You are on page 1of 22
División de Ingeniería de Sistemas y Automática Departamento de Ingeniería CURSO ADMINISTRACIÓN APACHE WEB SERVER PRÁCTICA

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

CURSO ADMINISTRACIÓN APACHE WEB SERVER

PRÁCTICA 1.b: Instalación y configuración de Apache en Linux

Objetivos

Instalación de del servidor Web Apache sobre Linux empotrado

Instalación y configuración de la distribución embeded Linux Freesco

Administración remota del servidor Freesco

Instalación de paquetes de seguridad OpenSSL y OpenSSH

Instalación y configuración de Apache con el módulo PHP4.3 y SSL

Configuración de Apache y PHP

Pruebas de funcionamiento.

Materiales

PC con Unidad de Disco Duro FAT

Disco

Conexión a Internet Software Freesco 0.3.2, OpenSSL, OpenSSH, Apache v1.3, PHPv4.3.

Desarrollo de la práctica

1)

Descarga del software de instalación de Freesco 0.3.2 y creación del disco de arranque.

2)

Instalación en disco duro y configuración

3)

Estudio de las opciones de configuración y administración

4)

Instalación de paquetes adicionales: Perl, OpenSSH, Open SSL, Apache 1.3.27 + PHP 4.3

Configuración de Apache

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 1. Descripción de Freesco Linux Freesco

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

1. Descripción de Freesco Linux

Freesco es una distribución Linux ‘empotrada’ para CPU x386 basada en el núcleo 2.0. Puede ser instala en un disco flexible de 1.4MB en su configuración básica como router de red. Requiere unos recursos de memoria y CPU reducidos por lo que puede trabajar de forma eficiente sobre PCs antiguos y computadores empotrados (EBC) usados en aplicaciones industriales.

Freesco utiliza particiones FAT por lo que puede coexistir con MSDOS (de hecho se arranca desde DOS). Los ficheros se almacenan comprimidos para optimizar el espacio siendo descomprimidos en el arranque sobre un disco RAM, lo que permite acelerar su funcionamiento y conseguir un comportmiento robusto frente a reinicializacones del sistema.

Una de las principales ventajas de esta distribución frente a otros Linux empotrados es que se mantine como un proyecto activo con actualizaciones y un soporte excelente por parte de la ‘comunidad freesco’. Esto ha permitido que evolucione desde su uso inicial como router gracias a la disponibilidad de multitud de paquetes software adicionales compilados específicamente para esta distribución.

El uso de paquetes adicionales exige el uso de almacenanmiento de disco duro o discos Flash-IDE. Como ejemplo, la figura siguiente muestra un sistema empotrado basado en la CPU Geode GX1 (300MHz), 256 MB RAM y disco Flash-IDE de 128 MBytes que implementa un servidor completo que actua de router para una red de control, firewall, servidor web Apache y servidor de aplicaciones Web PHP, todo ello en apenas 75 MB de almacenamiento en memoria Flash y con un rendimiento excelente. (El sistema forma parte de la aplicación TITERE para el control remoto de laboratorios de prácticas).

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 1. Descripción de Freesco Linux Freesco

El apéndice muestra las caraterísticas detalladas de Freesco 0.3.

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 2. Instalación de Fresco Linux 1.

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

2. Instalación de Fresco Linux

  • 1. Descargaremos en un directorio temporal (c:\temp) los ficheros freesco-032.zip y modules-030.zip desde la página web del curso.

  • 2. Descomprimiremos modules-030)

ambos

ficheros

en

dos

subdirectorios

(freesco-032

y

  • 3. En el subdirectorio fresco-032 ejecutaremos el programa make_fd.bat para crear el disco de arranque (nos solicitará que insertemos un disco en la unidad A:). Este dico incluye la imagen linux, el arrancador loadlin y los ficheros del sistema comprimidos.

  • 4. Instalaremos una versión actualizada el driver de nuestra tarjeta de red (3COM 3c905). Copiaremos desde el directorio [modules-030\modules\net\new-net- drivers] los siguientes ficheros : pci-scan.gz, 3c59x.gz. al directorio [a:\router\drv]. (Nota: solo podemos instalar un driver de red adicional)

  • 5. Instalaremos el driver del teclado español. Copiaremos del directorio [modules- 030\keymaps\] el fichero es.gz. al directorio [a:\router\kbd]. Borraremos el fichero us.gz

  • 6. Reiniciar el PC utilizando el disco generado. En el arranque nos muestra una pantalla con cuatro opiones:

    • - setup: permite configurar freesco

    • - debug: entra en modo depuración

    • - mv2hd: permite copiar freesco en disco duro

    • - shell: carga linux y muestra el shell

Si no escribimos nada arranca direntamente el shell. (el password inicial de root es root)

  • 7. Configuración básica: ejecutaremos la opción Setup (podemos ejecutarlo también desde la consola). Pulsaremos intro para aceptar el modo en color y nos mostrará una pantalla con las configuraciones básicas predefinidas (figura 1)

  • 8. Selecionaremos la opción e) Ethernet Router. (postermormente podremos ajustar con más detalle la configuración utilizando las opciones avanzadas (a)). Nos irá pidiendo los datos de configuración (se indican solo algunos parámetros que vamos a modificar):

    • - Hostname

    • - Domain name

    • - NIC

    • - 627 Use DHCP client -> yes

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería - 441 Enable public http server

