Preface and Preparations¶
The linuxmuster.net 6.2 operates as a two-server solution (IPFire firewall and linuxmuster.net server). First you start with the installation of IPFire firewall and after pre-configuring the firewall, proceed to the installation of linuxmuster.net server.
Checklist¶
Use the Checklist
to retain all settings made during installation. It is a PDF form so you can fill it on the PC, too. Keep this checklist handy, if you want to contact the phone support.
Download the Software¶
First download the necessary software and note the release notes carefully.
IPFire¶
Download the Iso-Image ( IPFire Version 2.19 - Core Update 103 (x86_64) ) und burn it to a CD.
Warning
Newer version of IPFire have not been tested for compatibility. It is strongly recommended to use only tested versions of IPFire.
To make sure that the file was downloaded correctly, you can check the SHA1 sum. On the console of a Linux operating system there is the command sha1sum
available:
sha1sum ipfire-2.19.x86_64-full-core103.iso
As output we get the checksum, for example
1b92a278709ddc0542dd0f8514693ec073a963c5 ipfire-2.19.x86_64-full-core103.iso
This so obtained checksum must match the one on the Download-Page .
Ubuntu Server¶
Download the Iso-Image ( Ubuntu 12.04.5 LTS 64-bit PC (AMD64) server install CD ) and burn it to a CD.
Warning
Verwenden Sie nicht aktuellere Versionen!
To make sure that the file was downloaded correctly, you can check the SHA1 sum. On the console of a Linux operating system there is the command sha1sum
available:
sha1sum ubuntu-12.04.5-server-amd64.iso
As output we get the checksum, for example
7540ace2d6cdee264432f5ed987236d32edef798 ubuntu-12.04.5-server-amd64.iso
This so obtained checksum must match the one on the here (line ubuntu-12.04.5-server-amd64.iso)
Notes on network structure¶
IP ranges¶
The linuxmuster.net solution can work with different IP ranges. Each row of the table below constitutes one possibility.
Selection | Begin IP range | End IP range | Server-IP | IPFire-IP |
---|---|---|---|---|
16-31 | 10.16.0.0 | 10.31.255.255 | 10.16.1.1 | 10.16.1.254 |
32-47 | 10.32.0.0 | 10.47.255.255 | 10.32.1.1 | 10.32.1.254 |
… | … | … | … | … |
224-239 | 10.224.0.0 | 10.239.255.255 | 10.224.1.1 | 10.224.1.254 |
During installation, you opt for one of the ranges. If there are no special requirements (for example, test operation of linuxmuster.net in another productive linuxmuster.net system), it is recommended to use the range 16-31.
This also has the advantage that all installation screenshots in this document were taken using this IP range.
Network names of the firewall solution IPFire¶
Linuxmuster.net assigns colors to the different networks:
- The internal network is called GREEN network.
- The external network is called RED network, it is connected via a router to the Internet.
- Optionally, for example, for wireless access points you can setup another network (BLUE) where different access rules apply than those in the green network.
- Also optional you can setup a so-called demilitarized zone (DMZ) as an additional network (ORANGE).
Information for professionals¶
The linuxmuster.net solution also supports more complex network structures with
- subnetting
- VLANS
- Bonding
See also network segmantation with linuxmuster.net