[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Networking
> sheflug - http://www.sheflug.co.uk
>
> Here's my situation, I was wondering if anyone could put forward a simple
> solution:
>
> 2 PCs running Windows.
> 1 machine (mine of course :) that runs Linux/Win98 dual boot (GTA2
> purposes)
> (All on a 10baseT network)
>
> 1 phone line with free net access
>
> I would like to be able to get pppd running on demand from my box when
> someone tries to access the net. All the machines have 192.168.* IPs, and
> pppd is on dynamic IP.
> What's the best way to get my machine to route packets between the modem
> and the private network IPs?
>
I would recommend running your main server (with the dialup access) as a
permanent Linux server. Create a small private network for the linux server and
the Windo$e machines, e.g. in the 10.0.0.x ip range with the Linux machine as
the domain server, mail server, etc. Enable IP Masquerading if not already
enabled and set up an IP filtering firewall with ipchains to perform address
translation for your Windo$e machines.
Set up PPP on the linux server to work manually.
Get and compile the latest diald software and install it. Configuration not
necessary.
Get and install the diald-config and diald-config-metered RPMS. This will
enable diald functionality based on your (working) PPP setup.
Reasons:
1. Permanent Linux server - you never have to worry about connectivity and it
can be used for manyt other things, eg automated backup, SMB server for
Windo$e, etc...
2. Small Private network - allows the local network to function independently
of the outside world. Limits (but does not remove) vulnerability of Windo$e
PC's to attack from outside (10.0.0.x addresses are translated, 10.0.0.x not
allowed on Internet, Firewal required and can be made as secure (or not) as
desired)
3. Diald - Advantages over pppd based demand dial:
More configurable: allows, iter alia, specified times of operation, specified
types of packet triggering, impulse fuzz timout ( basic cost of a call is 5p,
hence it does not make sense to drop the line before 5 minutes are up) variable
timeouts based on packet type, etc.
The config method detail here (or, more specifically NON-config) is the
simplest way to install it in my experience. Been running it for about 4 years
now.
Details, URLs, Example configs: available on request.
Pieter
Start your own FREE mailing list at
© 2000 Microsoft Corporation. All Rights Reserved