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

  • - 441 Enable public http server -> yes

  • - 451 Enable Control HTTPserver -> yes

  • - 51 Enable FTP -> yes

  • - 19 Install Ramdrives -> yes

  • - Cambiar passwords de root y admin

  • - Configuración avanzada -> opciones de seguridad (23, 25)

Una vez terminada la configuración la guardaremos y reiniciaremos (opción

s)

CHOOSE ROUTER/SERVER TYPE

  • d) ISP <-- modem0 --> router <- ethernetN -> local net(s)

Dialup line router:

  • l) Leased line router:

^-- <- modemN -> remote net(s)

  • e) ISP <- network0 -> router <- ethernetN -> local net(s) ^-- <- modemN -> remote net(s)

Ethernet router:

  • b) ethernet Bridge:

bridge <- ethernetN -> local net(s)

  • p) printer <- LPT -> server <- ethernetN -> local net(s)

Print server:

  • r) Remote access server:

^-- <- modemN -> remote net(s)

  • a) t) Create reporT file

Advanced settings

  • v) w) vieW previous config

View current config

  • s) Save current config & exit

q) Quit without saving

 

Figura 1: configuración Freesco

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería - 441 Enable public http server

Figura 2 Configuración avanzada

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 9. Instalación en el disco Duro

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

9.

Instalación en el disco Duro: utlizaremos la opción mv2hd (se muestra solamente durante el arranque desde el Disquete). Freesco y la configuración presentes en el disco será copiada al disco duro (directorios c:\router). También se crea un fichero llamado router.bat que permite cargar freesco desde MSDOS. Podemos editar autoexec.bat para ejecutar router.bat automáticamente o bien arrancarlo manualmente, en este caso de bemos iniciar el PC en modo MSDOS pulssando la tecla F8 durante el arranque.

10. Comprobaremos que el router funciona correctamente. Durante el arranque nos habrá mostrado la dirección IP asignada.

  • - Haremos un ping desde otro PC arrancado con Winodws.

  • - Nos conectarmoe mediante un cliente Web a la dirección IP del router a través del puerto 82 (administración). Figura 3

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 9. Instalación en el disco Duro

Figura 3 Adminsitración remota Freesco

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 2. Instalación de paquetes en Fresco

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

2. Instalación de paquetes en Fresco Linux

Procederemos a la instalación de los paquetes adicionales utilizando la conexión a internet para la descarga remota de los mismos. El sistema de instalación incluye un script de descarga y configuración del software instalado. Los ficheros de configuración y arranque de cada paquete se almacenan en el directorio /boot/pkg/rc

Los paquetes se pueden localizar en los siguientes servidores web:

http://www.freescosoft.com/home/0.3.x/

http://freescosoft.freebse.ne/0.3.x/

http://es.freescosoft.net/0.3.x/

http://titere.umh.es/freesco/0.3.x/

http://lorca.umh.es/isa/es/cperf/apache/0.3.x/

  • 1. Instalaremos en primer lugar un parche del kernel necesario para Apache. Desde la consola (root) ejecutaremos:

cd /boot snarf http://titere.umh.es/freesco/0.3.x/kernel-032.icmp-vipc

  • mv kernel kernel.bak

  • mv kernel-032.icmp-vipc kernel reboot

  • 2. Instalación de paquetes:

  • - ejecutar setup.

  • - Selecciona la opción: a) Advanded settings

  • - Seleccionar la opción: p. Package menú (figura 4)

  • - Seleccionar el servidor: 7. Change default domain for package installation

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 2. Instalación de paquetes en Fresco

Figura 4 Gestión de paquetes software

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 3. Instalación del paquete perl :

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

  • 3. Instalación del paquete perl:

  • 4. Install package

Continue yes Enter for default URL Package name to install []? perl_5.6.1_dingetge

  • 4. Instalación del paquete openSSL:

  • 4. Install package

Continue yes Enter for default URL Package name to install []? openssl-0.9.6g_user_nadegda

  • 5. Instalación del paquete apache :

  • 4. Install package

Continue yes Enter for default URL Package name to install []? apache_1.3.27_dingetje

  • 6. Instalación del paquete openSSH:

  • 4. Install package

Continue yes Enter for default URL Package name to install []? openssh-full_3.5p1_nadegda

  • 7. Instalación del paquete mysql:

  • 4. Install package

Continue yes Enter for default URL Package name to install []? mysql-3.23.37-lightning

En la consola ejecutar:

rc_masq restart rc_mySQL boot rc_mySQL start

  • 8. Editar los ficheros siguientes: /boot/pkg/rc/rc_opensshd

-> comentar (#) la directiva firewall ipfwadm y cambiar $PORT por el valor 22

/boot/pkg/rc/rc_apache

-> comentar (#) la directiva firewall ipfwadm del puerto 443 (HTTPS)

/boot/pkg/rc/rc_mySQL -> comentar (#)las directiva firewall ipfwadm

  • 9. Reiniciar el sistema o ejecutar rc_masq restart

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 3. Configuración del servidor Web Apache

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

3. Configuración del servidor Web Apache

  • 1. Editaremos el fichero /boot/pkg/usr/local/apache/conf/httpd.conf de forma similar a lo indicado en la práctica anterior

  • 2. Editaremos el fichero /boot/pkg/usr/local/lib/php.ini siguiendo los mismos pasos.

