Networking Help
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me
Go Back   Dev Shed ForumsSystem AdministrationNetworking Help
Reload this Page

Best Way To Do It?

Discuss Best Way To Do It? in the Networking Help forum on Dev Shed.
Best Way To Do It? Networking Help forum discussing issues such as routers, switches, small networks, file sharing etc. Find information for both wired and wireless networks.

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
  #1  
Old December 10th, 2003, 04:41 AM
Descend Descend is offline
Junior Member
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Dec 2003
Posts: 1 Descend User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: < 1 sec
Reputation Power: 0
Send a message via ICQ to Descend
Question Best Way To Do It?
Hi,

I need a bit of advice from all you networking gurus out there. I have a PC running Windows XP Pro that connects to the internet via ADSL. This PC is also networked to a much slower PC running Mandrake Linux.

I understand it is possible to share the connection on the XP machine to allow the Linux machine to access the internet, but my question is, is it possible to allow someone to connect via SSH or FTP to the Linux machine from the Internet?
Reply With Quote
  #2  
Old December 14th, 2003, 07:31 PM
alexgreg's Avatar
alexgreg alexgreg is offline
Full Access
Dev Shed Regular (2000 - 2499 posts)
  
Join Date: Jun 2000
Location: London, UK
Posts: 2,019 alexgreg User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 sec
Reputation Power: 11
Quote:
I understand it is possible to share the connection on the XP machine to allow the Linux machine to access the internet, but my question is, is it possible to allow someone to connect via SSH or FTP to the Linux machine from the Internet?

Probably not. Try nmap'ing your Windows machine remotely to see what ports are open.

Note that from a security point of view, you'd probably be better off putting the Linux box on the internet, configuring it to reject all incoming traffic, configuring IP forwarding, and then connecting the Windows box to it. This will give you a much more secure setup -- Windows runs with several ports open that can't easily be shut down. The recent Blaster worm exploited the RPC service running on one of these ports.

In case you were thinking it would be hard to make your Linux box reject all incoming traffic and do IP forwarding, this is how you do it:
Code:
# enable IP forwarding
echo 1 > /proc/sys/net/ipv4/ip_forward

# allow traffic from already-established connections
iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT

# drop all other incoming traffic on ppp0 interface
iptables -A INPUT -i ppp0 -j DROP

assuming that ppp0 is your public interface. It might take a bit of work to get your ADSL modem working on Linux, but there are HOWTO's and instructions out there for the most popular models.
__________________
Alex
(http://www.alex-greg.com)
Reply With Quote
Reply

Viewing: Dev Shed ForumsSystem AdministrationNetworking Help > Best Way To Do It?

« Previous Thread | Next Thread »

Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump


Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 





© 2003-2008 by Developer Shed. All rights reserved. DS Cluster 2 hosted by Hostway
Stay green...Green IT