FreeESCO implements Linux routing system Internet interconnected by networks, and devices that implement network interconnections are gateways. Any user is connected to the Internet via the gateway. Most of the gateways on the Internet are dedicated routers and switches. At present, Linux has become stronger and stronger. After properly configured, it can take the Internet's physical cornerstone-router this important role. After the high-level developers on the Internet are streamlined and customized to Linux, it launches Linux software FREESCO, which can run only by a floppy disk, which effectively reduces the requirements of hardware resources and improves work efficiency. Free Cisco's abbreviation, the developer wants Freesco to replace the dedicated router on the network. FreeESCO claims to run smoothly on the PC over 386, and only 8MB of memory is required. Its use and design ideas are very similar to the embedded system. Compared with another Linux router / firewall software - LRP, their working principle is basically consistent, and the difference is that the LRP configuration method is relatively raw, each step requires a command line or modify the configuration file, and Freesco provides Interactive Menior Wizard Configuration Program is easier to operate. At present, FreeSco's latest version is 0.3.2, based on the Linux 2.0.38 kernel. Can be downloaded from the software home page http://www.freesco.org/, link to http://www.freesco.cc/descargas/ingles/freesco-032.zip. The system requires a computer that serves as a router to have 386 CPUs, more than 8MB of memory, and a network card for connecting to the LAN and a network device connected to the Internet. The device can be a network card connected to the ADSL, or a cable modem (Cable Modem) Or ordinary modems. FreeESCO is very low for CPUs, and 32MB is recommended for memory. Freesco supports a lot of network cards, you can download http://www.freesco.cc/descargas/ingles/modules-03x.zip package view. After the software installation will download the package to decompress, execute the command:
# Make_fd.bat
This Batch File WRITE The Floppy Image
"freeco.032" ONTO A 1.44MB Disk in Drive A:
Please Insert a formatted Diskette Into
Drive A: and press -enter-:
Add a 1.44MB floppy disk as prompted, the production process is automated, about 50 seconds.
Internet connection
Add a computer that is installed in FreeSco software to a local area network. If it is connected to the Internet with an ADSL / Cable modem, you need two NICs, an access to the LAN, a connected ADSL / CABLES device. The writer network topology see Figure 1.
Figure 1 Network Topology
Start the configuration to restart your computer, set the floppic drive in the BIOS to start, and see Figure 2 in the startup interface.
Figure 2 FREESCO Linux boot interface
As can be seen from Figure 2, RAMDISK technology is used when Freesco works. A portion of memory can be used as partition in Linux, called RAMDISK. For some files that are often accessed and will not be changed, they can be placed in memory via RAMDisk, and system performance can significantly improve system performance. Ramdisk works in a virtual file system (VFS) layer, which cannot be formatted, but you can create multiple ramdisk. Press the "Enter" to enter the underlying configuration, you need to explain that the default root account password is "root". After entering Linux, first type "Setup" command for the base configuration. FreeESCO provides an interactive menu wizard configuration program that is easier to use. Select "1" to perform the router base configuration. 1. Basic settings for routers. Set the IP address in the LAN, and other options can be filled in according to the actual situation of the local area network. For computers that are dedicated to connecting to the local area network, the system generates a program according to the number of network card models and network card interrupt values, so the configuration is accurate when configuring the network card parameter, as shown in Figure 3. Figure 3 Configuring NIC information
2. Built-in service settings. As the name suggests to serve the computer in the LAN, mainly DNS service (domain name resolution service), DHCP service (addressing service), FTP service, Telnet service, UTC service, etc. If DNS is selected, you need to give the IP address of the DNS server; select DHCP, you need to give the IP address range for system allocation, which is mainly based on the number of computers in the LAN. 3. Determine the type of protocol used to connect to the Internet. If you are installing the ADSL or cable modem, the available protocols include PPPoE, PPP, and DHCP, the protocols used by different network service providers may vary; if they are using the DDN line, choose a fixed IP address; If it is an ordinary modem dial-up, use a PPP protocol; if it is a VPN connection, you need to use the PPTP protocol. In addition, you have to fill in the information of the ISP provider, such as access phone number, DNS master / secondary address, and user authentication mode, see Figure 4. Validation methods include Password Validation Protocol (PAP) and Challenge - Handshake Verification Protocol (CHAP).
