aganmo

Let's talk

BRANDING - RAVEN STUDIO

Star 🧑‍🏫 Smoothwall Firewall
Configuration Star

YEAR

2023

CLIENT

None -Academic project

SERVICES

Network - Cybersecurity

PROJECT

SmoothWall FireWall configuration

🎯 DESCRIPTION & OBJECTIVES

As part of my coursework in cybersecurity, I undertook a project to configure a firewall using Smoothwall. The objective was to set up a basic firewall system with two network interfaces:

  • External (RED): This interface connects to the internet.
  • Internal (GREEN): This interface connects to the internal network.

By the end of this project, I aimed to achieve the following objectives:

  • Successfully set up a Smoothwall firewall.
  • Configure network interfaces appropriately.
  • Enable NAT and DHCP, and manage internal network traffic.

🛠️ PREREQUISITES

To complete this project, the following resources were necessary:

  • Smoothwall ISO file for firewall software installation.
  • A machine (either virtual or physical) equipped with two network interfaces (one for the internal network and one for the external network).
  • Internet access for configuration and testing.
  •  

🖥️ Step-by-Step Configuration

STEP 1 : INSTALL SMOOTHWALL

  1. Create a VM or Use a Physical Machine: Ensure the machine has two network cards—one for the internal (GREEN) network and one for the external (RED) network.
  2. Boot with Smoothwall ISO: Select the option to install Smoothwall on the system.
  3. Select Storage: Choose an empty storage location or the appropriate disk for installation.
  4. Proceed with Installation: Accept default options at each prompt until installation begins.
  5.  

STEP 2 : CONFIGURE NETWORK INTERFACES

  • Architecture: The setup uses a dual-zone architecture with GREEN for the internal network and RED for the internet connection.
  • When prompted, choose “probe” to allow Smoothwall to detect the correct drivers automatically.

GREEN Interface Configuration:

  • Select a private IP address range for the internal network (e.g., 192.168.10.1) that does not overlap with the ISP’s range.
  • Ensure this address is outside the range provided by the internet service provider (ISP).

RED Interface Configuration:

  • Assign an IP address corresponding to the ISP’s network (e.g., 192.168.0.2).
  • Use the default gateway and DNS provided by the ISP (e.g., Orange’s DNS: 213.154.64.13).
  •  

STEP 3 : DNS AND DHCP CONFIGURATION

Set DNS Gateway: Use the ISP’s DNS settings (e.g., Orange: 213.154.64.13) for external address resolution.

DHCP Setup:

  • Activate DHCP for the internal network, defining the range from 192.168.10.10 to 192.168.10.12.
  • Set the domain suffix to match the environment (e.g., orange.sn).
  •  

STEP 4: ACCESS AND CONFIGURE THE SMOOTHWALL INTERFACE

  • Login to Smoothwall: Use the default username “root” and a strong password set during installation.
  • Verify Network Status:
    • Run ifconfig eth0 for the GREEN interface.
    • Run ifconfig eth1 for the RED interface.
    • Use ping 8.8.8.8 to test internet connectivity.
  •  

STEP 5: ADVANCED NETWORK CONFIGURATION

  • Network Bridging: For a virtual machine, change the network adapter configuration to bridged mode to ensure proper traffic flow between interfaces.
  • Revisit Networking Setup: Modify configurations via Setup → Networking → Network Configuration Type if necessary.
  • Reassign network interfaces by probing for correct drivers.
  •  

STEP 6: FINAL TOUCHES

  • Ensure that the GREEN + RED architecture is properly configured.
  • Double-check card assignments by selecting probe during setup.
  • Ensure address settings for both interfaces are correct. The GREEN network should be configured for the internal network, and the RED network should align with the external network (ISP range).
  •  

🔒 Firewall Rules and Security (Optional)

  1. After installation, I can set up firewall rules to control traffic between the GREEN (internal) and RED (external) zones.
  2. Utilize the Smoothwall admin panel to fine-tune security settings, blocking or allowing specific types of traffic.

🧑‍💻 Hands-on Activities

1. PING TEST

From a connected internal client, ping the Smoothwall’s RED interface to test internet connectivity.

2. CHECK DHCP

Ensure that clients on the GREEN network are getting IP addresses automatically.

🎯 Conclusion

Through this project, I successfully configured a Smoothwall firewall, enhancing the security of the internal network while managing traffic flow between the internet and my local environment. This hands-on experience reinforced my understanding of firewall configurations and cybersecurity principles, validating my skills in this critical area of IT.

Next Project