From willo at wcic.co.za  Mon Feb  2 00:17:57 2004
From: willo at wcic.co.za (Willo van der Merwe)
Date: Mon, 2 Feb 2004 10:17:57 +0200
Subject: [NARC] Newbie - LAN Gateway
Message-ID: <014801c3e965$10a085b0$780010ac@wolverine>

Hi,

I've a basic LAN setup with a bunch of machines connecting to a gateway machine (linux with ADSL). I've installed Narc with publishing no services to the ADSL and bare minimum to LAN. My question is: will this also protect the LAN client machines, and prevent unauthorized access to privileged ports both to the internal machines and external network (worms/spyware/etc)

Regards,

Willo van der Merwe
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.knowplace.org/pipermail/narc/attachments/20040202/091fa071/attachment.htm 

From anmo6 at hotmail.com  Fri Feb 27 12:17:26 2004
From: anmo6 at hotmail.com (anmo 2003)
Date: Fri, 27 Feb 2004 20:17:26 +0000
Subject: [NARC] Narc and DHCP server howto
Message-ID: <Sea1-F12PG4vEjaGjrd0000dc71@hotmail.com>

Hi

My network looks like this

                                          (Internet)
                               12.0.0.1 | 11.0.0.1 (Gateway / firewall / 
intranet router)
                               /                          \
12.0.0.2 (DHCP server)                          11.0.0.x (DHCP clients)

The machine marked 12.0.0.1 | 11.0.0.1 is running narc. How shall I 
configure narc so that it will
allow for DHCP traffic to be sent from 11.0.0.x to 12.0.0.2 (and reverse of 
course).
I have tried custom rules but still all my packets gets droped.

Has anyone succeeded in doing this ?

My firewall outputs:
Feb 27 21:35:15 hurricane kernel: ALL_ELSE IN=eth1 OUT= 
MAC=ff:ff:ff:ff:ff:ff:00:0d:54:9f:61:ea:08:00 SRC=0.0.0.0 
DST=255.255.255.255 LEN=328 TOS=0x00 PREC=0x00 TTL=128 ID=104 PROTO=UDP 
SPT=68 DPT=67 LEN=308

_________________________________________________________________
STOP MORE SPAM with the new MSN 8 and get 2 months FREE* 
http://join.msn.com/?page=features/junkmail