Transcript SmoothWall Express

Nada Abdulla Ahmed
 SmoothWall Express is an open source firewall
distribution based on the GNU/Linux operating
system. Designed for ease of use, SmoothWall
Express is configured via a web-based GUI and
requires absolutely no knowledge of Linux to install
or use.
 SmoothWall Express enables you to easily build a
firewall to securely connect a network of computers
to the Internet.
The goals of the smoothwall can be summed up as:
 Be simple enough to be installed by home users with
no knowledge of Linux
 Support a wide variety of network cards, modems and
other hardware
 Work with many different connection methods and
ISPs from across the world
 Manage and configure the software using a web
browser
 Run efficiently on older, cheaper hardware
 Develop a supportive
Minimum Hardware Requirements
 Any Pentium class CPU and above with a
recommended minimum of 128MB RAM
 64bit build for Core 2 systems
SmoothWall Express supports the following network configuration types:
Type
Explanation
Green (Red is modem/ISDN)
•
•
a network interface card (NIC) to connect to the internal network it is
protecting
a modem or ISDN card to connect to the Internet or external network.
Green +Orange (Red is
modem/ISDN)
•
•
•
a NIC to connect to the internal network it is protecting
a NIC to connect to a de-militarized zone
a modem or ISDN card to connect to the Internet or external network
Green +Red
•
•
a NIC to connect to the Internet or external network.
a NIC to connect to the Internet or external network.
Green +Orange + Red
Green + Purple (Red is
modem/ISDN)
Green +Purple+Orange (Red is
modem/ISDN)
• a NIC to connect to the internal network it is protecting
• a NIC to connect to a wireless network
• a NIC to connect to a de-militarized zone
• a modem or ISDN card to connect to the Internet or external network
Green + Purple+ Red
• a NIC to connect to the internal network it is protecting
• a NIC to connect to a wireless network
• a NIC to connect to the Internet or external network.
Green + Purple+ Orange + Red
•a NIC to connect to the internal network it is protecting
•a NIC to connect to a wireless network
•a NIC to connect to a de-militarized zone
•a NIC to connect to the Internet or external network
Accessing SmoothWall Express for the First Time
SmoothWall Express offers these features:











Detailed reports wonderful system for everything related to the
network
Supports LAN, DMZ, and Wireless networks, plus Extrnal
Cash fast with reports of sites visited
Has a filter to filter sites
There is more than its anti-virus and is updated automatically
You can make a vpn connect users to data encryption ,
confidentiality and protection
Has a great firewall you can control it with ease and customize
Free of all the system updates
You can access it from outside the network and control
The possibility of recording conversations
Through the quality of service to improve the quality and performance of the
service
Control Tab :The Control section contain SmoothWall Express’s
home page which is the main status page.
About Tab SmoothWall Express
• Status Displays a list of core and optional services.
• Advanced :current configuration and resource usage about SmoothWall
Express.
• Traffic Graphs :Displays
statistical graphical and
numeric data based on
traffic across SmoothWall
Express’s network
interfaces
Bandwidth Bars :Displays realtime network bandwidth usage bars.
Traffic Monitor:
Displays realtime
network bandwidth
usage graphs.
Your SmoothWall Express :Displays credits and copyright information and enables you to
register your SmoothWall Express and create a MySmoothWall profile.
SmoothWall Express Services Tab
enable and manage web, instant messaging, POP3, SIP DHCP, dynamic DHCP
and intrusion detection system services.
Instant Messaging Proxy : (IM) proxy service enables you to log IM conversations
and file transfers on the green neatwork and the purple network if it is enabled
AV Scanning the POP3 Proxy : SmoothWall Express can Anti-Virus (AV) scan
POP3 emails as they are downloaded from external mail servers to clients
running on the green and purple networks.
 The Session Initiation Protocol SIP : able to proxy Real-






time Transport Protocol (RTP) traffic, and will solve some
of the problems involved in setting up VoIP behind NAT.
Configuring the DHCP Service
Dynamic DNS
Static DNS
Managing the Intrusion Detection System
Configuring Remote Access using the secure shell (SSH)
Configuring Time Settings the date and time, synchronise
time with a network time server.
(IDS) detects potential security breach attempts from outside your
network.
This service only detects intrusion attempts, it does not prevent
them.
Network Tab
• Managing incoming and outgoing traffic
• Controlling internal traffic and access to services
• Blocking specific IP
• Configuring timed access to the Internet
• Managing Quality of Service (QoS)
• Configuring Dial-up Connections
• Working with interfaces.
ip block
block external IP addresses from accessing SmoothWall Express and any
machines behind it.
We can configure up to five different dial-up connections that can be used to connect
SmoothWall Express to an ISP via ISDN, USB ADSL or an analogue modem
Networking > interfaces to configure and edit network interfaces,
DNS and gateway settings
VPN : SmoothWall Express enables you to create Pre-Shared Key, IPSec VPN connections to
other SmoothWall Express systems or IPSec-compliant hosts which have static IP addresses
Accessing System Logs Tab
1. system
2. Web Proxy Logs
3. Firewall Logs
4. IDS Logs
5. Instant Messages Logs
6. Email Logs
SmoothWall Express Tools Tab
IP Tools
• Ping
• Traceroute
shell : The web-based secure shell (SSH) remote access tool
enables command line administration of the SmoothWall Express
system through a web browser.
Maintenance Tab
From time to time, security and product updates are rolled out to all
SmoothWall Express systems.
You can use SmoothWall Express to check for and install updates
 Updating Automatically
 Updating Manually
The End