Fichero php.ini

;;;;;;;;;;;;;;;;;;;;;;;;; ; Paths and Directories ; ;;;;;;;;;;;;;;;;;;;;;;;;;

; UNIX: "/path1:/path2"

include_path = ".:/www/php"

; The root of the PHP pages, used only if nonempty.

; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root

doc_root =/www/htdocs

Fichero httpd.conf

# directorio raíz servido por Apache DocumentRoot "/www/htdocs"

# Control de acceso al directorio raiz <Directory "/www/htdocs"> AllowOverride None Order allow,deny Allow from all </Directory>

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería Apéndice. Manual Freesco 0.3.x I. INTRODUCTION

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

Apéndice. Manual Freesco 0.3.x

I.

INTRODUCTION

 
 

1.

[Introduction]

 

ß

FREESCO is a *single floppy distribution* of Linux, intended to be a replacement for minor Cisco routers.

 

ß

It's name is derived from FREE ciSCO, and *is not* associated in any way with the SCO Unix operating system.

ß

By design, FREESCO can be installed on a floppy disk or hard disk compatible with 386 (and newer) generation pc's.

and is

ß

While there exists other complex LRP's (Linux Router Projects), FREESCO

 

evolved from the need for a less complex solution

a solution which

 

ß

FREESCO is very easy to setup, and flexible in functionality. From a simple base router system to a more complex setup, which includes multi-service combinations (such as serving virtual web sites), FREESCO provides numerous solutions for multiple environments.

ß

FREESCO *is* proof that even some great packages are $ FREE $

 
 

2.

[Requirements]

 

ß

386sx (486 or newer recommended)

ß

RAM - 8Mb minimum

ß

FDD - 1.44Mb

ß

HDD - optional, but recommended for large package installs and add-ons

ß

modem - optional, hardware controlled, winmodems are *not* supported

ß

(some TCP/IP networking knowledge is helpful)

 

3.

[License]

 

ß

GNU General Public License

ß

© 2000-2002, (v.0.3.0)

 
  • - Lewis Baughman

  • - Serge V. Storozhebykh

II.

FEATURES

 

1.

[Features]

 

ß

2.0.39 kernel

ß

Support for up to ten networks. This can be done with 10 nic's, or with multi- port network cards, and a bit of savvy on your part.

ß

Support for up to five printers, although two would have to be serial printers. IP restrictions can be enabled for each printer, so that printing can be limited to a range of IP's, or to just one IP per printer.

ß

Support for up to ten modems, although only four regular modems. Support includes Unix 4 or 8 port modems.

ß

FREESCO v.0.3.0 can run entirely from ram. This requires at least 17+Mb, with ramdisks enabled. (the write protection tab can be enabled on the floppy

División de Ingeniería de Sistemas y Automática in this mode) Departamento de Ingeniería ß When ramdisks

División de Ingeniería de Sistemas y Automática

in this mode)

Departamento de Ingeniería

  • ß When ramdisks are enabled, and depending upon how much ram you have, FREESCO can add one 2mb, one 4mb, one 2mb and one 4mb, or two 4mb ramdisks. To take advantage of this feature, your system will need a minimum of 17mb of ram. Systems with greater than 23mb of ram will have two 4mb ramdisks available for use. This feature is designed to run packages. With this feature, up to 4mb of packages can be installed on a *floppy* FREESCO. One ramdisk is reserved for the /tmp directory and to uncompress packages.

  • ß Ident server

  • ß DHCP, DNS, Print, Telnet server

  • ß FTP server

  • ß Limited support for SCSI hard drives

which means that the mechanism is

... there, but it requires a custom compiled kernel to support the actual

interface. (there will be kernels compiled by demand, as time permits)

  • ß FREESCO can now be installed on any FAT 16/32 drive. It is no longer required that the installation be on the primary drive or even the primary partition.

  • ß There is also an experimental/optional kernel with a 16k masq table, for the hardcore gamers

...

or very large networks.

  • ß There is a new package interface with a default domain that can be changed by the user.

  • ß Ramdrive packages can be set to load automatically at each boot, simply by including the following line in the rc_user file: pkg -r http://Any-where.com/Package-name This is intended for each user to have/modify their own packages; or use packages that do not require configuration.

  • ß PPPoE support.

  • ß A new netmeeting module that allows video conferencing and all of the netmeeting functions to run through Freesco.

  • ß A new set of NIC modules, which provide latest driver support for most network cards.

  • ß Encompasses every single feature that is currently in FREESCO 0.2.7

III.

INSTALLATION

  • 1. [Download]

    • ß latest download is available here: http://freesco.sourceforge.net/

  • 2. [Floppy Disk]

    • ß prepare a formatted floppy disk

    • ß download the latest freesco package, and extract its contents to a temporary folder

    • ß for ease of use, batch files have been included in the download: make_fd.bat, safe_fd.bat, fast_fd.bat

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería ß from a Windows explorer, or

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

  • ß from a Windows explorer, or from DOS, use <make_fd.bat> to create a FREESCO floppy install

  • ß follow the screen prompts

  • ß floppy install complete

  • 3. [Hard Disk]

    • ß follow the [Floppy Disk] insta llation procedures, as listed above

    • ß prepare your hard drive with a compatible DOS (FAT16 or FAT32). Make sure the drive is bootable in DOS.

