CentOS

Hi,

I run Centos 5.5.
The system has 3 network cards.

dmesg;
e1000e: eth2 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX/TX
(webshop says model: EXPI9301CTBLK )

And additional 2 cards.. that are not connected yet.


I want use (eth1 and eth3) as IN/OUT for blocking sertain IP addresses. (i.e. Peerblocking)

Anyone configured this - what tools are best to used ?

(i'm ready to start digging/reading, but need to know where to start digging :)

From your scarce description of what exactly you're trying to do, all I can suggest is [b]iptables[/b], and in that respect, you may want to take a look at the:
[code]
[url=http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html-single/Deployment_Guide/index.html#ch-fw]TUV Deployment Guide: iptables[/url]
[/code]

Hope this helps.

Thanx for the heads-up about iptables.
I do now some of the ways around iptables,..

..but i'm not familier how I can setup iptables to block 2.301.808.963 IPs (and counting..)

My goal, is to have the same functionality that the software "PeerBlock 1.0+" gives me on windows - using a centos box.

You probably want to investigate something called ipsets which works hand in hand with iptables and is much more efficient. This is not currently available for CentOS 5 but I am about to try to get this into ELRepo. If you are comfortable with building your own RPMs then there is a set of SRPMs attached to an ELRepo ticket that I have modified to allow ipsets to be used on CentOS 5. Redhat are in the process of adding ipset support to RHEL 6.2 (it's in the beta). I do have a more recent build of the ipset SRPMs that contain init scripts for ipsets so that the contents can be saved/restored across reboots but there are no code changes to the set that are on ELrepo ticket 000083.

Unfortunately I do not know so much about building rpms.
Google... if I can follow a cookbook like this ? http://www.lamolabs.org/blog/164/centos-rpm-tutorial-1/ - would that be sufficient ?

If this blocking ipsets is available/will be? in centos 6 - I just might consider upgradering soon :-)

The guide you pointed to is rather more complicated than I was proposing. You would need to perform the step 1 from that but to rebuild previously built SRPMs is rather easier - you just run `rpm --install whatever.src.rpm` then `rpmbuild -bb whatever.spec` Then solve all the missing dependencies for packages that the build requires and repeat until it works!

[quote]
kilko wrote:
...
I run Centos 5.5.
[/quote]
Before embarking on building RPMs you should first "yum update" to get up to the current/supported release 5.7. You may then want to read about [url=http://wiki.centos.org/HowTos/RebuildSRPM]How to Rebuild a Source RPM[/url].