Thanks for the reply. The MAC addresses would only apply if I can get the manual config working for the PCI cards. I don't have the info I need to do the manual config (i.e. what options need to be specified, how do I find the values for those options, etc.).
Thus far, I have the Red and Green interfaces running. I think I'll be able to convince the boss to buy an SMC card at which point we'll have 3 different NICs. However, this means a delay in implementing the firewall. On a different note, does anyone have any suggestions on how to handle the IP addressing in our case? We have 8 static addresses with about 5 of them in use right now. These 5 are fairly important (mailserver, web server, VPN, etc.) and shouldn't change. Is there any way we can make IPCop recognize all the addresses on the external interface (aliasing I guess), and be able to route according to what address is used? My experience with IPCop suggests I can only use the default address of the Red interface for determining routing. I'd rather not have to put in a hub that would connect all our public boxes directly to the DSL modem (I'd rather they were on the DMZ and accessed through the firewall). But, I haven't had a need (or the resources) to setup an Orange interface before (for myself that is), so I'm sure I'm missing something. More reading coming down the pipe, I can tell. Thanks again for the input. Shawn -----Original Message----- From: Neil Bower [mailto:[EMAIL PROTECTED] Sent: Sunday, June 08, 2003 8:39 PM To: [EMAIL PROTECTED] Subject: Re: (clug-talk) Need help with IP Cop at work - NIC issue Hi Shawn, As far as I know ou can still do manual configs on the PCI cards. This is somethng I posted earlier in the week that can help if you're using the same type of cards. I installed IPCop using 3 NICS (all 3-Com) 1 - 10mb/s ISA Card and 2 -10/100 PCI Cards. The installation went fairly well and had no issues with the installation discovering the ISA Card - it actually detected that one first. Being as the ISA Card is used on the red zone, it actually helped with eliminating which card wasn't to be used for the green zone. Not related to your problem, but may help later in the installation is to make sure you record the MAC addresses of the cards as you put them in the box. Once your installation is finished, login to the console and check the output of the ifconfig. Based on the MAC addresses and the IP addresses, it'll be easy to know which cards to connect to which zones. Hope this helps, Neil On Sunday 08 June 2003 18:28, Shawn Grover wrote: >At work, we have a need to revise our network wiring/architecture. I've >convinced the power's that be to try out IP Cop for our firewall, instead > of the multiple Windows ISA servers we have now - the selling point was > that IP Cop is much easier to manage than ISA. However, I'm in the > process of building the IPCop box now, and am having problems with the > network cards. > >I don't have the luxury of having 3 distinct models of NICs (we're doing a >red-orange-green setup). The best I have is one or more DLink 538s, and a >single DLink 530. The probe feature detects these models with different >drivers, which is good, but I need to configure two (or three) 538s. The >documentation I've looked at indicates I should select a manual >configuration, and specify the options I need for the cards - however, this >documentation specifically deals with ISA cards. Can anyone tell me what >options I need to set for PCI cards? And where do I find the details for >each card? (I can dig out the drivers disk if needed, but for PCI I > normally don't need them). > >Thanks in advance. If I can get this working, I think I can get the > company moving towards Linux more (not that we've ever been opposed to > it...). > >(I'll buy a beer for who ever comes up with the answer - probably at the >install fest in a couple of weeks). > >Shawn
