What I have in mind and used is a commercial gateway/firewall with an web-interface for configuration that has this specifications: Administration Network Monitoring and logging Authentication Firewall IPS and iDS VPN server Multiple internet gateways Bandwidth management Public dns Application firewall SSL-VPN webportal High availability Content scanning: web traffic Content scanning: mail traffic Statistics But the software comes only at cost embedded on their devices. What I found as a free alternative on internet is [...]

Like when you go to starbucks the first thing you see if you go to their wifi is “Welcome to starbucks, please accept our terms”. Or also at most airports, it makes it impossible to surf until you accept their terms. Furthermore, what is this called? Is it possible to order routers with this pre-loaded on it, and how would I go about this? Asked by Tallboy The term for what you want is “captive [...]

I have a machine that I want to use as a gateway between the router. For example: Several machines on the network wants to access www.google.com lets say Send their requests to me I send them to my router Receive responses from my router Send them back to clients How can I do that in a unix enviroment (using iptables perhaps)? Asked by Panayiotis Your going to want to enable IP forwarding, and then either [...]

I am wondering that should a node on a subnet have its default gateway set to the IP of the router or should it be the IP address of the switch? in packet tracer I am using the routers address as the default gateway as this is what I have been told just wanting to make sure this is correct, thanks. Asked by Melevin Mandana Depends if you want that system to be able to [...]

I have a VPS (CentOS 5.6). Here is my routing table. Kernel IP routing tableDestination | Gateway | Genmask | Flags | Metric | Ref | Use Iface 192.x.x.0 | 0.0.0.0 | 255.255.255.0 | U | 0 | 0 | 0 venet0 169.x.0.0 | 0.0.0.0 | 255.255.0.0 | U | 0 | 0 | 0 venet0 0.0.0.0 | 0.0.0.0 | 0.0.0.0 | U | 0 | 0 | 0 venet0 It works fine but I [...]

After debugging for 6-hours – I am giving this up We have a nginx+php-fpm+mysql in LAN with almost 100 wordpress (created and used by different designers/developers all working on test wordpres setup) We are using nginx without any issues from long. Today, all of a sudden – nginx started returning “504 Gateway Time-out” out of the blue… I checked nginx error log for a virtual host… 2010/09/06 21:24:24 [error] 12909#0: *349 upstream timed out (110: [...]

I’ve got OpenVPN set up between my windows 7 client and linux server. The goal is that I’ll get secure access to a webapp running on the server from any computer on the client LAN. I’m using ccd to assign static ip addresses to each client connection, with key authentication. It’s working on my client machine (10.83.41.9), and when you go to the gateway IP address (10.83.41.1), it loads up the webapp. Now I really [...]

when trying to open the ports 110 and 25 in my iptables for outlook-only users, i cant do it except by forwarding as such: -I FORWARD -i eth0 -s 192.168.1.0/24 -j ACCEPT -I FORWARD -i eth1 -d 192.168.1.0/24 -j ACCEPT but doing so allows the rest of the users in my lan to bypass my squid proxy. whats the proper syntax for these forwarding commands to just pen ports 110 and 25? my iptables -L [...]

I am running a file with considerable amount of coding. It takes approximately 55 seconds to process 500 users, but now I have to process 1000 users. The default timeout is 60 seconds, so I have to increase the FastCGI read timeout. I found this question on StackOverflow that says I have to increase fastcgi_read_timeout but I don’t know where to put it in fastcgi.conf. Asked by rajankaneria Yes, you should use fastcgi_read_timeout. You can [...]

I’m tasked with implementing VPN access on a gateway. The LAN DHCP server is configured to assign the same IP address to a given MAC address. I would like to have this functionality for clients who connect over the VPN. I know I can configure openVPN and strongSwan to use a 3rd party DHCP server, but do daemons use the client MAC address for the DHCP request? Everything I’ve read doesn’t go into this detail, [...]