Linux Masquerade server

I am a certified Novell Netware engineer and Microsoft Windows NT administrator, and I HAVE to install a linux Masquerade server.
My knowledge in linux is VERY minimal, so can you please help with the linux procedures?
The server will be a 386/486 4/8mb ram (please say what configuration is enough for small network - 2/3 users), and will have one nic to connect to the internet, and one will connect it to the lan. Both Of them will be artisoft ae2/ae3 - Full ne2000 compatibles.
Please give an explanation as detailed as you can, because my knowledge in linux is minimal.

I am giving this amount of points (240)* excelleng grade for a answer that will be enough.

Thanks Alot,
Avi Shava

Novell Netware Administrator
Windows NT Administrator
Web Designer
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

avishAuthor Commented:
Edited text of question
avishAuthor Commented:
Adjusted points to 240
First, the hardware configuration.  Which is it 386 or 486?  4MB or 8MB?  While linux will run on a 386/4MB, it's not pretty.  For any practical use, I'd recommend nothing less than 486-66 with 16MB RAM.

As far as linux itself, probably the easiest to install and get up and running would be RedHat.  Get a copy of the release on CDROM and you can have it installed and running in 30 minutes or less.  The RedHat distribution includes the IP masquerading/proxy software so it's easy to install as well.

Here is a link to the documentation on setting up IP-Masquerading:

If what you REALLY want to do is setup a firewall/proxy, this document is helpful:
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

avishAuthor Commented:
I can buy or 386 or 386 4/8 mb, but I prefer to buy the minimum i need. This server should be only Masquerade server.
I donwload all redhat 5 linux (270 mb.) but it does not include the server. When Can i download only the server?
The answer from Jhance is an excellect response to your question. As all good Novell Netware Administrators, Windows NT Administrators and Web Designers know, you need to RTFM! You cannot except a complete answer to this question here. Some basic understanding of Linux is required. Good luck.
The firewall and IP masquerading sutff is included in the linux kernel and after you install it you will need to build a new kernel with that stuff turned on.  RedHat makes this very easy but you will have to read the docs.

If you read the file at it talks about the IPFWADM firewall administration program.  This might not be included in the RedHat downloadable (but is on the CDROM).  You can get it as described in the document:

  ·  Ipfwadm 2.3 or newer available from
avishAuthor Commented:
I already sucessfully installed linux.
As I know, I have to install:
1. connect the server to the internet.
2. connect the server to the intranet.
3. Install the Masquerade server.
I downloaded the file, readed the documentation, but I steel have problems with the installation of the internet/intranet connectivity. The docs included help me only to install it on slip/ppp service.
I have to install it into a network connected in frame relay.

As first step, Please help me installing the cards (not phisicly!), including where I set up the protocols.

Thanks Alot,
If youy are going to use a 386, you will need 8MB as you will have to emulate the math coprocessor (or buy a 387 chip).

Then all you really have to do is to set it up as a normal linux machine, and recompile the kernel to support masquerading/forwarding/aliasing.. then it is just a question of adding something apropriate to the /etc/rc.d/rc.local such as


/sbin/ipfwadm -I -p accept
/sbin/ipfwadm -O -p accept

/sbin/ipfwadm -F -p deny

/sbin/ipfwadm -F -a masquerade -P all -S0.0.0.0/0 -D194.52.20.0/24
/sbin/ipfwadm -F -a masquerade -P all -D0.0.0.0/0 -S194.52.20.0/24

Observe that the -D sections should NOT be on a line of their own.. bur rather directly after /0 (the formatting of EE is a bit crude) :)

soo, this plus a working network setrup in general will work (and of cource replace with what is apropriate for your net.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
avishAuthor Commented:
thanks alot!!! I created it
ehm.. disregard the /usr/local/sbin/sshd line tho! it is my secureshell deamon! :)

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Networking

From novice to tech pro — start learning today.