Hi Everyone, this is my first shot at configuring my own router / firewall. Even after reading about networks, masks, routing, I still feel ensure about my understanding.
- Working with WUI right now, but not afraid of the console.
- Managing IP-Addresses manually is no problem.
- Conservative setup, i.e. deny all, then allow step-by-step.
Setup: IPFire core 152 on APU 2D4. Four ports. Configured green, blue and red. Unmanaged switches connected to green and blue ports. Red connects to Internet via DHCP and router provided by ISP. Green and red works fine for now.
Next step: Separate my hardware into two groups, which are: private and pleasure, for which I thought using green 192.168.10.1/24 and blue 192.168.20.1/24 zones.
Is this a reasonable and achievable setup for ipfire configuration?
Basic traffic rules:
Green may access anything on Blue.
Blue shall only respond in kind to Green.
Some hardware in Blue needs Internet (red). I have a laptop connected right now and it cannot access red. What type of connection is missing?
Some hardware in Blue need to be blocked from Internet. How do I explicitly write that?
Right now most of IPFire’s settings are still defaults.
I could not find an appropriate cook book recipe for this. Hence this post.
After gaining a better understanding of network management, firewalls and ipfire, I plan to add a third zone: “Internet for guests”.
Thanks, and always