Figure 4 Configuring the Internet
PAP is a simple grantext verification method. NAS (Network Access Server, Network Access Server requires the user to provide username and password, and PAP returns user information in a clear text. Obviously, this type of verification is poor, and the third party can easily obtain the transmitted username and password, and use this information to establish all resources provided by NAS. Therefore, once the user password is stealing by a third party, PAP cannot provide safeguards that avoid third-party attacks. CHAP is an encrypted verification method that avoids transmitting the user's true password when connecting. NAS sends a challenge command to remote users, including session IDs and an arbitrary challengestring. Remote customers must use the MD5 unidirection algorithm to return to the username and encryption challenge, session ID, and user password, where the username is sent in a non-hash method. After the above configuration, the Linux router is basically completed. Select "T" under the main control interface, and generate a Report.txt file in the "Router" directory. Choose "V", the system will list the list of settings you have set, if the parameters in the list are found, you can also return to the re-set setting. Finally, after selecting "S" to save the configuration, restart the computer. Advanced Applications The Linux routing system that is configured can complete DNS service, DHCP service, FTP service, Telnet service, print service and other functions. Let's take a look at some of its advanced applications. Select "A" in the master menu, enter the "Advanced Settings" menu, as shown in Figure 5. Figure 5 FREESCO's Advanced Settings menu
FreeESCO provides a modular management menu, divided into "System Settings", "Security / Limitations", "Users / Passwords", "SERVICES", "Hardware", "NetWorks", "MODEMS", "Dial-Up Router", "Permanent Router" nine parts, providing 38 feature options, respectively. It mainly includes: 1. Network Address Translation (NAT) NAT can connect to the Internet, but do not allow all computers within the network to have a real Internet IP address. With the NAT function, the legal Internet IP address of the application can be unified, and when the internal computer needs to be updated, the false IP is converted into a legitimate IP address. In addition, the external network user can not know the internal structure of the network. 2. PPPoE and PPTP Connection Internet Connect to network service providers through an Ethernet card interface ADSL modem, support PAP / CHAP PPP security certification. 3. Fixed IP Address Connecting the Internet Setting up fixed IP addresses, subnet masks, default gateways, and DNS servers for external networks, suitable for special line users. 4. PPP connection Internet uses normal telephone lines and 56K modems to connect to the web in PPP. 5. Built-in DHCP Server enables network computers to automatically obtain network parameters from the router, such as IP addresses, gateways, and domain name server addresses, avoid repetitive settings to the computer while binding the IP address and NIC MAC address. 6. The built-in DNS server provides a domain name service agent for the network computer, speeds up the host name, corresponding to the IP address, enhances the speed of accessing the webpage, and can assure the host name and IP address resolution to support dynamic DNS. 7. Built-in Network Time Server Linux network recommends at least one time server to synchronize local time, which makes it easier to handle collection logs and management on different systems. Freeesco also provides a client software -FreetimeClient for Windows. 8. Port Forwarding Change Destination IP Address is called Destination NAT, used to implement access to internal networks, usually the port forwarding. Destination Network Address Transformation Enables servers in the internal network to accesses access from the Internet while being monitored by the firewall. 9. User management uses user permissions to break the "black hand" that hazards the network. 10. Host access restrictions can restrict the network host access to the network outside the network according to the host's IP address, network segment or NIC address, or use certain communication protocols and service ports. 11. Banner Modify FTP, Telnet service program usually displays its own "banner", many system intrusion tools have functions that automatically get "banner", and the Linux can be disguised into a Windows host by modifying "Banner" to reduce the risk of intrusion. 12. Print Services supports print services for LPR and RAW protocols, and users can share printers connected to the router parallel port or USB. 13. Setting "Read Only Floppy" Use a floppy disk medium, after the floppy disk is protected, the system's startup medium is read-only, and the entire system runs on the memory file system, even if the system is invaded, it is easy to recover.
