[SuSE Linux] Setting up a autodial gateway...
My desired setup: ISP <----> Linux <---> [hub]<-+--->Linux (rjhn) (SuSE) | +--->Linux (odessa) | +--->Win98 (nedra) IP's: Gateway : 192.168.0.1 rjhn : 192.168.0.2 odessa : 192.168.0.3 nedra : 192.168.0.4 How do I set it up? IP-MASQ etc.. Shall i run a cashing named? If so, how? I want ALL workstations to be able to connect to my ISP via ordinary v90 modem "atomagicaly" Time out: 1 min It shall firewall everyting but the usual, FTP, WWW, ICQ etc. ALL boxes must be able to utilise the connection even if another user has opened it. I want the ISP link to be "generic". Ie.. I want to be able to exchange the modem for a cablemodem, satelite link or whatever. Aslong as it connects to the Net. OBTW! I run SuSE 6.0 at the moment. Happy Hacking! /Rikard ---------------------------------- E-Mail: Rikard Johnels <im@hem.passagen.se> Date: 03-Jun-99 Time: 11:32:38 ---------------------------------- -- To get out of this list, please send email to majordomo@suse.com with this text in its body: unsubscribe suse-linux-e Check out the SuSE-FAQ at <A HREF="http://www.suse.com/Support/Doku/FAQ/"><A HREF="http://www.suse.com/Support/Doku/FAQ/</A">http://www.suse.com/Support/Doku/FAQ/</A</A>> and the archive at <A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html"><A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html</A">http://www.suse.com/Mailinglists/suse-linux-e/index.html</A</A>>
Rikard Johnels wrote: Hi Rikard,
My desired setup:
ISP <----> Linux <---> [hub]<-+--->Linux (rjhn) (SuSE) | +--->Linux (odessa) | +--->Win98 (nedra)
IP's: Gateway : 192.168.0.1 rjhn : 192.168.0.2 odessa : 192.168.0.3 nedra : 192.168.0.4
How do I set it up? IP-MASQ etc..
youŽll need masquerading. There are a few variables in rc.config: MSQ_START="yes" MSQ_NETWORKS="192.168.0.0/24" # your device to the i-net: MSQ_DEV="ippp0" MSQ_MODULES="ip_masq_cuseeme ip_masq_ftp ip_masq_irc ip_masq_quake ip_masq_raudio ip_masq_vdolive"
Shall i run a cashing named? If so, how?
install bind8 (think it was th "old" version), edit rc.config again: START_NAMED=yes NAMESERVER="127.0.0.1" edit /etc/boot.named. search for "forwarders" enter your ISPŽs nameserver IPŽs there and the word "slave" in a seperate line. run /sbin/SuSEconfig to make the changes work and run "/sbin/init.d/named start" to start the service. There is a (only germen) description in the sdb: search for "named"
I want ALL workstations to be able to connect to my ISP via ordinary v90 modem "atomagicaly" Time out: 1 min
you can use firewalling to disable certain WS. Timeout depends on your "dialing" setup of the linux box. YouŽd need sort of dial on demand. (Comes with ISDN, with a modem diald should play the game)
It shall firewall everyting but the usual, FTP, WWW, ICQ etc. ALL boxes must be able to utilise the connection even if another user has opened it.
youŽre using an IP connection. None cares. ;-) Firewall: a few varŽs in cr.config as well: every var that starts with FW_* is used for firewalling Be prepared to build your own kernel for that, I do not know wether SuSE stock kernels still do IP-forwarding, there was a rumor about this beeing changed (securety reasons). (This would include masquerading btw.)
I want the ISP link to be "generic". Ie.. I want to be able to exchange the modem for a cablemodem, satelite link or whatever. Aslong as it connects to the Net.
puh, thatŽs hardware. Of course if you change, youŽll have to setup another net device and exchange that device name in MASQ_DEV=... or FW_DEV
OBTW! I run SuSE 6.0 at the moment.
Happy Hacking!
/Rikard
Juergen -- ========================================== __ _ Juergen Braukmann mail: brauki@cityweb.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu| /\\ /__/ / _ \/ // /\ \/ / ==========================================_\_v __/_/_//_/\_,_/ /_/\_\ -- To get out of this list, please send email to majordomo@suse.com with this text in its body: unsubscribe suse-linux-e Check out the SuSE-FAQ at <A HREF="http://www.suse.com/Support/Doku/FAQ/"><A HREF="http://www.suse.com/Support/Doku/FAQ/</A">http://www.suse.com/Support/Doku/FAQ/</A</A>> and the archive at <A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html"><A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html</A">http://www.suse.com/Mailinglists/suse-linux-e/index.html</A</A>>
On Thu, 3 Jun 1999, Rikard Johnels wrote:
My desired setup:
ISP <----> Linux <---> [hub]<-+--->Linux (rjhn) (SuSE) | +--->Linux (odessa) | +--->Win98 (nedra)
IP's: Gateway : 192.168.0.1 rjhn : 192.168.0.2 odessa : 192.168.0.3 nedra : 192.168.0.4
How do I set it up? IP-MASQ etc..
Look into the SuSE manual, it's extremely easy to achieve that with SuSE. Really. I don't have the 6.0 manual at hand right now. In the 5.3 manual it was in chapter "Networking Linux" section "Firewall and Masquerading". You just need some settings. That's all. If you run into problems come back to me on a private line. BTW: All boxes behind the gateway need a default route pointing to the gateway.
Shall i run a cashing named? If so, how?
Depends on what you want to do. If all mailers directly contact the mail server of your ISP you don't need one. If you want to make the gateway the "smart host" then it makes sense to set up a "slave named". If you can squeeze a static IP out of your ISP you can get a domain and can have as many email accounts on your local system as you want. In that case a named makes sense.
I want ALL workstations to be able to connect to my ISP via ordinary v90 modem "atomagicaly" Time out: 1 min
That's a bit more tricky. I'd suggest you first set up everything else. Then, when all is working you set up dial on demand.
It shall firewall everyting but the usual, FTP, WWW, ICQ etc. ALL boxes must be able to utilise the connection even if another user has opened it.
That is so automatically.
I want the ISP link to be "generic". Ie.. I want to be able to exchange the modem for a cablemodem, satelite link or whatever. Aslong as it connects to the Net.
Well, if you change the ISP you have to change your setup. ;-) Uwe ------------------------------------------------------------------------- Uwe Thiem Tel: +264 - 061 - 244511 P.O.Box 30955 Fax: +264 - 061 - 244511 Windhoek Email: uwe@uwix.alt.na Republic of Namibia uwe@kde.org <A HREF="http://www.kde.org"><A HREF="http://www.kde.org</A">http://www.kde.org</A</A>> ********************************** You can still escape from the GATES of hell: Use KDE! ------------------------------------------------------------------------- -- To get out of this list, please send email to majordomo@suse.com with this text in its body: unsubscribe suse-linux-e Check out the SuSE-FAQ at <A HREF="http://www.suse.com/Support/Doku/FAQ/"><A HREF="http://www.suse.com/Support/Doku/FAQ/</A">http://www.suse.com/Support/Doku/FAQ/</A</A>> and the archive at <A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html"><A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html</A">http://www.suse.com/Mailinglists/suse-linux-e/index.html</A</A>>
participants (3)
-
brauki@cityweb.de -
im@hem.passagen.se -
uwe@uwix.alt.na