Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: boucon on April 20, 2004, 03:57:08 PM
-
I seem to be going round in circles and need help.
I have SME server 6 setup as server/gateway mode with 2 ethernet adaptors (both functional and supported)
I have the teleworker blade installed on my server
An ADSL/Broadband service with a single static IP address
A SMC barricade ADSL router/modem (support VPN, IPSEC pass through etc)with a single router ethernet port.
All I wish to do is use the SME server as my gateway and firewall to access the internet, send and receive email and once that is succesful, set up a client to server VPN for my home workers.
The way I connected was by connecting my ADSL modem/router ethernet port to the external interface of the SME server, then the SME internal interface into the local LAN.
Do I need 2 public routable addresses ?
Am I setting this up all wrong ???
Please help.
-
First, I'm no SME pro. :-)
If you want to use the SME as your gateway, you don't really need the Barricade.
Run through the setup (log in as admin) and choose the NIC you want to use for your internal / external interface.
If you need to open an hole in the firewall, use Port Forwarding in the web interface to forward traffic on certain ports to clients on the LAN.
When you configure your email server, you'll probably want to specify your ISP's SMTP server for outgoing mail.
Hope that helps...
-
Hello
you don't need 2 nic's in the sme box
you can just go through the sme setup and use the server only mode if your smc is a modem and router both
smc router does it have any hub ports ? if not connect it
to a small hub 4 or 8 port will do anyother computer can also use the hub-router to connect to the internet just by setting the gateway ip address in the computer wanting to connect
smc modem to isp
smc lan connection to hub if not internal
sme box to hub or router hub port
setup router to let ptpp connections through don't recall port numbers but router book or smc site should have them
internet through router to sme box it's that simple
-
We have an ADSL PPOA connection so we must have a modem.
I have got have the server & Gateway setup for future requirements.
If I only have one public routable static IP address, that is allocated to the router /modem device, how do I get a vpn client to terminate on the SME server (which is acting as my VPN server). My router/modem is not a VPN end point, but does support VPN pass through.
-
hello
you are making more work for yourself having 2 routers in the system sme in gateway mode is a router and the you have a router
I would use just a modem connected to the sme/gateway box
thats easiest
with your 2 routers you will have to sme/gateway & router
you will have to port-forward on them to open the needed ports
-
For what it's worth I use a SME behind a IP-Cop firewall.
I forward port 1723 to the mitel box and also GRE protocol to same
Works fine.
(Maybe somebody can explain to me where the Mitel box picks it's address for the VPN box on the network, all other boxes DHCP from the IP-Cop)
Stu
-
Hi
The IPcop will support a third nic, red,green,orange.
Depending on what you are trying to do, you may want to place the sme on the orange nic.
The orange nic is where you want your sme server, orange doesn't have nating firewall and you would be able to access orange from green but orange can't access green by default. You still would forward ports from green to orange and pinhole from orange to green if needed. Having the sme on green presents itself with many problems, one being you end up exposing green(lan)and that defeats the purpose of the firewall on green.
If your intent is to have a web server on the sme then it is recommended to put the sme on orange and not on green.
As you may know IPcop is a fork of Smoothwall and I do have a smoothie w/3 nics and it works fine w/sme on orange in server/gateway mode. I would imagine you might have many problems setting up sme on green in server/gateway mode, havn't done that and won't do it due to the security issues imposed on green (lan)for one.
One of these days I'm going to try the cop.
More specific info as to what your trying to do would help.
Later
-
I was logged in, must have timed out!
-
Can anyone suggest a compatible adsl modem that will be supported on the SME box. USB, PCI ??
-
Hello
take a look on ebay for an external that would work
first find out what your isp recommends Speedstream is pretty common and I saw a new 5620 model for 25 bucks the other day
on ebay with buy it now
isp line to modem cat5 cable to your sme box or hub
that makes it easy and most external modems are compatible with
linux/sme
-
Since your SME box has to be in server/gateway mode, just use it as your router. Plug the DSL modem into the ethernet port on your SME box that is the WAN or "external" interface. You can use the SME box to serve a website and email on your public number as well without doing any NAT or anything. The SME box will then have the public number and you won't have all of the port forwarding troubles. If your DSL Modem is a router/modem combo, just put it in bridge mode.
-
Since your SME box has to be in server/gateway mode, just use it as your router. Plug the DSL modem into the ethernet port on your SME box that is the WAN or "external" interface. You can use the SME box to serve a website and email on your public number as well without doing any NAT or anything. The SME box will then have the public number and you won't have all of the port forwarding troubles. If your DSL Modem is a router/modem combo, just put it in bridge mode.
-
little tip if your told to work over PPPoA try working over PPPoE worked a treat when i had to switch and still use old hardware.