    • ß boot from the floppy disk

    • ß a setup menu will appear, from which you have 1 of 4 choices, before the boot process continues with a normal boot

    • ß choose the third option: mv2hd [enter]

    • ß There is a set of options in the mv2hd drive section, that only appears if there is more than one FAT partition or FAT drive in the system. You will be prompted to use the *advanced mv2hd*.

    • ß This option asks what drive you want to actually install FREESCO to. You must enter the drive, such as /dev/hda1, or /dev/hda5, or /dev/hdb1, and so on. All partitions will be listed.

    • ß Following, you will be asked for the DOS drive letter assigned to that drive. (such as C D E F

...

etc)

  • ß the installation process will begin, shortly followed by another menu the following options:

    • (c) clean install

...

having

  • (o) overwrite existing install, leaving extra files intact

  • (s) save previous copy as router.bak

  • (a) abort choose your option appropriately

...

  • ß once the hard disk install completes, you will be prompted for a reboot ... remove the floppy diskette *after* the system has properly shut down, and begun a reboot process

  • ß you will be able to start the router manually, by typing from a dos prompt: <path>\router.bat [enter] alternately, you can modify the autoexec.bat file to include the following line: <path>\router.bat ...

where <path> is the path to the router.bat file

example -- c:\router.bat

  • ß hard disk install complete

  • 4. [Initial Setup]

    • ß first time installations for both floppy and hard disk require beginning setup procedures

    • ß *READ* the screen menus and prompts as they appear.

sound advice

... Every effort has been made to simplify the procedures, and to make the menu

structure intuitive.

  • ß in your initial setup screen you will need to choose the desired router/server type:

    • (d) dialup (l) leased (e) ethernet (b) bridge (p) print (r) remote access

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería ß from this point on, setup

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

 

ß

from this point on, setup procedures differ slightly, as determined by the router/server type you have chosen.

IV.

SERVICES

  • 1. [DNS]

 
 

ß

The Domain Name System (DNS) server provides translation between domain names (www.dyndns.org) and internet addresses (66.37.215.53).

ß

The local caching DNS server can reduce traffic between your local network and your ISP; as well as increase internet access speeds.

ß

Enabling this feature is highly recommended.

 
  • 2. [DHCP]

 

ß

The Dynamic Host Configuration Protocol (DHCP) server provides a framework for passing configuration information to hosts on a TCPIP network.

ß

In short, the DHCP server provides auto-configuration for individual client machines --- namely the client machines IP address, such as 192.168.0.110. Otherwise, you would have to do this configuration manually, for each machine.

ß

Enabling this feature is recommended, so long as there are no other DHCP servers active on the subnet.

 
  • 3. [Time]

 

ß

This service allows a synchronizing of time on all computers on your local network.

ß

You must know the host Time Server address, and the time offset between your local time and UTC (GMT) time. (example: www.clock.org)

 
  • 4. [Control]

 
 

ß

This service gives you an ability to control your router from a web browser.

ß

While giving you access to other services running on your Freesco server, the Control service allows you to issue many of the Linux commands.

 
  • 5. [Telnet]

 
 

ß

You can have full access to your router via telnet connection. Unlike http control service, it doesn't have any restrictions, and you can edit your config files from your workstation via telnet connection.

 
  • 6. [HTTP]

 

ß

This service makes hypertext and other documents available to web browsers (web server).

ß

You have the option to enable public access to a web server, or to enable local access, or to disable this service.

 
  • 7. [Print]

 

ß

Print server

...

that says it all.

ß

FREESCO 030 allows up to 5 print servers.

ß

And you can use IP matching, which defines IP's that are allowed to print using your lpd server.

 
  • 8. [FTP]

 

ß

The File Transfer Protocol (FTP) server allows for transferring of files to and from remote computer systems.

 
  • 9. [IDENT]

 
 

ß

The Indentification Protocol (ident) server provides a means to determine the identity of a user of a particular TCP connection.

ß

Given a TCP port number pair, it returns a character string which identifies the owner of that connection on the server's system.

ß

It is recommended to set this server to either (s) or (n).

ß

However, for some applications to run through FREESCO -- such as IRC -- it may be necessary to set this option to (y)

 

10.

[ADSL-PPPoE]

 
 

ß

Though this is not a service of FREESCO, per se, it is a topic worth noting.

ß

FREESCO is quite capable of providing router service to DSL providers.

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería ß Some Asymmetric Digital Subscriber Line

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

  • ß Some Asymmetric Digital Subscriber Line (ADSL) providers use Point-to-Point Protocol over Ethernet (PPPoE); and some do not.

  • ß ADSL is a service that provides broadband internet access. PPPoE is a protocol that some ADSL providers use to authenticate user access to the internet.

  • ß To connect to this type of service, FREESCO provides the backbone thru it's ethernet router setup.

V.

CONFIGURATION

NOTE:

This section is geared towards non-advanced users --- that is users with little or no knowledge with FREESCO features & setup procedures.

As a quality aid, this section may lack clarity. It is not meant to teach you networking skills, but rather provide a pictoral overview of the setup procedures and options that are available.

