Linux Project
by Linuxmodex from LinuxQuestions.org on (#6G8CB)
Greetings,
I'm currently working on a project and could use some guidance. In my project, I have several components: a gateway, DNS server, mail server, web server, and a client (workstation).
The external interface is enp0s9, with the external IP address set to 172.16.10.2. The gateway address is 172.16.10.1, and my DNS servers are 8.8.8.8 and 9.9.9.9. The internal network is on the 10.20.30.0/24 subnet.
After configuring the basic settings on my servers and ensuring I can ping all hosts on my network, I'm looking to set up a DHCP server to support at least 60 clients via my gateway. The DNS server should receive a static network configuration via DHCP. The assigned IP address range for clients must not overlap with the server addresses. The goal is to provide the workstation with network settings in the internal network and ensure the DNS server has a static IP.
I also need to configure a DNS server to resolve specific FQDNs:
- Webserver: www.project.ant
- Nameserver: ns.project.ant
- Mailserver: email.project.ant
- Gateway: gw.project.ant
- www.orf.at
The aim is to resolve all these FQDNs to their respective IP addresses, set up reverse lookups, and associate them with the mail server.
My internal network's web server (10.20.30.0/24) should be accessible via the external IP address. For this, I want to create two virtual hosts (tina.project.ant and max.project.ant) and modify the homepage content for both. The goal is for these virtual hosts to be accessible from the workstation via the external IP address.
Additionally, I want to configure the email server so that the workstation can send emails from tina@project.ant to max@project.ant using a mail user agent like Thunderbird.
For network security, I intend to implement the following stateful inspection firewall rules:
- Allow the DNS server to respond to DNS requests only.
- Restrict internal network hosts to use only HTTP (no HTTPS) connections to the internet.
- Allow the gateway to use only HTTPS connections to the internet.
- Allow the mail server to respond to mail requests only.
This project is quite extensive, and I've explored different approaches, but none have been successful so far. I would greatly appreciate a clear tutorial or guidelines on how to resolve these issues. I've managed to set up the basic configuration correctly, but everything beyond that isn't functioning as expected.
I'm currently working on a project and could use some guidance. In my project, I have several components: a gateway, DNS server, mail server, web server, and a client (workstation).
The external interface is enp0s9, with the external IP address set to 172.16.10.2. The gateway address is 172.16.10.1, and my DNS servers are 8.8.8.8 and 9.9.9.9. The internal network is on the 10.20.30.0/24 subnet.
After configuring the basic settings on my servers and ensuring I can ping all hosts on my network, I'm looking to set up a DHCP server to support at least 60 clients via my gateway. The DNS server should receive a static network configuration via DHCP. The assigned IP address range for clients must not overlap with the server addresses. The goal is to provide the workstation with network settings in the internal network and ensure the DNS server has a static IP.
I also need to configure a DNS server to resolve specific FQDNs:
- Webserver: www.project.ant
- Nameserver: ns.project.ant
- Mailserver: email.project.ant
- Gateway: gw.project.ant
- www.orf.at
The aim is to resolve all these FQDNs to their respective IP addresses, set up reverse lookups, and associate them with the mail server.
My internal network's web server (10.20.30.0/24) should be accessible via the external IP address. For this, I want to create two virtual hosts (tina.project.ant and max.project.ant) and modify the homepage content for both. The goal is for these virtual hosts to be accessible from the workstation via the external IP address.
Additionally, I want to configure the email server so that the workstation can send emails from tina@project.ant to max@project.ant using a mail user agent like Thunderbird.
For network security, I intend to implement the following stateful inspection firewall rules:
- Allow the DNS server to respond to DNS requests only.
- Restrict internal network hosts to use only HTTP (no HTTPS) connections to the internet.
- Allow the gateway to use only HTTPS connections to the internet.
- Allow the mail server to respond to mail requests only.
This project is quite extensive, and I've explored different approaches, but none have been successful so far. I would greatly appreciate a clear tutorial or guidelines on how to resolve these issues. I've managed to set up the basic configuration correctly, but everything beyond that isn't functioning as expected.