SecurityDVD
September 2nd, 2003, Tuesday September 2, 2003 05:25:44 PM
Shopping List:
[list=1]
Internet Connection (Dial-Up, DSL, Cable)
BBI Agent Router (Free Software) : www.bbiagent.com
386 or Newer PC with 8 MB or More RAM
1.44 MB floppy drive and diskette
Two supported Ethernet or NE2000 Compatible network cards: $10-$50 each, (www.bbiagent.net/en/hardware.htm for a list of supported network cards)
Simple 10 dollar hub
[/list=1]
For this how-to, we'll use a floppy-size distro of Linux known as BBI Agent. It doesn't require any major computer hardware, just a 386 class machine with 8MB of Memory or More. I selected BBI Agent because it supports everything you need to get your network running, it also includes a Netfilter (www.netfilter.org) firewall, and is stupidly-simple to setup.
Now we know what youre thinking: Sounds too good to be true, there must be a downside... Fear not skeptics! BBI Agent has all the featuures of a residential gateway/router, yet is highly configurable, and EXTREMELY stable.
Jeez, it even has advanced features that consumer-based gateways routers dont have and can support up to 60,000 clients.
Step 1:
This article assumes you're comfortable with Windows-based home networking, and have an existing network.
If you have a broadband connection, you will need to install two NICs (network cards) on your router box. One NIC will be the WAN (wide area network (internet )) and the other NIC will be for the hub. (LAN (local area network))
Connect the WAN Nic to your cable/DSL modem and connect the LAN NIC to the hub/switch. Then you should connect each computer into the hub via CAT5 Cable. For initial setup you should have a monitor and keyboard on the router to configure the PC. Keep a serial port enabled for an external analog modem. Once you have everything connected, turn on the networked PCs and make sure that the lights on all the networked NICs are lit. (DO NOT TURN ON THE ROUTER YET, JUST THE HUB)
Step 2:
Your router can only include the NICs supported by BBI Agent, which is based on the 2.4 Linux kernel. (Any NIC with Windows drivers will work in your desktop machines.) Most NICs bought at BestBuy or CompUSA in the last few years should be supported. Your motherboard will also have to be able to support two network cards, which may be an issue with older mobos. Plug-and-play is not supported, so youll need to change your NIC and BIOS to manually asign their own resources by disabling the PnP OS Option, usually Found under integrated peripherals. Install the cards you wish to use into the router computer: e careful, some older ISA slots are tight. Use firm pressure, but not enough to bend the mobo. You'll Temporarily need a monitor and a keyboard to boot the computer off a DOS disk; use the cards' provided configuration utilities to assign I/O Address and IRQ. The standard DOs-based NIC Configuration has limited options and is self explanatory. You can then remove the monitor and keyboard once the router is up and running, but some computers dont boot without a keyboard, or lock up once the keyboard is removed.
Step 3:
Now we will begin configuring and downloading your router's operating system. From any computer with a Java-compatible Internet browser, open www.bbiagent.com and click the Download tab. The web site has exhaustive instructions and support on how to setup the floppy boot image, but ill walk you through the basics. Scroll down the page, and click Applet, in red text.. On the first applet page click next, then select the type of CPU and amount of RAM used by your router.
On this screen, youll also set the IP address and subnet mask of your router. I recommend using 192.168.1.1 as the IP, and 255.255.255.0 as the subnet mask. A subnet mask of 255.255.255.0 will allow about 253 clients, while 255.0.0.0 will allow a possible 60,000 machines, but we doubt your machine would support that kind of traffic. The ip address range starting with 192.168. is a private IP and is for use on private networks only.
Adter youve chosen your IP address and configured your CPU and RAM info, your ready to proceed to the next step..
Step 4:
Now we need to configure your LAN-side NIC. This is the card that will be plugged into your hub. First select the cards manufacturer and model, then setup the irq and io address that either the bios assigned or that you configured using the DOS utility in step 2. Once youve done that, move onto the next screen. Here youll want to select your connection protocol. This controls how your PC connect to the internet via your ISP's network. The most common setup is a standard dynamic IP address assigned you with a static IP Address, choose the last option... (Ethernet with static address)
If youre going to connect to a dial up connection throo the router, you should select the PPP option... If you arent sure, ask your ISP. Now press NEXT. You will be presented with another config screen that will either configure your WAN-side NIC or your external modem. Follow the instructions on-screen to configure your connection to the internet.