Freesco's forum provides excellent and helpful feedback for any unanswered questions that you may have:

http://forums.freesco.org

Options in *red* generally require no changing, and are intended for advanced users

Throughout the setup process, you will be presented with options of the form (y/s/n); defined as follows:

----- y -- enable service worldwide, insecure! ----- s -- enable service locally, secure (recommended) ----- n -- disable service

When choosing a type of FREESCO installation, you will be presented with the following main menu:

CHOOSE ROUTER/SERVER TYPE

  • d) ISP <-- modem0 --> router <- ethernetN -> local net(s)

Dialup line router:

  • l) Leased line router:

^-- <- modemN -> remote net(s)

  • e) ISP <- network0 -> router <- ethernetN -> local net(s) ^-- <- modemN -> remote net(s)

Ethernet router:

  • b) ethernet Bridge:

bridge <- ethernetN -> local net(s)

  • p) printer <- LPT -> server <- ethernetN -> local net(s)

Print server:

  • r) Remote access server:

^-- <- modemN -> remote net(s)

  • a) t) Create reporT file

Advanced settings

  • v) w) vieW previous config

View current config

  • s) Save current config & exit

q) Quit without saving

 

1.

[Dial-Up]

+ From main menu, choose option (d)

+ Follow the [Common-to-All] procedures

49. Do you want to enable DynDNS/DHS/CJB (y/n) ----- If you choose (y) then

---------- 49. Want to setup your DynDNS client now (y/n)

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 81. LIST OF CURRENTLY DEFINED ISP's

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

81. LIST OF CURRENTLY DEFINED ISP's

 

[ ISP name

Login name

Phone number(s) ]

 

-------------------- -------------------- --------------------

 

new

<< CREATE NEW CONNECTION >>

-------------------- -------------------- --------------------

NOTE: Default ISP marked with - *

 

[ Selected ISP = new ]

 
  • 811. Edit selected ISP ------- 10. ISP/connection name (1-8 chars) ------- 11. ISP phone number ------- 12. Keep up link for sec (0-dont care, 1-forever) ------- 13. Primary DNS address ------- 14. Secondary DNS address ------- 15. ISP http proxy address ------- 16. Type of connection (ppp or slip) ------- 18. Does your ISP give you a dynamic IP address ------- 21. Custom initialization string (- disable) ------- 22. Authentication method (pap, chap, or script) ------- 31. PAP/CHAP ISP login (' clear) ------- 32. PAP/CHAP ISP password ('clear)

  • 812. Define new ISP ------- 10. ISP/connection name (1-8 chars)

 
  • 813. Make selected ISP default when router starts

 
  • 819. Delete selected ISP

 

Select ISP (type its name) or action on selected ISP (x-exit)

 

*NOTE* In order to perform modifications on a defined ISP, you must first type in the ISP name. At which point it will become selected for editing.

+ Do you want to change the "root" and "admin" passwords(y/n)

 

+ Configuration is complete. Save settings, and restart system.

 
  • 2. [Leased]

+ From main menu, choose option (l)

+ Follow the [Common-to-All] procedures

49. Do you want to enable DynDNS/DHS/CJB (y/n) ----- If you choose (y) then

---------- 49. Want to setup your DynDNS client now (y/n)

+ Do you want to change the "root" and "admin" passwords(y/n)

+ Configuration is complete. Save settings, and restart system.

  • 3. [Ethernet]

+ From main menu, choose option (e)

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería + Follow the [ Common-to-All ]

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

+ Follow the [Common-to-All] procedures

Primary DNS is required

... ... ...

Secondary DNS is optional.

Primary DNS address (usually your provider's DNS)

Secondary DNS address (otherwise -)

  • 49. Do you want to enable DynDNS/DHS/CJB (y/n)

----- If you choose (y) then

---------- 49. Want to setup your DynDNS client now (y/n)

+ Do you want to change the "root" and "admin" passwords(y/n)

+ Configuration is complete. Save settings, and restart system.

  • 4. [ADSL-PPPoE]

+ For ADSL configuration follow the [Ethernet] procedures.

+ And, if you need to use PPPoE with your ADSL provider

----- 626. Use PPPoe = (y)

  • 91. Ethernet ISP

----- 911. Gateway ----- 912. Primary DNS

----- 913. Secondary DNS ----- 914. HTTP proxy ----- 915. PPPoE login name ----- 916. PPPoE password

  • 5. [Print]

+ From main menu, choose option (p)

+ Follow the [Common-to-All] procedures

+ Do you want to change the "root" and "admin" passwords(y/n)

+ Configuration is complete. Save settings, and restart system.

  • 6. [Remote Access]

+ From main menu, choose option (r)

+ Follow the [Common-to-All] procedures

+ Do you want to change the "root" and "admin" passwords(y/n)

+ Configuration is complete. Save settings, and restart system.

  • 7. [Bridge]

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería + From main menu, choose option

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

+ From main menu, choose option (b)

+ Do you want to change the "root" and "admin" passwords(y/n)

+ Configuration is complete. Save settings, and restart system.

  • 8. [Advanced Settings Menu]

When you run "setup" and choose the "advanced settings" option, you will arrive at this main screen:

One of the *safety* features of the setup script, is that you have the option to exit without saving changes.

Upon that note, and in the interest of familiarizing yourself with the setup procedures, it is recommended that you *look* around by choosing options. (make sure you choose the option to exit without saving changes, when you're done)

[ System Options ]

[ Users/Passwords ]

[ Hardware ]

  • 11. On/Off NAT/Firewall

31.

root/admin

52.