14. Remote Manage FREESCO FREESCO After configuring, through a web server, any computer browser on the network can manage it. Enter its address and manage port number 82 in the IP address of the browser, you can see the management interface shown in Figure 6. For such a Linux system, you can save the display, hard disk, keyboard, mouse, etc. after the installation is complete, which greatly reduces the hardware cost. Figure 6 Remote management FreeESCO interface
In order to make the floppy Linux routing system more features, it is inevitable to accommodate more content on the floppy space. However, the floppy disk space is limited, and the read and write speed is slow, and it is easy to be damaged. Now compare new computers support the USB flash drive to start, so you can copy files in the floppy disk to the USB flash drive to improve the performance of the system. The TCP / IP protocol is developed on UNIX and has been well inherited in the Linux system, which makes TCP / IP become an integral part of the Linux system. Because the implementation of the TCP / IP stack in the Linux system is particularly mature, Linux is called the most powerful routing function, and the advantages of its flexibility, easy customization, so it is favored by senior network management and high level users. FreeESCO only needs to use a lower computer to enable the function of the router, so that the LAN's computer can share a broadband line to access the Internet and can also establish a safe firewall in the Internet and LAN. The program applies to a network environment that uses Linux systems as a router using Linux systems in families, dormitory, small office units. (T111)
Figure 1 Network Topology
Start the configuration to restart your computer, set the floppic drive in the BIOS to start, and see Figure 2 in the startup interface.
Figure 2 FREESCO Linux boot interface
As can be seen from Figure 2, RAMDISK technology is used when Freesco works. A portion of memory can be used as partition in Linux, called RAMDISK. For some files that are often accessed and will not be changed, they can be placed in memory via RAMDisk, and system performance can significantly improve system performance. Ramdisk works in a virtual file system (VFS) layer, which cannot be formatted, but you can create multiple ramdisk. Press the "Enter" to enter the underlying configuration, you need to explain that the default root account password is "root". After entering Linux, first type "Setup" command for the base configuration. FreeESCO provides an interactive menu wizard configuration program that is easier to use. Select "1" to perform the router base configuration. 1. Basic settings for routers. Set the IP address in the LAN, and other options can be filled in according to the actual situation of the local area network. For computers that are dedicated to connecting to the local area network, the system generates a program according to the number of network card models and network card interrupt values, so the configuration is accurate when configuring the network card parameter, as shown in Figure 3.
Figure 3 Configuring NIC information
2. Built-in service settings. As the name suggests to serve the computer in the LAN, mainly DNS service (domain name resolution service), DHCP service (addressing service), FTP service, Telnet service, UTC service, etc. If DNS is selected, you need to give the IP address of the DNS server; select DHCP, you need to give the IP address range for system allocation, which is mainly based on the number of computers in the LAN. 3. Determine the type of protocol used to connect to the Internet. If you are installing the ADSL or cable modem, the available protocols include PPPoE, PPP, and DHCP, the protocols used by different network service providers may vary; if they are using the DDN line, choose a fixed IP address; If it is an ordinary modem dial-up, use a PPP protocol; if it is a VPN connection, you need to use the PPTP protocol. In addition, you have to fill in the information of the ISP provider, such as access phone number, DNS master / secondary address, and user authentication mode, see Figure 4. Validation methods include Password Validation Protocol (PAP) and Challenge - Handshake Verification Protocol (CHAP). Figure 4 Configuring the Internet
PAP is a simple grantext verification method. NAS (Network Access Server, Network Access Server requires the user to provide username and password, and PAP returns user information in a clear text. Obviously, this type of verification is poor, and the third party can easily obtain the transmitted username and password, and use this information to establish all resources provided by NAS. Therefore, once the user password is stealing by a third party, PAP cannot provide safeguards that avoid third-party attacks. CHAP is an encrypted verification method that avoids transmitting the user's true password when connecting. NAS sends a challenge command to remote users, including session IDs and an arbitrary challengestring. Remote customers must use the MD5 unidirection algorithm to return to the username and encryption challenge, session ID, and user password, where the username is sent in a non-hash method. After the above configuration, the Linux router is basically completed. Select "T" under the main control interface, and generate a Report.txt file in the "Router" directory. Choose "V", the system will list the list of settings you have set, if the parameters in the list are found, you can also return to the re-set setting. Finally, after selecting "S" to save the configuration, restart the computer. Advanced Applications The Linux routing system that is configured can complete DNS service, DHCP service, FTP service, Telnet service, print service and other functions. Let's take a look at some of its advanced applications. Select "A" in the master menu, enter the "Advanced Settings" menu, as shown in Figure 5.
