News: This forum is now permanently frozen.
Pages: [1]
Topic: Installation without LAN connection  (Read 3603 times)
« on: April 09, 2008, 14:13:17 »
wxman *
Posts: 17

I hope this doesn't sound too strange, but is there a way to install without needing a LAN hookup?

My WAN comes in through a modem, then through a switch that splits it one way to a wireless router/firewall, and the other to the server I'm building. I want the monowall device to just take care of the servers. I do have one of the computers on our LAN sitting near the server, so I guess I could use that if needed. I just don't see in the first part of the setup how to avoid the question of plugging in my LAN for detection.

I understand why I need the local connection to maintain the system, just like I already do with my Lynksys router connected to the main PC on the LAN.
The monowall router is just going to be taking care of the two servers that will be running web sites, do I just need to pick another PC on my LAN to connect the monowall machine to as it's LAN connection?
Thanks.
« Last Edit: April 09, 2008, 20:33:23 by wxman »
« Reply #1 on: April 09, 2008, 21:35:53 »
ChainSaw
Guest

When it asks for the LAN interface, just type in the first (top) interface you see and hit enter.  Now type in the second interface name and hit enter twice.

CS...
« Reply #2 on: April 10, 2008, 00:55:07 »
wxman *
Posts: 17

Will that still allow me a way to access the GUI?

I've worked out a way to connect to one of my other LAN computers if needed.
« Reply #3 on: April 10, 2008, 02:03:30 »
ChainSaw
Guest

I really don't understand your question but I would suggest you try this:

1. Connect you modem to your m0n0wall WAN interface.
2. Connect your m0n0wall's LAN interface to one of your wireless router's switch ports (set its LAN IP address to an unused IP address on your m0n0wall's LAN. Disable its DHCP and don't connect its WAN port to anything)
3. Connect your PCs to your wireless router's unused switch ports.
4. Connect your Opt1 interface to a switch
5. Connect your servers to the above OPT1 switch.
6. Configure your m0n0wall as required to make the above work.   Smiley

CS...
« Reply #4 on: April 12, 2008, 15:50:23 »
wxman *
Posts: 17

Hi ChainSaw

Sorry I didn't get right back - very busy around here.

The wireless router I'm using is a standard Lynksys WRT54G, and I guess I never thought of the 4 ports on it as the same as a switch. I assumed you had to have the WAN connection go through it.

Other than the firewall safety, is there a traffic benefit to have all the traffic go through the monowall box first before it splits off to the LAN and the web servers?
« Reply #5 on: April 12, 2008, 18:57:48 »
ChainSaw
Guest

you should never connect any device but a firewall or NAT router directly to the Internet.  Also, one of the best features of m0n0wall is the Traffic Shaper.  For that to work, all traffic needs to go through the firewall.

CS...
« Reply #6 on: April 12, 2008, 20:43:40 »
wxman *
Posts: 17

I guess I should have said, is there a benefit to going through monowall, then through the Lynksys router? Right now it goes through the switch first after the modem with one branch going to monowall and the other going to the Linksys. I understand the Traffic Shaper, but will it help that much by having all the traffic go through monowall first?
Sorry if I sound ignorant, I'm still learning. 
« Reply #7 on: April 14, 2008, 09:08:28 »
ChainSaw
Guest

I'm courious why you wouldn't want everything going through your m0n0wall.  a Linksys router is like a toy compared to m0n0wall.  your Linksys has numerous limitations and they are very slow to fix security related bugs.  If for no other reason I would say for simplicity.  that makes it easier to maintain and troubleshoot and a lot easier on your backup or replacement.   Smiley

CS...
« Reply #8 on: April 14, 2008, 14:18:29 »
wxman *
Posts: 17

I totally agree with you about the need for the better quality of protection.

My concerns are more for removing bottlenecks in my traffic. This is a bit of an experiment to see if we can run our web sites off of our current DSL connection. We picked up a couple of Core duo Pentium systems to use as servers, and and older HP Centrino 600mhz with 4 Intel NIC's that I put monowall on.  I'm just trying to milk as much efficiency out of the system as I can. If we find we need a better connection, we'll cross that bridge when we get there.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines