[Webinar] Streamline your web hosting managementRegister Today


Use XP machine as a firewall

Posted on 2005-04-04
Medium Priority
Last Modified: 2013-11-16
I was asked last week to set up an internet connection at my friend's company using a spare XP machine with two network cards as a firewall between the LAN and the ADSL Modem.  Because of the crap router provided by BT which is totally unconfigurable, I tried setting it so one network card was on the same IP subnet as the LAN, the other was configured to the static IP required by the router, end then trying to create a link between the two, passing through Sygate Professional firewall.

Microsoft's Internet Connection sharing worked, but was not good enough for me as it imposed a different subnet which meant that they could not then access other systems which were IP dependent.

After two days of trying various things I eventually persuaded him to buy a decent configurable ADSL router with built in firewall and leave the XP machine out of the equation.  After 5 minutes configuration it was up and working perfectly.

How could I have set the machine up, without extra software such as a proxy server?

The card connected to the router needed to be a specific address (lets say - not the real one), while the lan was set up on the 192.168.1.xxx addresses
Question by:cquinn
LVL 79

Assisted Solution

lrmoore earned 189 total points
ID: 13696331
As you found out, XP simply is not up to the task. It does not have routing functions like Win2k server does. ICS is very limited. Your best bet would have been to reformat the PC w/Linux and something like Smoothwall
Smoothwall -- http://www.smoothwall.org/

Just my $0.02

- Cheers!
LVL 12

Accepted Solution

srikrishnak earned 186 total points
ID: 13705441
Although I am very comfortable using M$ and wont go for *nix unless there is a strong reason..For this case I dont recommend XP....If you want to use a Firewall you must select a good OS with less vulnerabilities...Its like appointing a watchman who is coward n ready to die..Will prefer to have a *NIX maching (Fav is BSD Box)...As lrmoore mentioned "Smoothwall" is also fair enough to handle the requirement..
LVL 15

Author Comment

ID: 13710217
I thought that may be the case - I think I have a Redhat install disk somewhere, though my Nix skills are very rusty

Thanks chaps (or chapesses,  or both)

Featured Post

The eGuide to Automating Firewall Change Control

Today’s IT environment is constantly changing, which affects security policies and firewall rules. Discover tips to help you embrace this change through process improvement & identify areas where automation & actionable intelligence can enhance both security and business agility.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Enter Foreign and Special Characters Enter characters you can't find on a keyboard using its ASCII code ... and learn how to make a handy reference for yourself using Excel ~ Use these codes in any Windows application! ... whether it is a Micr…
Suggested Courses

590 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question