Step 5:
The next step allows you to configure some advanced options. (DNS proxy/cache) This is really optionsal, but I reommend it for most people, especially for Dial-up users. The DHCP server however is a must-have and a no-brainer.
The first option on this page is the DNS proxy. A DNS Proxy contains a cache that simply stores DNS entries, which are the IP Addresses of domain names, such as www.counter-strike.net. I recommend enabling the DNS cache for better performance.
The DHCP Server assigns IP Addresses to each of the machines on your private network, so unless you want to do that on each machine manually, youll need to enable the dhcp server.
Now click next.
Step 6:
Were almost done with the initial config, on this screen you can verify your settings and download the linux floppy image... After you click the download button, save the image in a convenient place on your C:\ drive. To write the image to a floppy, youll need BBIWrite for Windows 95/98/ME, or Rawrite.exe for DOS. (Head to www.bbiagent.com to download them there.) I couldnt get either of the image writing apps to work in xp or 2k, so youll have to bust out that trusty DOS boot disk again.
All done? Throw that floppy into the router box, power it up, and your good to go.
Step 7:
To further configure the router, youll need to access it via a web browser on another computer. this means you can ditch the monitor and keyboard on the router,.
To administer the router, youll need to download BBIAgent explorer from the BBIAgent site (BBIAgent.jar) ... Once you have the JAR file, enter the router's address in your browser... This will typically be 192.168.1.1... When you get a dialog box requesting the BBIAgent Explorer file, browse to the JAR File. The default password is BBIagent. Once your in the config app, change your router's password immediately... Go to configuration, click password, and then change it.
Then click WAN Connection, and it will tell you if the router is configured properly by showing you the IP Address, DNS server, default gateway, etc.. The most important part will be configuring any passwords or settings youll need to connect to and communicate with your ISP. Once all the information is in, you can select Connect from the setup menu
From the administration page you can establish and set the parameters for any virtual services, such as DNS and DHCP and you can configure the firewall and security rules. After that, your connection should be good to go1. Remember to hit "Save to diskette" after you make any changes.
Argh. Have fun with your new router which came at the expense of my wrist ;)
[list=1]
Internet Connection (Dial-Up, DSL, Cable)
BBI Agent Router (Free Software) : www.bbiagent.com
386 or Newer PC with 8 MB or More RAM
1.44 MB floppy drive and diskette
Two supported Ethernet or NE2000 Compatible network cards: $10-$50 each, (www.bbiagent.net/en/hardware.htm for a list of supported network cards)
Simple 10 dollar hub
[/list=1]
For this how-to, we'll use a floppy-size distro of Linux known as BBI Agent. It doesn't require any major computer hardware, just a 386 class machine with 8MB of Memory or More. I selected BBI Agent because it supports everything you need to get your network running, it also includes a Netfilter (www.netfilter.org) firewall, and is stupidly-simple to setup.
Now we know what youre thinking: Sounds too good to be true, there must be a downside... Fear not skeptics! BBI Agent has all the featuures of a residential gateway/router, yet is highly configurable, and EXTREMELY stable.
Jeez, it even has advanced features that consumer-based gateways routers dont have and can support up to 60,000 clients.
Step 1:
This article assumes you're comfortable with Windows-based home networking, and have an existing network.
If you have a broadband connection, you will need to install two NICs (network cards) on your router box. One NIC will be the WAN (wide area network (internet )) and the other NIC will be for the hub. (LAN (local area network))
Connect the WAN Nic to your cable/DSL modem and connect the LAN NIC to the hub/switch. Then you should connect each computer into the hub via CAT5 Cable. For initial setup you should have a monitor and keyboard on the router to configure the PC. Keep a serial port enabled for an external analog modem. Once you have everything connected, turn on the networked PCs and make sure that the lights on all the networked NICs are lit. (DO NOT TURN ON THE ROUTER YET, JUST THE HUB)
Step 2:
Your router can only include the NICs supported by BBI Agent, which is based on the 2.4 Linux kernel. (Any NIC with Windows drivers will work in your desktop machines.) Most NICs bought at BestBuy or CompUSA in the last few years should be supported. Your motherboard will also have to be able to support two network cards, which may be an issue with older mobos. Plug-and-play is not supported, so youll need to change your NIC and BIOS to manually asign their own resources by disabling the PnP OS Option, usually Found under integrated peripherals. Install the cards you wish to use into the router computer: e careful, some older ISA slots are tight. Use firm pressure, but not enough to bend the mobo. You'll Temporarily need a monitor and a keyboard to boot the computer off a DOS disk; use the cards' provided configuration utilities to assign I/O Address and IRQ. The standard DOs-based NIC Configuration has limited options and is self explanatory. You can then remove the monitor and keyboard once the router is up and running, but some computers dont boot without a keyboard, or lock up once the keyboard is removed.
