapid Alerts Detect Sunday, 09 September 2007
Page 4 of 4
Gartner Magic Article Index
Quadrant Report The perfect start with Smoothwall Express 3.0
www.RSA.com Step 4: Smoothwall Post-Install Configuration
Check Configuring the Intrusion Detection System
status and Smoothwall Status Log Files and Updates
log files
and get additional information and help
Social Bookmarking
As mentioned before, Smoothwall comes with comprehensive
monitoring tools and Log viewers as you can see below: Main Menu
Home
News
Tips and Tricks
Workshops
Video-Tutorials
Search
Contact Us
Disclaimer
Check the status like this:
Intrusion Detection
System
Rapid Alerts Detect
http://www.linux-tip.net/cms/content/view/316/26/1/3/[9/10/2010 1:36:18 PM]


Gartner Magic
Quadrant Report
www.RSA.com
Use the new update functionality to keep your firewall up to

date by clicking on “Maintenance – Updates”. While testing this,
we got an error message like you can see below.
Zmanda.com
Ads by Google
After manually checking the URL, we realized that no updates are

really available at the moment.

Additional information and help you can get here:
Download Smoothwall and documentation

http://www.smoothwall.org/get/index.php
Help Forums
http://community.smoothwall.org/forum/
<< Prev - Next
< Prev Next >

[ Back ]
Zmanda.com
Ads by Google
Virus Info Feed

Top Viruses
1. MAL_OTORUN2
2. MAL_OTORUN1
3. MAL_TIDIES-12
4. WORM_DOWNAD.AD
5. CRYP_MANGLED

info to your site
Top Viruses
1. MAL_OTORUN2
2. MAL_OTORUN1
3. MAL_TIDIES-12
4. WORM_DOWNAD.AD
5. CRYP_MANGLED


info to your site
Alexa Traffic Stats
This is a detailed description about how to set up a Mandriva

2007 Free Edition based server that offers all services needed
by ISPs and hosters (web server (SSL-capable), mail server (with
SMTP-AUTH and TLS), DNS server, FTP server, MySQL server,
POP3/IMAP, Quota, Firewall, etc.).
any
this



The Perfect Start With Smoothwall Express 3.0

Diunggah oleh

Informasi Dokumen

Deskripsi Asli:

Judul Asli

Hak Cipta

Format Tersedia

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Hak Cipta:

Format Tersedia

The Perfect Start With Smoothwall Express 3.0

Diunggah oleh

Hak Cipta:

Format Tersedia

Linux-Tip.net - The perfect start with Smoothwall Express 3.

Home Workshops Firewall/IDS The perfect start with Bookmark this

Key features of the firewall are:

Compatible with wide range of hardware/systems

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

The Workshop setup could look like this:

Webmasters: add virus

Alexa Traffic Stats

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Step 1: Smoothwall Installation

Please download the current release here.

Read the following information carefully and hit enter:

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

In this step Smoothwall will partition the hard disk.

It is time to configure the hostname. Leave the default settings:

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Please select the security policy you would like to use.

The following policies are available:

We are using the „half-open“ policy.

We are using the “GREEN+RED” configuration:

Let’s configure both network cards.

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

We are using static IP addresses for both interfaces.

Please setup the DNS and Default Gateway accordingly.

Hit “Finished” to continue.

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Setup the root password next.

Smoothwall starts with a nice screen…

… and loads the configuration.

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Prev - Next >>

< Prev Next >

Linux is a registered trademark of Linus Torvalds.

http://www.linux-tip.net/cms/content/view/316/26/[9/10/2010 11:12:56 AM]

Home News Tips and Tricks Workshops Video-Tutorials Search Contact Us

Home Workshops Firewall/IDS Bookmark this

After a successfully login, you will see the following screen:

http://www.linux-tip.net/cms/content/view/316/26/1/1/[9/10/2010 11:15:55 AM]

industrial use. RS-

Get 99% Event

Smoothwall comes preconfigured after the setup. By clicking on

http://www.linux-tip.net/cms/content/view/316/26/1/1/[9/10/2010 11:15:55 AM]

Webmasters: add virus

Alexa Traffic Stats

<< Prev - Next >>

< Prev Next >

http://www.linux-tip.net/cms/content/view/316/26/1/1/[9/10/2010 11:15:55 AM]

My laptop display resolution wasn't configured by default, so I had

Linux is a registered trademark of Linus Torvalds.

http://www.linux-tip.net/cms/content/view/316/26/1/1/[9/10/2010 11:15:55 AM]

Home News Tips and Tricks Workshops Video-Tutorials Search Contact Us

Home Workshops Firewall/IDS Bookmark this

Configuring the Intrusion Detection System

http://www.linux-tip.net/cms/content/view/316/26/1/2/[9/10/2010 11:19:33 AM]

< Prev Next >

http://www.linux-tip.net/cms/content/view/316/26/1/2/[9/10/2010 11:19:33 AM]

Virus Info Feed

Webmasters: add virus

http://www.linux-tip.net/cms/content/view/316/26/1/2/[9/10/2010 11:19:33 AM]

Webmasters: add virus

Alexa Traffic Stats

Linux is a registered trademark of Linus Torvalds.