Mailinglist Archive: opensuse (1750 mails)
| < Previous | Next > |
Re: [opensuse] Need Advise
- From: "Brian K. White" <brian@xxxxxxxxx>
- Date: Wed, 1 Oct 2008 03:12:34 -0400
- Message-id: <D1424422270144BB81D23268C88ABD55@venti>
----- Original Message -----
From: "Chuck Payne" <terrorpup@xxxxxxxxx>
To: "opensuse" <opensuse@xxxxxxxxxxxx>
Sent: Wednesday, October 01, 2008 1:52 AM
Subject: [opensuse] Need Advise
Ok, please please bear with me. I been fight with my ips and Linksys
to get my network back up.
Background
I have DSL. The company I am with, started me out on a ADSL that they
set up with my block of ip's. I have 16. 13 that I can use. One lost
to Network, Boardcast, and the gateway. On friday, I move from my old
little house to my new big house. The old house could work with ADSL.
The new house as fiber to the house. Because of this, I can't no
longer use my modem. I had to purchase a router that support PPPoE, no
problem, most due. Here where the problem because. I can connect to my
ISP and I get my WAN ip, and I can get out, because NAT'ing is turn
on, but I can't get in. If I turn NAT'ing off I can't get in or out.
Problem
Let me explain a bit about my network, I hope this helps and doesn't
confuse everyone. I will change the ip's for safety reason. But you
should be able to follow along. My router is a Linksys, it might be
the problem. It is BEFSR41 Version 4.3. I got in and set it up for
PPPoE with my user id and password. I connect I get the wan ip of
47.216.14.229, Now I give my router the ip of 47.216.17.87 with a
subnet of 255.255.255.240. Now my boxes are on the same
47.216.17.86/28 network. I go in the router and turn off NAT'inng. I
can from my linux box ping 47.219.14.229 but I can't ping any thing
belong it.
What?
Did the new ISP tell you you could use those IP's?
If your fiber account is using pppoe then generally that means you
have only one public ip that you may use, which by definition is the
one provided by the PPP in PPPoE. PPP = Point-to-Point-Protocol.
Forget that PPP happens to be computer jargon for a moment,
"Point to Point" means there is only one point on each end of the
connection. It's a tiny network with only two points. Which is two
addresses, one for the ISP and one for you. Thus, if you are doing
PPP, then you have only one address. And if you are doing PPPoE,
then, by definition, you are doing PPP. You are doing it [o]ver [E]thernet.
So you must do NAT on your end to connect more than one machine to
the net via that one address.
That means that your machines, and the lan side of your router all
need addresses in one of the address spaces reserved for private
use. ie: 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16.
That lets your machines initiate connections out to the internet as clients.
To let machines on the internet initiate connection in to your machines as
servers, then you must configure port-forwarding rules into the router (BEFSR41
has basic port forwarding that is good enough for simple tasks), and your ISP
needs to not be actively firewalling inbound traffic, which many home ISP's do
these days.
If your ISP is firewalling you, you may possibly get around that by just using
non-standard tcp ports.
IE, perhaps they block ports 25, 80, and maybe even some of the common router
default "alternate" http admin ports like 1080 and 8080. So, try
port-forwarding port 81, 82, 83 etc.. try also something completely random and
above 1024, like 3015 or something. Or, simply tell your ISP that want a
different class of connction and pay for it.
I myself happen to have fiber (Verizon FiOS) in my office and I have several
static public IP's with no port blocking by the ISP at all. No NAT, no PPPoE,
not even DHCP needed, not even any router needed, just a switch to provide
physical jacks. In my case they provide actual IP's and the router is on their
end and my FiOS connection is essetially like a super duper patch cord right to
a switch or router in their office wherever that is. It costs only a little
more than a typical cable-modem connection (around here anyways, central NJ,
USA, obviously different markets are, well different) and runs a lot faster and
has been 99.9999% uptime vs my and several co-workers cable connections go out
all the time. But the point is, the typical home FiOS account does use DHCP
and/or PPPoE just like most DSL uses and just like you describe. I just had to
tell Verizon that I wanted something else and then pay a little more for it.
You may simply need to do that too, becuase not everything can actually be done
via NAT and port forwarding. Maybe your needs are simple enough, or maybe not.
You haven't said enough yet for us to advise.
Your existing router can be used in all plausible situtions, at least for
getting basic tcp networking and routing.
Of course more expensive routers do various things this router can't do, or
does them better etc, but, this router can do pppoe and dhcp and nat and port
forwarding, and it can do staic single public ip to multiple private ip, and it
can even do multiple public ip's, which is actually the _simplest_ form of
routing. But you can't do anything until you get your ISP to provide you with
some sort of service and tell you the particulars of that service, THEN we can
say how to tell your router to use that service. Currently, apparently, you
have a pppoe account, and so as I said above, that means one public ip (maybe
dynamic, maybe static, but still, only one ip) and nat. If your needs exceed
what can be done via one ip, then you simply have to upgrade to a different
type of account, which of course will mean different router configuration at
that time.
Sorry you (and so many others) want your goodies without paying your dues for
them, but RTFM really is the answer here. You have asked so many questions at
once that you apparently need a primer on tcp networking and routing in general.
No crime in that, but that's not a reasonable thing to ask people to write up
on a mail list for free. Especially when umpteen gazillions of those already
exist all over. Read some tutorials or hire a tech to set it up for you. If you
want to know what he did and why and how and all that, then ask him to explain
as he goes and pay him for the extra hours that will consume. It's not only
fair, it's your highest quality solution.
--
Brian K. White brian@xxxxxxxxx http://www.myspace.com/KEYofR
+++++[>+++[>+++++>+++++++<<-]<-]>>+.>.+++++.+++++++.-.[>+<---]>++.
filePro BBx Linux SCO FreeBSD #callahans Satriani Filk!
The Questions...--
Does anyone know of a good cheap DSL Router that I can set my gateway
ip and it will allow all my other ip's to go out, and do PPPoE? I was
told that some people flah linksys routers to get it more use. Does
anyone know what the software is and a link to the page? It's most off
the shelves routers are for people with no static or one. Oh, the
range for the router needs to be in the $50 to $80 range, I might be
able to go as high as $100.
Does anyone have a Linksys BEFSR41 and more that one static IP? Have
you gotten yours to work?
If I can't get this done with router what would it take for my linux
box to be able to do this. It currently has two nic, one is
47.216.17.88/28 and the other is 192.168.65.2/24. Does I need a third
Nic? Would this be wise, would the other computers be able to get out?
Does anyone have any Advice beside "RTFM"?
I know it weird to ask this list, but I am at a lost. My websites, no
email and wife that doesn't understand that some times these things
take a bit of work.
Thanks a head of time.
Payne
--
--
Command, n.:
Statement presented by a human and accepted by a computer in
such a manner as to make the human feel as if he is in control.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
--
No virus found in this incoming message.
Checked by AVG.
Version: 7.5.524 / Virus Database: 270.7.5/1698 - Release Date: 9/29/2008
7:25 PM
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |