Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: Norrie on May 14, 2001, 02:05:56 PM
-
Hello everyone,
I've tried a number of times to configure e-smith to use ISDN without succes so I've decided to place my e-smith box behind a smoothwall box until I've more time.
This may seem like a bit of a daft question but...
If I want clients to use squid on e-smith do I set it (e-smith) up as server / gateway with two NICs or can it be server / gateway on the same private network with one NIC and the clients' gateway pointing to e-smith.
I suspect its the former but just want to be sure...ie:
Firewall e-smith
/ \ / \
(internet)---(ISDN - 192.168.n1.xxx)---(192.168.n1.xxx - 192.168.n2.xxx)---(LAN)
Thanks for any help.
Norrie
-
Kees, Thank you again for your reply.
> Just going through the motions..
>
> As far as I can see, think of the router as your adsl-whatever box..
> Your clients talk to the e-smith box only.
>
> The e-smith wil in turn only talk to the router/world..
>
> My e-smith has 2 nic's. one goes to the router (10 mb one) the other one it
> the local lan..
>
> kees
I thought as much.
Any more on the ISDN front? Regards...
Norrie.
-
Hi everyone,
I'm trying to configure e-smith as a server / gateway behind a Smoothwall firewall but I'm having a little trouble. Here's my setup:
Internet
|
ISDN
smoothwall
eth0 (192.168.1.254) - ne2k-pci
|
eth1 (192168.1.1) - ne2k-isa
e-smith
eth0 (192.168.0.254) smc etherez isa
|
LAN1 (192.168.0.xxx) ne2k-isa
clients ('doze boxes)
From my 'doze box I can logon to e-smith using PuTTY and run lynx to gain access to the smoothwall box to enable dial on demand ISDN. Pinging any address / name (still in PuTTY) from e-smith triggers smoothwall dialing and a connection ok but I can't ping or browse directly from my 'doze machine. I've RTFM and tried several times to add the address of the smoothwall box in the e-smith console configuration following the instructions:
"5.14. Further Miscellaneous Parameters
There are a few, final connectivity-related parameters that must be entered into your e-smith server and gateway.
Master DNS server: The first option is for a master (or primary) DNS server. You should only configure this value if your e-smith
server is behind a firewall and cannot perform direct queries to Internet DNS servers. Most installations should leave this setting
blank. You do not need to configure your e-smith server to use your ISP’s DNS servers.
Note: Your e-smith server and gateway contains a fully functional caching DNS server and in almost all cases you will not need to
enter the address here for a DNS server. However, some corporate firewalls restrict DNS queries from internal DNS servers. If that
is the case, you will need to supply the address for an external DNS server.
External proxy server: The next screen allows you to configure your e-smith server and gateway so that the computers on your
network will use a proxy server outside of your own network . Some Internet Service Providers may require this. Additionally, if your
e-smith server is behind another firewall, it may need to use the external proxy server. If you have questions about whether to use a
proxy server, we recommend you read Appendix C on using a proxy server. In most environments you can probably leave this blank."
I enter the address of the smothwall box and after a short time e-smith asks if I would like to reboot so the changes can take effect. I say yes but the symptoms above are still apparent. If I re-enter the e-smith configuration console, the address I entered has dissappeared.
Can anyone please suggest a solution?
Many thanks
Norrie.