Introduction:
   Since I am on a Linux craze right now I have added one more piece of Linux based hardware to my network.   Many people have been running Smoothwall for quite some time now.  What I have been able to do is get, with the help of a some what out-dated guide (http://wixxerd.com/forum/viewtopic.php?t=11), was install Smoothwall 2.0 express onto a piece of unsupported, cheap, and production class equipment.   

Disclaimer: testmy.net and its mods are not responsible for any damage to hardware, software, systems, or bodily harm if you decided to attempt this.  I strongly recommend that you attempt this only if you are confident in your computer skills and have some time to troubleshoot. 

Background:  What is the Nokia IP330?
   The Nokia IP330 was originally released in 1998-1999 and was about $5,000 US when they were originally released.   Since then hardware and software for hardware firewalls and Intrusion Detection Systems (IDS) have improved greatly.  As companies often grow equipment is replaced and you can normally get this off-lease or refurbished equipment on sites such as Ebay.com for fairly cheap.   I was able to get my hardware for $63.00 shipped.   This included an AMD K6-2 400MHz CPU, 256mb of SDRAM, and a 2 GB hard drive.   What this piece of hardware is, basically, is a computer packed into a 1u rack mount case.   
   The hardware is the foundation on which the software will run.  As of right now I know of a few different configuration of this hardware.  I was one of the fortunate ones who got a 400 MHz processor.  Most of them, that I see now, are 266 MHz or 300 MHz.   The other thing that is important is the amount of ram.  The hardware supports up to 512mb of ram.  From what I can tell it takes just standard PC100/133 SDRAM.  As far as the hard drive goes, I am pretty sure you can use what ever size you need.  The smaller the hard drive the more often you are going to need to clear out the logs so that you don’t run out of space.   I am able to run mine on a 3.3GB hard drive.

   Now that you know a little bit about the hardware, the other major component that you are going to use is Smoothwall.  Smoothwall is an open source program that was started in 2000.  Since then it has grown into one of the most used open source firewalls on the planet.   It is recognized for it easy install and easy use/setup.   These are all key things for people that are just starting out in the world of firewalls.   As you advance in your knowledge you can download plug-ins that are developed to give you more control of your hardware and firewall.  We will be using the most recent stable version of Smoothwall Express which is version 2.0.

What you are going to need:
   
   -Nokia IP330
   -Screw driver (Note you could need a torx screw driver)
   -Donor computer (A computer to install the software)
   -About 1-3 hours depending on how fast your are.
   -Smoothwall 2.0 burned on a cd

Let’s get started:

   First things first, YOU WILL VOID ANY TYPE OF WARRENTY ON THE HARDWARE IF YOU OPEN THE CASE.  This should be that big of a deal because this is a piece pf End of Life/End of Sale equipment.  With that being said, let go.  (If you are able to boot your device and get the MAC address from the Network Interface Cards that is awesome.  However, if you are not, don't worry I will address this later.)

1) Remove power cord from unit and open the case.



2) Remove the hard drive from the case itself.  There are 4 - 6 screws that are located below the hard drive on the underside of the case.   The power cable can be a bit difficult to remove but it does come out!  Also remove the IDE connection from the hard drive.

3) This is the part for the Donor computer.  What you are going to do is install the hard drive on its OWN channel.  That means that one cable will run to just the hard drive pulled from the IP330 and the other will run to the CD-ROM drive.

4) Insert the CD into the CD-ROM drive.

5)  Boot the computer.  You might need to change the boot order so that the CD-ROM boots.  You should see a Smoothwall install screen where you need to press enter.  This will begin the installation process

6) Follow the install process.  You can probe for network adaptors and just use what ever it comes up with.  Select GREEN/RED for the type of network you want to set up.  You also are not going to have any external ISDN or ADSL modems so don’t configure any!

7) Now that the install is complete restart the donor computer.  You should be greeted by the Smootwall boot screen.  Allow the box to boot.  You should then see the log in prompt.

8 ) Log in as root and use the password that you set during the install.

9) Now you should be logged in and have a command line type of interface.  Type vi /var/smoothwall/ethernet/settings .  This will bring up the config for the Ethernet settings for the new box. 

10) At the top of the screen you should see CONFIG_TYPE=
   a) 1 for RED/DSL
   b) 2 for RED/GREEN
   c) 3 for RED/GREEN/ORANGE
     We are going to select 3 for that type.  So the line should look like CONFIG_TYPE=3

<- weird camera angle the case is not bent


11) Next it is time to see all of the driver types.  You should see GREEN_DRIVER, RED_DRIVER, ORANGE_DRIVER.  You are going to set all of those values to eepro100 .

12) Once you set that all up it is time to config the zones.  Green= internal (trusted)  Orange=DMZ  RED=wan.   Green is going to be DHCP controlled along with RED since you are going to be getting an IP from are modem of some sort.
Here is how my box is currenly configured:


13) Also make sure that you set GREEN_DEV=eth0 , ORANGE_DEV=eth1 , RED_DEV=eth2 . 

14)  When all of these changes are completed press Esc, the shift+; , then type wq! . ( Note: it has to be wq! and not WQ! )

15) Next it is time to set the MAC addresses for the interfaces.  Type vi /etc/rc.d/rc.network .  This should bring up another text screen.  What you are looking for is a for loop statement. At the end there is the word done.  They type the following each on a separate line.
ifconfig eth0 hw ether 00:a0:8e:e:50:78
ifconfig eth1 hw ether 00:a0:8e:e:50:7c
ifconfig eth2 hw ether 00:a0:8e:e:50:80


These are MAC address pulled from a IP330 that was still running the original software.  These are also what my hardware is running for MAC addresses. If you are going to run more than one on a network you are going to need to make up unique ones for each NIC.

Sample config:


18) Again, when all of these changes are completed press Esc, the shift+; , then type wq! . ( Note: it has to be wq! and not WQ! )  What you just did is allow the output to go to the serial port.

19) Now type vi /etc/lilo.conf
   Under the line that reads "prompt" type this: serial=0,9600n8
   You can also lower the boot value to boot the device faster. (would recommend this)

Sample Config:

20) Again, when all of these changes are completed press Esc, the shift+; , then type wq! . ( Note: it has to be wq! and not WQ! )  What you just did is allow the boot prompt to go to the serial port.

21)Type lilo press enter then type shutdown -h now .   At this point the computer should shutdown.   Remove the hard drive and reinstall it into the IP330 case.

22) Connect an Ethernet cord to the GREEN NIC and an Ethernet cord from the modem to the RED NIC.

23) You should be able to go to http://GREEN_ADDRESS:81 and see the Web based GUI.  Click on the maintenance tab.  Open another browser and go to smoothwall's site and download all of the fixes (there are currently 8, You need to download 1-8)

24) Back on the maintenance tab upload fix #1.  Then reboot the server.  Install 2-7 then reboot.  Finally install #8.

25) That should be it.  If you have problem you can see what is going on by plugging in a null modem serial cable into the console port on the Nokia and into a serial port on any computer.  The configure HyperTerminal and you should be able to see what is going on.


Conclusion:
   What you have just done take a old piece of hardware and make it useful again!  Not only that but it looks cool, is functional, and provides additional security to your network.  As always if you have question feel free to post in the HELP Hardware/Networking section of the Forum.