COM ports

  • 12. On/Off Bridging mode

32.

Dial-in users

53.

Ethernet cards

  • 13. Memory/Extra

33.

Dial-out control

  • 14. Savers (screen,hdd)

[ Networks ]

  • 15. [ Services ]

Swap file

61. Host/Domain

  • 16. Log sizes

41. DNS/server

62. Local Networks

  • 17. 42. Read only floppy

Diagnostic beeps

 

On/Off Debugging

  • 18. 43. DHCP server

[ Modems ]

  • 19. Extra ram drives

44.

HTTP server

71.

Modem settings

  • 20. System monitor

45.

Control Panel

  • 21. and Time server [ Dial-up router ]

Console colors

 

46.

Print server

81.

Add/Edit/List ISP

[ Security/Limitations ]

47.

Telnet server

82.

Diald options

  • 22. Remote Access

48.

Port forwarding

23

Ban list

49.

DynDNS client

[ Permanent router ]

24.

Internal security

50.

Ident server

91.

Ethernet ISP

51.

FTP server

92.

Leased line ISP

[ Add-on packages ]

p.

Packages menu

 
  • 9. [Common-to-All]

All router/server configuration choices (except ethernet Bridge) use a similar block of configuration options.

This section identifies that block.

  • 611. Hostname of this computer [router]

  • 612. Domain name [inet]

NETWORK CARD SETTINGS

 
 
 
División de Ingeniería de Sistemas y Automática Departamento de Ingeniería ... ----- enter the Nic #

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

... ----- enter the Nic # to change it's settings ----- for PCI Nic's, choose 0
...
----- enter the Nic # to change it's settings
----- for PCI Nic's, choose 0 for both I/O and IRQ settings
----- x - exit, when done
[- NIC 0 -]
...
thru to
[- NIC 9 -]
[ Network # ]
0.
1.
2.
[ Interface
]
eth0
[ IP address ]
192.168.0.1
[ Network # ]
3.
4.
5.
[ Interface
]
[ IP address ]
[ Network # ]
6.
7.
8.
[ Interface
]
[ IP address ]
[ Network # ]
9.
[ Interface
]
[ IP address ]
[ -------------- Network # specific settings -------------- ]
620.
Interface name
Possible types of interfaces
ethN - ethernet interface number N, ex. eth0
ethN:M - alias number M for ethernet interface number N
arcN - kind of arcnet interface
arcNe - kind of arcnet interface (probably most used)
arcN:M -
arcNe:M - aliases for arcnet interfaces
trN - tokien ring interface
trN:M - alias for token ring interface
sbniN - granch SBNI12 board
621.
IP address
622.
Network mask
623.
Network addr
624.
Broadcast addr
625.
DHCP pool
----- IP range for DHCP server, - disable DHCP service on
this interface
Example: 192.168.0.10 192.168.0.30
Note 1:
DHCP daemon eats memory for this pool, so be
realistic and do not reserve too many addresses
Note 2:
Don't include Freesco's own address in this
range.
Don't include very first and last IP addresses:
this example is wrong
192.168.1.0 192.168.1.255
626.
Use PPPoE
----- choose (y) only if your ISP requires PPPoE
----- If you choose PPPoE, then
---------- 630. ClampMSS
Rewrites all packets for PPPoE connections so that internal
machines do not need to have their MTU changed to 1492.
As this is CPU intensive, it is not recommended for slower
División de Ingeniería de Sistemas y Automática Departamento de Ingeniería For changing the Maximum Transmit Unit

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

For changing the Maximum Transmit Unit of the external interface.

CPU's. ---------- 632. MTU

----- Use DHCP client to configure network

  • 627. Use DHCP client

----- Update DNS server settings by DHCP

  • 628. Set DNS via DHCP

Should be left blank in most configurations. MAC spoofing is for imitating another network card which your ISP has assigned it's MAC address into their system.

  • 629. MAC addr

----- Enter your ISP's default gateway here. ----- NOTE 1: not all IPS's require this setting ----- NOTE 2: not required when using the dhcp client

  • 631. Gateway

[ *NOTE* ] (1). With Dialup & Leased router, and for eth0 (that is the first network card) options 620-629 are available

(3). And for all other network cards, options 620-625 are available

(2). With Ethernet, Print & Remote Access, and for eth0 (that is the first network card) options 620-632 are available, excluding 625

choose network 0-9 or its parameter to change (x-exit)?

----- If you choose (y), then [ #4 AST Unix four(eight) ports board - cua4-cua7(cua4-cua11) ]
----- If you choose (y), then
[ #4 AST Unix four(eight) ports board - cua4-cua7(cua4-cua11) ]
[ #3 COM4 (0x2E8 IRQ3) ]
[ #2 COM3 (Ox3E8 IRQ4) ]
Advanced modem setup? (y/n)
Autodetect modems now? (y/n)
51. COMMUNICATION PORTS SETTINGS
71. MODEMS SETTINGS
Communication hardware settings. Enter a # or (x-exit)
Base I/O =
Shared IRQ =
Extra =
UART type =
Mask Rgstr =
Extra =
IRQ =
I/O =
Extra =
IRQ =
I/O =
[ #1 COM2 (0x2F8 IRQ3) ]
Extra =
IRQ =
I/O =
Extra =
IRQ =
I/O =
[ #0 COM1 (0x3F8 IRQ4) ]
[ Modem # ] [ Port ] 0. 4. 2. 3. 1.
[ Modem # ]
[ Port ]
0.
4.
2.
3.
1.
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
For changing the Maximum Transmit Unit of the external interface. CPU's. ---------- 632. MTU ----- Use
División de Ingeniería de Sistemas y Automática Departamento de Ingeniería [ Modem # ] [ Port

