Firewall Switch: Difference between revisions
imported>Jacob (Created page with "<hr> <p style="text align:left;">Previous ZFS Backup <span style="float:right;">Return Freebsd Knowledge Base</span></p> <hr> <hr> <p style="text align:left;">Prev...") |
imported>Jacob No edit summary |
||
| Line 6: | Line 6: | ||
Active firewall start point is | |||
Green | |||
em0 10.0.0.1 | |||
Red | |||
em1 192.168.9.10 | |||
If firewall1 Hardware is to become active use the next sequence. | |||
Connect to firebox | |||
>$ cd ~/conf/etc | |||
>$ vim rc.conf_v013 | |||
Make active | |||
hostname="fire.sjakio.com" | |||
ifconfig_em1="inet 192.168.9.10 netmask 255.255.255.0" | |||
ifconfig_em0="inet 10.0.0.1 netmask 255.255.255.0" | |||
>$ sudo cp rc.conf_v013 /etc/rc.conf | |||
>$ cd ../isc-dhcpd/ | |||
>$ sudo cp dhcpd-firewall1.conf_v001 /usr/local/etc/dhcpd-firewall.conf | |||
Connect to fire | |||
>$ cd ~/conf/etc | |||
>$ vim rc.conf_v013 | |||
Make active | |||
hostname="firebox.sjakio.com" | |||
ifconfig_em1="inet 192.168.9.20 netmask 255.255.255.0" | |||
ifconfig_em0="inet 10.0.0.20 netmask 255.255.255.0" | |||
>$ sudo cp rc.conf_v013 /etc/rc.conf | |||
>$ cd ../isc-dhcpd/ | |||
>$ sudo cp dhcpd-firewall1.conf_v001 /usr/local/etc/dhcpd-firewall.conf | |||
In both execute. | |||
>$ sudo shutdown -r now && exit | |||
On the workstation edit ~/.ssh/known_hosts and remiove entries for fire, firebox, 10.0.0.1 and 10.0.0.20 | |||
>$ vim ~/.ssh/known_hosts | |||
Note: | |||
Important the only 2 ip addresses open for ssh are 10.0.0.1 and 10.0.0.20. So each of the 2 fire walls need to have one of these ip addresses, otherwise no ssh connection can be made. | |||
<hr> | <hr> | ||
Revision as of 15:18, 1 February 2020
Previous ZFS Backup Return Freebsd Knowledge Base
Active firewall start point is Green em0 10.0.0.1 Red em1 192.168.9.10
If firewall1 Hardware is to become active use the next sequence.
Connect to firebox >$ cd ~/conf/etc >$ vim rc.conf_v013 Make active hostname="fire.sjakio.com" ifconfig_em1="inet 192.168.9.10 netmask 255.255.255.0" ifconfig_em0="inet 10.0.0.1 netmask 255.255.255.0"
>$ sudo cp rc.conf_v013 /etc/rc.conf
>$ cd ../isc-dhcpd/ >$ sudo cp dhcpd-firewall1.conf_v001 /usr/local/etc/dhcpd-firewall.conf
Connect to fire
>$ cd ~/conf/etc >$ vim rc.conf_v013 Make active hostname="firebox.sjakio.com" ifconfig_em1="inet 192.168.9.20 netmask 255.255.255.0" ifconfig_em0="inet 10.0.0.20 netmask 255.255.255.0" >$ sudo cp rc.conf_v013 /etc/rc.conf
>$ cd ../isc-dhcpd/ >$ sudo cp dhcpd-firewall1.conf_v001 /usr/local/etc/dhcpd-firewall.conf
In both execute.
>$ sudo shutdown -r now && exit
On the workstation edit ~/.ssh/known_hosts and remiove entries for fire, firebox, 10.0.0.1 and 10.0.0.20
>$ vim ~/.ssh/known_hosts
Note:
Important the only 2 ip addresses open for ssh are 10.0.0.1 and 10.0.0.20. So each of the 2 fire walls need to have one of these ip addresses, otherwise no ssh connection can be made.
Previous ZFS Backup Return Freebsd Knowledge Base