Smoothwall network help
 

ok here is a LINK to a pic of my setup that i want. Ok after seeing the setup i'm haveing problems getting into the firewall via web admin, So here is how i have it setup, my cable modem comes inro the red zone on firewall then coming out on my green side to my linksys router, the router is my dhsp server, now coming out of my router to my 4 port linksys switch. I'm using to realtek nic card one for red and one for green both are seen by firewall. Now the biggest problem i'm haveing is getting the PC's to get a ip from router that is usable. I have found that when i connect the cable from the green zone one firewall to the wan on router i get no act light and if i connect it to the uplink on switch, is this because i'm not using a crossover cable or a wrong setting somewhere? I'm kind new to the linux world and i'm sure i'm missing something here so any help would be great or a small run down on how i should set this up.

if i'm reading this correctly (it's a bit jumbled :) ), i'd say there's 1 of 2 problems (or possibly both).

first, make sure your firewall is properly routing the connection. i don't know linux at all, but freebsd has a daemon that does this. it's basically the same as windows' "bridge connection", albeit slightly more complicated. if it's not routing the connections, then the router and cable modem aren't connecting.

the other issue is the router. it may be trying to retrieve dhcp settings from the network, and it's not getting any. most of the consumer routers like that are set up as a dhcp server as the internal network, and a dhcp client to the internet. you either need to specify it's netork data through settings, or make the firewall also a dhcp server (on the nic that runs to the router) so the firewall picks up the data automagically.

although on the bright side, for *most* home users, a NAT firewall in the less expensive routers is more than enough security. generally you're not going to have anything a hacker is interested in, and not worth the time to break through. and these days, you can get a netgear SPI/NAT firewall for like $65 (4port w/ print server), or $115 if you go 8port. and honestly my software firewalls when running just on a nat server have never been lit up once, although the NAT firewall takes a pounding (mostly from stray pinging and other wierd random crap on the cable network). most hackers that are looking for private machines are mostly looking for easy targets.

but don't get me wrong, i understand your desire for more security. myself, working from home my entire business relies on it, so i have to worry about all that big-business security and file backups. i plan on making my network a little more robust in the near future, possibly with a setup that you're using, or a sonicwall/PIX unit (the latter being a much pricier option :( ).