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

[ Modem # ] [ Port ] 5. 6. 7. 8. 9. 710. Search and autoconfig
[ Modem # ]
[ Port ]
5.
6.
7.
8.
9.
710.
Search and autoconfig modems
[ Modem # specific settings ]
711.
Port
712.
Port speed
713.
Init string
714.
Dial-in IP addr
NOTE: If this modem is for dialin use, this is the IP address assigned to the dialin or
null modem user. Setting this to an unused address in your local network's subnet will
allow Freesco to do proxy arp for the modem user.
715.
Enable null modem
Null connect script
NOTE: This feature enables a null modem cable connection on this interface. If you
have a dialup internet connection *DO NOT* enable this feature on Modem-M
The Modem connect script is the sequence of code that is sent and received by the
client and the server. The default for a null modem is
CLIENT OK
However, if you are using an actual modem driver in your client. A more involved
sequence is required. Example:
AT OK ATH OK ATE0V1 OK AT OK ATDT CONNECT
[ Common settings ]
716.
Modem # MTU
717.
Modem # MRU
718.
Modems 0-9 MTU
719.
Modems 0-9 MRU
Choose modem 0-9 or parameter to change (x-exit)
411.
Enable caching DNS server (y/s/n)
----- If you choose (y/s), then
---------- 412. Enable DNS requests logging (y/n)
---------- 413. Do you want to add static IP's to your DNS file (y/n)
431.
Enable DHCP server (y/n)
----- If you choose (y), then
---------- 432. WINS address (if you have one, otherwise -)
---------- 433. Default-lease-time (sec)
---------- 434. Maximum-lease-time (sec)
---------- 435. Do you want to create/edit static DHCP leases (y/n)
441.
Enable public HTTP server (y/s/n)
----- If you choose (y/s), then
---------- 442. Public HTTP server IP port [80]
451.
Enable time server and router control via HTTP (y/s/n)
----- If you choose (y/s), then
---------- 452. Control HTTP server IP port [82]
---------- 453. Host Time server address (- disable syncing time)
461.
Enable Print Server(s) (y/s/n)
----- If you choose (y/s), then
---------- Print server 1 port number [515]
---------- Print server 1 device port name [lp1]
---------- Allowed IP match with [1]
---------- Print server 2 port number []
---------- Print server 2 device port number []
---------- Allowed IP match with []
División de Ingeniería de Sistemas y Automática Departamento de Ingeniería 47. Enable Telnet server (y/s/n) 51.

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

  • 47. Enable Telnet server (y/s/n)

  • 51. Enable FTP server (y/s/n)

----- If you choose (y/s), then

---------- FTP port [21] ---------- Maximum Allowed FTP connections [5] ---------- Allow anonymous FTP connections (y/n)

  • 50. Do you want to enable the ident server (y/s/n)

This server gives out system information. It is not a huge security risk other than giving the type of system. Which can be exploited by an attacker. It is recommended to leave this set to either (s) or (n). However, to get some applications to run through Freesco, such as IRC it may be required to use (y)

  • 141. Blank screen after N min (0-never)

  • 142. Stop hdd after N*5 sec (0-never)

    • 15. Swap file size in MB on boot device (0-disable)

    • 13. Do you want to enable extra modules/programs (y/n)

    • 19. Do you want to install ram drives (y/n)

      • 161. System log size (bytes)

      • 162. Logins log size (bytes)

VI.

[Extra Modules]

  • ß This archive contains extra network card driver modules that can be added to freesco.

  • ß The following drivers are already built into freesco, and therefore do not need installing manually:

ne

ISA NE2000 and clones, and some PCI NE2000 clones.

ne2k-pci *

Most PCI NE2000 clones, including rtl8029

3c509

3com 3c509, 3c509B, 3c529, and 3c579

3c59x

3com 3c590, 3c595, 3c900, 3c905, and 3c905B

rtl8139 *

Realtek 8129/8139 based PCI cards

tulip *

DEC 21040, 21041, and 21140 based PCI cards.

smc-ultra

SMC Elite Ultra (8216), SMC EtherEZ (8416)

  • ß * There are later versions of these drivers you may want to try, in the /modules/net/new- net-drivers directory, which support newer versions of these cards.

  • ß * All drivers in this archive have been gzipped. They can be placed directly into Freesco 0.3.0 without changing in any way.

