Hi Liste, könnt ihr mir helfen? Ich brauch einen RAS für Linux. D.h. mein Chef will sich direkt ins Modem einwählen um Zugriff aufs LAN zu haben. Gibt es da vieleicht ein fertiges Tool für? Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen? mfg Paul
Hi Liste,
könnt ihr mir helfen? Ich brauch einen RAS für Linux. D.h. mein Chef will sich direkt ins Modem einwählen um Zugriff aufs LAN zu haben. Gibt es da vieleicht ein fertiges Tool für? Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen?
Bitte auf englisch. RAS gibt's nicht fur Linux. What you can do however is a homebrew solution using PPP and ipchains. Simply setup the machine as a PPP server, there is a HOWTO on this at ldp.org, and off you go.
mfg
Paul
Kurt Seifried SecurityPortal, your focal point for security on the net http://www.securityportal.com/
Paul, this is an english list, so please use english language! * Translation
* sobek wrote on Thu, Sep 28, 2000 at 20:14 +0200:
Ich brauch einen RAS für Linux.
I need a RAS for linux.
You may use a oridinary PPP dialin useing mgetty+pppd.
D.h. mein Chef will sich direkt ins Modem einwählen um Zugriff aufs LAN zu haben.
my boss want's to dial up via modem to get access to the LAN
Configure a mgetty dialin port i.e. with AutoPPP or PPP only. Define some usable IP addresses for that, usually it should be possible to use some private IPs. Don't forget to check the routing; if the modem is not attached at the default router of your lan, at least this host needs a route to the host with the modem.
Gibt es da vieleicht ein fertiges Tool für?
Is there a tool avialable for that?
The pppd is able to provided the needed functions.
Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen?
If so, is it possible to install a firewall on the same host or is it better to use another machine?
Install firewall at every place it makes sense. The first router behind the uplink should do packet filtering, if you are more paraniod you may wish to set up a packet filter on every router. Of course this depends on your local configuration and you networks topology. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
Hi, how could a PPP-Server be setup with an ISDN Adapter? Could you use the same approach? Benjamin On Fri, 29 Sep 2000, Steffen Dettmer wrote:
Paul, this is an english list, so please use english language!
* Translation
* sobek wrote on Thu, Sep 28, 2000 at 20:14 +0200:
Ich brauch einen RAS f�r Linux.
I need a RAS for linux.
You may use a oridinary PPP dialin useing mgetty+pppd.
D.h. mein Chef will sich direkt ins Modem einw�hlen um Zugriff aufs LAN zu haben.
my boss want's to dial up via modem to get access to the LAN
Configure a mgetty dialin port i.e. with AutoPPP or PPP only. Define some usable IP addresses for that, usually it should be possible to use some private IPs. Don't forget to check the routing; if the modem is not attached at the default router of your lan, at least this host needs a route to the host with the modem.
Gibt es da vieleicht ein fertiges Tool f�r?
Is there a tool avialable for that?
The pppd is able to provided the needed functions.
Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen?
If so, is it possible to install a firewall on the same host or is it better to use another machine?
Install firewall at every place it makes sense. The first router behind the uplink should do packet filtering, if you are more paraniod you may wish to set up a packet filter on every router. Of course this depends on your local configuration and you networks topology.
oki,
Steffen
-- Dieses Schreiben wurde maschinell erstellt, es tr�gt daher weder Unterschrift noch Siegel.
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
* Benjamin Janson wrote on Fri, Sep 29, 2000 at 11:18 +0000:
Hi, how could a PPP-Server be setup with an ISDN Adapter? Could you use the same approach? Benjamin
Please note, that this is definitly the wrong list... If you have an active ISDN card you could use pppd on top of a /dev/ttyIx device. Otherwise you may use syncPPP (most common way to make PPP over ISDN; i.e. used by Windows), you'll need ipppd which is very simliar (and derived from) pppd. Another possiblity is RawIP, if the peer supports that. Please use a ISDN topic mailing list for further questions. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
Mais bien sûr ... -----Original Message----- From: sobek [mailto:mailblackjack@gmx.net] Sent: Thursday, September 28, 2000 7:14 PM To: suse-security@suse.com Subject: [suse-security] RAS Hi Liste, könnt ihr mir helfen? Ich brauch einen RAS für Linux. D.h. mein Chef will sich direkt ins Modem einwählen um Zugriff aufs LAN zu haben. Gibt es da vieleicht ein fertiges Tool für? Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen? mfg Paul --------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Hi, first of all, this is a list related to security. Second, this list is completely in english. This will be the reason for the answer "mais bien sur". Anyway, I'll try to translate (please forgive me the errors I will certainly do :-)) --- Hi list, can you help me ? I'm in need for a RAS for Linux. To be more precise, my boss wants to have direct access to the modem (I think from outside the LAN, as I understand it) to be able to have access to the LAN. Is there any ready-to-use tool for this ? If so, is it possible to run a firewall on the same machine or would it be better to run it on a seperate computer ? TIA Paul. --- Well, AFAIR you can configure Linux to accept dial-ins from specific telephones or from every number. There is no need for a special tool as this feature is already included in SuSE-Linux. And yes, you can run a firewall on this machine. It's not necessary to have a seperate computer for it. Just my opinion. I'm not really familiar with the dial-in-possibilities of Linux, so please correct me if I'm wrong. CU --- Stephan
Hi Liste,
könnt ihr mir helfen? Ich brauch einen RAS für Linux. D.h. mein Chef will sich direkt ins Modem einwählen um Zugriff aufs LAN zu haben. Gibt es da vieleicht ein fertiges Tool für? Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen?
Hi, In my opinion, that should be easy to manage, because the isdn4linux package supports this RAS options. You can add incoming phonenumber with: isdnctrl addphone ippp0 123456 IMHO it's no problem to combine the RAS-server and the firewall Hope this helps! greetings Huega On Sun, 1 Oct 2000, OKDesign oHG Security Webmaster wrote:
Hi,
first of all, this is a list related to security. Second, this list is completely in english. This will be the reason for the answer "mais bien sur". Anyway, I'll try to translate (please forgive me the errors I will certainly do :-))
--- Hi list,
can you help me ? I'm in need for a RAS for Linux. To be more precise, my boss wants to have direct access to the modem (I think from outside the LAN, as I understand it) to be able to have access to the LAN. Is there any ready-to-use tool for this ? If so, is it possible to run a firewall on the same machine or would it be better to run it on a seperate computer ? TIA Paul. ---
Well, AFAIR you can configure Linux to accept dial-ins from specific telephones or from every number. There is no need for a special tool as this feature is already included in SuSE-Linux. And yes, you can run a firewall on this machine. It's not necessary to have a seperate computer for it. Just my opinion. I'm not really familiar with the dial-in-possibilities of Linux, so please correct me if I'm wrong.
CU
--- Stephan
Hi Liste,
k�nnt ihr mir helfen? Ich brauch einen RAS f�r Linux. D.h. mein Chef will sich direkt ins Modem einw�hlen um Zugriff aufs LAN zu haben. Gibt es da vieleicht ein fertiges Tool f�r? Wenn ja: kann man eine Firewall auf auf dem gleichen Rechner laufen lassen ider besser auf einem anderen?
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (7)
-
Benjamin Janson
-
Huega
-
Kurt Seifried
-
OKDesign oHG Security Webmaster
-
sobek
-
Steffen Dettmer
-
Thomas Beauchamp