Figure 5 FREESCO's Advanced Settings menu
FreeESCO provides a modular management menu, divided into "System Settings", "Security / Limitations", "Users / Passwords", "SERVICES", "Hardware", "NetWorks", "MODEMS", "Dial-Up Router", "Permanent Router" nine parts, providing 38 feature options, respectively. It mainly includes: 1. Network Address Translation (NAT) NAT can connect to the Internet, but do not allow all computers within the network to have a real Internet IP address. With the NAT function, the legal Internet IP address of the application can be unified, and when the internal computer needs to be updated, the false IP is converted into a legitimate IP address. In addition, the external network user can not know the internal structure of the network. 2. PPPoE and PPTP Connection Internet Connect to network service providers through an Ethernet card interface ADSL modem, support PAP / CHAP PPP security certification. 3. Fixed IP Address Connecting the Internet Setting up fixed IP addresses, subnet masks, default gateways, and DNS servers for external networks, suitable for special line users. 4. PPP connection Internet uses normal telephone lines and 56K modems to connect to the web in PPP. 5. Built-in DHCP Server enables network computers to automatically obtain network parameters from the router, such as IP addresses, gateways, and domain name server addresses, avoid repetitive settings to the computer while binding the IP address and NIC MAC address. 6. The built-in DNS server provides a domain name service agent for the network computer, speeds up the host name, corresponding to the IP address, enhances the speed of accessing the webpage, and can assure the host name and IP address resolution to support dynamic DNS. 7. Built-in Network Time Server Linux network recommends at least one time server to synchronize local time, which makes it easier to handle collection logs and management on different systems. Freeesco also provides a client software -FreetimeClient for Windows. 8. Port Forwarding Change Destination IP Address is called Destination NAT, used to implement access to internal networks, usually the port forwarding. Destination Network Address Transformation Enables servers in the internal network to accesses access from the Internet while being monitored by the firewall. 9. User management uses user permissions to break the "black hand" that hazards the network. 10. Host access restrictions can restrict the network host access to the network outside the network according to the host's IP address, network segment or NIC address, or use certain communication protocols and service ports. 11. Banner Modify FTP, Telnet service program usually displays its own "banner", many system intrusion tools have functions that automatically get "banner", and the Linux can be disguised into a Windows host by modifying "Banner" to reduce the risk of intrusion. 12. Print Services supports print services for LPR and RAW protocols, and users can share printers connected to the router parallel port or USB. 13. Setting "Read Only Floppy" Use a floppy disk medium, after the floppy disk is protected, the system's startup medium is read-only, and the entire system runs on the memory file system, even if the system is invaded, it is easy to recover.