  • ß The following optional drivers are available in the /modules/net directory of this archive:

hp100

HP 10/100 VG Any Lan Cards (27248B, J2573, J2577, J2585, J970, J973)

smc9194

SMC -9000 / SMC 91c92/4, SMC 91c100

wd

WD8003, SMC Elite , WD8013, SMC Elite16

3c503

3com EtherLink II, 3c503, 3c503/16

hp

HP 27245A

hp-plus

HP EtherTwist, PC Lan+ (27247, 27252A)

smc-ultra32

SMC Elite Ultra32 EISA

e2100

Cabletron E10**, E10**-x, E20**, E20**-x

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería de600 Dlink DE-600 de620 Dlink DE-620

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

de600

Dlink DE-600

de620

Dlink DE-620

lance

AMD LANCE (7990, 79C960/961/961A, PCnet-ISA)

at1700

Allied Telesis AT1700

fmv18x

Fujitsu FMV -181/182/183/184

3c501

3com 3c501 - warning dont use this card. It's junk :)

3c507

3com Etherlink 16

3c515

3com 3c515 100mb

via-rhine *

VIA 86C100A Rhine II (and 3043 Rhine I)

eexpress

Intel Etherexpress

eepro

Intel Ether Express PRO/10

eepro100 *

Ether Express PRO 10/100B

epic100 *

SMC EtherPower II PCI (9432)

pcnet32

AMD 79C965 (PCnet-32)

depca

Digital DEPCA, DE100/1, DE200/1/2, DE210, DE422

ewrk3

Digital EtherWorks 3 (DE203, DE204, DE205)

atp

RealTek RTL8002/8012 (AT-Lan-Tec) Pocket adaptor

de4x5

Supports many of the same DEC based cards as the 'tulip' driver.

ni52

Racal-Interlan NI5210

ni65

Racal-Interlan NI6510 (not EB)

3c505

3com Etherlink plus

ac3200

Ansel Communications AC3200 EISA

apricot

Apricot Xen-II On Board Ethernet

tlan

Compaq Nettelligent/NetFlex (Embedded ThunderLAN Chip), Texas Instruments ThunderLAN

arcnet

Arcnet arc-rimi, com90xx, com20020.

eth16i

ICL EtherTeam 16i/32

3c90x

3c905B, 3c905C, 3c980, 3c980C. NOTE: this driver is experimental, and covers some cards already supported by 3c59x.

  • ß * There are later versions of these drivers you may want to try, in the /modules/net/new- net-drivers directory, which support newer versions of these cards.

  • ß The above drivers apart from 3c90x are all drivers which come with the 2.0.39 kernel and are therefore a bit out of date, the following drivers in the /modules/net/new-net-drivers directory are a seperately compiled collection of PCI drivers by Donald Becker which are much more up to date. Some of them are later versions of existing drivers which support newer versions of cards (for example tulip) so try these if you have trouble. Others are just drivers for new cards. All of the new driv ers for PCI cards require the pci-scan.o module to also be placed in the /drv directory with the NIC module and may also require that your computer is PCI 2.2 compliant.

eepro100

Ether Express PRO 10/100B

epic100

SMC EtherPower II PCI (9432)

hamachi

Packet Engines "Hamachi" GNIC -II adapter

natsemi

National Semiconductor DP83815, Netgear FA -311

ne2k-pci

Most PCI NE2000 clones, including rtl8029

rtl8139

Realtek 8129/8139 based PCI cards

starfire

Adaptec DuraLAN (AKA "Starfire") Adapter 64 bit adapters.

sundance

Sundance ST201 "Alta" chip, D-Link DFE-550

tulip

DEC 21040, 21041, and 21140 based PCI cards.

via-rhine

VIA Rhine and Rhine-II, D-Link DFE-530-TX

winbond-840

Winbond w89c840, Compex RL100ATX-PCI

yellowfin

Packet Engines "Yellowfin" G-NIC adapter

División de Ingeniería de Sistemas y Automática Departamento de Ingeniería [NIC Installation] ß To install a

División de Ingeniería de Sistemas y Automática

Departamento de Ingeniería

[NIC Installation]

  • ß To install a driver on a floppy installation of freesco, first make sure the driver name follows the DOS 8.3 convention. If the name is longer than 8 characters and the .gz extension, you must rename it to a shorter name before copying. Also make sure you have enough room on the floppy, as some drivers are quite large. There is about 43Kb free on a fresh Freesco 0.3.0 floppy. If you're using the DHCP server you should keep at least 20kb free depending on how many dhcp clients you have on your network. The more you have the more space you need. If you dont use dhcp, you should keep at least 5kb free. If you dont have enough room for the drivers you need, you'll have to install on a hard drive. Copy the file to the directory A:\ROUTER\DRV on the floppy disk. This directory is /mnt/router/drv from within freesco. Now boot freesco and configure the io and irq settings for the card if they are required. (Most ISA cards require manual io/irq setting while most PCI cards do not) If you like you can rename the driver file to its original long name within freesco, but this isnt required. For example:

cd /mnt/router/drv mv winbond.o winbond-840.o

  • ß To install a driver on a hard drive installation of freesco, first copy the required driver file to a floppy disk, (or unzip this whole driver archive to a disk if you like) insert the disk into a running freesco machine, and type the following:

mkdir /fd mount -t vfat /dev/fd0 /fd

At this point the floppy disk is mounted at the directory /fd, so for example if you had the entire driver archive on the disk and you wanted to copy smc-ultra.o from the net directory:

cp /fd/net/new/winbond-840.o /mnt/router/drv

It is not necessary to rename the driver to a short name when installing using this method. Warning! You must unmount the disk before ejecting it. Also, dont install drivers you dont need as it will increase boot time and may cause problems.

umount /fd

Now enter setup and configure your cards io and irq if required, and reboot.

VII.

LINKS

  • 1. Freesco Home Page www.freesco.org

  • 2. Freesco Support Forum forums.freesco.org

  • 3. Extra Software/Add-ons www.freescosoft.com/home/