Step 3:
Now we will begin configuring and downloading your router's operating system. From any computer with a Java-compatible Internet browser, open www.bbiagent.com and click the Download tab. The web site has exhaustive instructions and support on how to setup the floppy boot image, but ill walk you through the basics. Scroll down the page, and click Applet, in red text.. On the first applet page click next, then select the type of CPU and amount of RAM used by your router.
On this screen, youll also set the IP address and subnet mask of your router. I recommend using 192.168.1.1 as the IP, and 255.255.255.0 as the subnet mask. A subnet mask of 255.255.255.0 will allow about 253 clients, while 255.0.0.0 will allow a possible 60,000 machines, but we doubt your machine would support that kind of traffic. The ip address range starting with 192.168. is a private IP and is for use on private networks only.
Adter youve chosen your IP address and configured your CPU and RAM info, your ready to proceed to the next step..
Step 4:
Now we need to configure your LAN-side NIC. This is the card that will be plugged into your hub. First select the cards manufacturer and model, then setup the irq and io address that either the bios assigned or that you configured using the DOS utility in step 2. Once youve done that, move onto the next screen. Here youll want to select your connection protocol. This controls how your PC connect to the internet via your ISP's network. The most common setup is a standard dynamic IP address assigned you with a static IP Address, choose the last option... (Ethernet with static address)
If youre going to connect to a dial up connection throo the router, you should select the PPP option... If you arent sure, ask your ISP. Now press NEXT. You will be presented with another config screen that will either configure your WAN-side NIC or your external modem. Follow the instructions on-screen to configure your connection to the internet.
Step 5:
The next step allows you to configure some advanced options. (DNS proxy/cache) This is really optionsal, but I reommend it for most people, especially for Dial-up users. The DHCP server however is a must-have and a no-brainer.
The first option on this page is the DNS proxy. A DNS Proxy contains a cache that simply stores DNS entries, which are the IP Addresses of domain names, such as www.counter-strike.net. I recommend enabling the DNS cache for better performance.
The DHCP Server assigns IP Addresses to each of the machines on your private network, so unless you want to do that on each machine manually, youll need to enable the dhcp server.
Now click next.
Step 6:
Were almost done with the initial config, on this screen you can verify your settings and download the linux floppy image... After you click the download button, save the image in a convenient place on your C:\ drive. To write the image to a floppy, youll need BBIWrite for Windows 95/98/ME, or Rawrite.exe for DOS. (Head to www.bbiagent.com to download them there.) I couldnt get either of the image writing apps to work in xp or 2k, so youll have to bust out that trusty DOS boot disk again.
All done? Throw that floppy into the router box, power it up, and your good to go.
Step 7:
To further configure the router, youll need to access it via a web browser on another computer. this means you can ditch the monitor and keyboard on the router,.
To administer the router, youll need to download BBIAgent explorer from the BBIAgent site (BBIAgent.jar) ... Once you have the JAR file, enter the router's address in your browser... This will typically be 192.168.1.1... When you get a dialog box requesting the BBIAgent Explorer file, browse to the JAR File. The default password is BBIagent. Once your in the config app, change your router's password immediately... Go to configuration, click password, and then change it.
Then click WAN Connection, and it will tell you if the router is configured properly by showing you the IP Address, DNS server, default gateway, etc.. The most important part will be configuring any passwords or settings youll need to connect to and communicate with your ISP. Once all the information is in, you can select Connect from the setup menu
From the administration page you can establish and set the parameters for any virtual services, such as DNS and DHCP and you can configure the firewall and security rules. After that, your connection should be good to go1. Remember to hit "Save to diskette" after you make any changes.
Argh. Have fun with your new router which came at the expense of my wrist ;)