14. Remote Manage FREESCO FREESCO After configuring, through a web server, any computer browser on the network can manage it. Enter its address and manage port number 82 in the IP address of the browser, you can see the management interface shown in Figure 6. For such a Linux system, you can save the display, hard disk, keyboard, mouse, etc. after the installation is complete, which greatly reduces the hardware cost. Figure 6 Remote management FreeESCO interface
In order to make the floppy Linux routing system more features, it is inevitable to accommodate more content on the floppy space. However, the floppy disk space is limited, and the read and write speed is slow, and it is easy to be damaged. Now compare new computers support the USB flash drive to start, so you can copy files in the floppy disk to the USB flash drive to improve the performance of the system. The TCP / IP protocol is developed on UNIX and has been well inherited in the Linux system, which makes TCP / IP become an integral part of the Linux system. Because the implementation of the TCP / IP stack in the Linux system is particularly mature, Linux is called the most powerful routing function, and the advantages of its flexibility, easy customization, so it is favored by senior network management and high level users. FreeESCO only needs to use a lower computer to enable the function of the router, so that the LAN's computer can share a broadband line to access the Internet and can also establish a safe firewall in the Internet and LAN. The program applies to a network environment that uses Linux systems as a router using Linux systems in families, dormitory, small office units. (T111)
Figure 1 Network Topology
Start the configuration to restart your computer, set the floppic drive in the BIOS to start, and see Figure 2 in the startup interface.
Figure 2 FREESCO Linux boot interface
As can be seen from Figure 2, RAMDISK technology is used when Freesco works. A portion of memory can be used as partition in Linux, called RAMDISK. For some files that are often accessed and will not be changed, they can be placed in memory via RAMDisk, and system performance can significantly improve system performance. Ramdisk works in a virtual file system (VFS) layer, which cannot be formatted, but you can create multiple ramdisk. Press the "Enter" to enter the underlying configuration, you need to explain that the default root account password is "root". After entering Linux, first type "Setup" command for the base configuration. FreeESCO provides an interactive menu wizard configuration program that is easier to use. Select "1" to perform the router base configuration. 1. Basic settings for routers. Set the IP address in the LAN, and other options can be filled in according to the actual situation of the local area network. For computers that are dedicated to connecting to the local area network, the system generates a program according to the number of network card models and network card interrupt values, so the configuration is accurate when configuring the network card parameter, as shown in Figure 3.
Figure 3 Configuring NIC information
2. Built-in service settings. As the name suggests to serve the computer in the LAN, mainly DNS service (domain name resolution service), DHCP service (addressing service), FTP service, Telnet service, UTC service, etc. If DNS is selected, you need to give the IP address of the DNS server; select DHCP, you need to give the IP address range for system allocation, which is mainly based on the number of computers in the LAN. 3. Determine the type of protocol used to connect to the Internet. If you are installing the ADSL or cable modem, the available protocols include PPPoE, PPP, and DHCP, the protocols used by different network service providers may vary; if they are using the DDN line, choose a fixed IP address; If it is an ordinary modem dial-up, use a PPP protocol; if it is a VPN connection, you need to use the PPTP protocol. In addition, you have to fill in the information of the ISP provider, such as access phone number, DNS master / secondary address, and user authentication mode, see Figure 4. Validation methods include Password Validation Protocol (PAP) and Challenge - Handshake Verification Protocol (CHAP). Figure 4 Configuring the Internet
PAP is a simple grantext verification method. NAS (Network Access Server, Network Access Server requires the user to provide username and password, and PAP returns user information in a clear text. Obviously, this type of verification is poor, and the third party can easily obtain the transmitted username and password, and use this information to establish all resources provided by NAS. Therefore, once the user password is stealing by a third party, PAP cannot provide safeguards that avoid third-party attacks. CHAP is an encrypted verification method that avoids transmitting the user's true password when connecting. NAS sends a challenge command to remote users, including session IDs and an arbitrary challengestring. Remote customers must use the MD5 unidirection algorithm to return to the username and encryption challenge, session ID, and user password, where the username is sent in a non-hash method. After the above configuration, the Linux router is basically completed. Select "T" under the main control interface, and generate a Report.txt file in the "Router" directory. Choose "V", the system will list the list of settings you have set, if the parameters in the list are found, you can also return to the re-set setting. Finally, after selecting "S" to save the configuration, restart the computer. Advanced Applications The Linux routing system that is configured can complete DNS service, DHCP service, FTP service, Telnet service, print service and other functions. Let's take a look at some of its advanced applications. Select "A" in the master menu, enter the "Advanced Settings" menu, as shown in Figure 5.
Figure 5 FREESCO's Advanced Settings menu
FreeESCO provides a modular management menu, divided into "System Settings", "Security / Limitations", "Users / Passwords", "SERVICES", "Hardware", "NetWorks", "MODEMS", "Dial-Up Router", "Permanent Router" nine parts, providing 38 feature options, respectively. It mainly includes: 1. Network Address Translation (NAT) NAT can connect to the Internet, but do not allow all computers within the network to have a real Internet IP address. With the NAT function, the legal Internet IP address of the application can be unified, and when the internal computer needs to be updated, the false IP is converted into a legitimate IP address. In addition, the external network user can not know the internal structure of the network. 2. PPPoE and PPTP Connection Internet Connect to network service providers through an Ethernet card interface ADSL modem, support PAP / CHAP PPP security certification. 3. Fixed IP Address Connecting the Internet Setting up fixed IP addresses, subnet masks, default gateways, and DNS servers for external networks, suitable for special line users. 4. PPP connection Internet uses normal telephone lines and 56K modems to connect to the web in PPP. 5. Built-in DHCP Server enables network computers to automatically obtain network parameters from the router, such as IP addresses, gateways, and domain name server addresses, avoid repetitive settings to the computer while binding the IP address and NIC MAC address. 6. The built-in DNS server provides a domain name service agent for the network computer, speeds up the host name, corresponding to the IP address, enhances the speed of accessing the webpage, and can assure the host name and IP address resolution to support dynamic DNS. 7. Built-in Network Time Server Linux network recommends at least one time server to synchronize local time, which makes it easier to handle collection logs and management on different systems. Freeesco also provides a client software -FreetimeClient for Windows. 8. Port Forwarding Change Destination IP Address is called Destination NAT, used to implement access to internal networks, usually the port forwarding. Destination Network Address Transformation Enables servers in the internal network to accesses access from the Internet while being monitored by the firewall. 9. User management uses user permissions to break the "black hand" that hazards the network. 10. Host access restrictions can restrict the network host access to the network outside the network according to the host's IP address, network segment or NIC address, or use certain communication protocols and service ports. 11. Banner Modify FTP, Telnet service program usually displays its own "banner", many system intrusion tools have functions that automatically get "banner", and the Linux can be disguised into a Windows host by modifying "Banner" to reduce the risk of intrusion. 12. Print Services supports print services for LPR and RAW protocols, and users can share printers connected to the router parallel port or USB. 13. Setting "Read Only Floppy" Use a floppy disk medium, after the floppy disk is protected, the system's startup medium is read-only, and the entire system runs on the memory file system, even if the system is invaded, it is easy to recover.
14. Remote Manage FREESCO FREESCO After configuring, through a web server, any computer browser on the network can manage it. Enter its address and manage port number 82 in the IP address of the browser, you can see the management interface shown in Figure 6. For such a Linux system, you can save the display, hard disk, keyboard, mouse, etc. after the installation is complete, which greatly reduces the hardware cost. Figure 6 Remote management FreeESCO interface
In order to make the floppy Linux routing system more features, it is inevitable to accommodate more content on the floppy space. However, the floppy disk space is limited, and the read and write speed is slow, and it is easy to be damaged. Now compare new computers support the USB flash drive to start, so you can copy files in the floppy disk to the USB flash drive to improve the performance of the system. The TCP / IP protocol is developed on UNIX and has been well inherited in the Linux system, which makes TCP / IP become an integral part of the Linux system. Because the implementation of the TCP / IP stack in the Linux system is particularly mature, Linux is called the most powerful routing function, and the advantages of its flexibility, easy customization, so it is favored by senior network management and high level users. FreeESCO only needs to use a lower computer to enable the function of the router, so that the LAN's computer can share a broadband line to access the Internet and can also establish a safe firewall in the Internet and LAN. The program applies to a network environment that uses Linux systems as a router using Linux systems in families, dormitory, small office units.
