Re: DSL works, almost

From: Geoff Wheeler (gasbag_at_attglobal.net)
Date: 03/12/04

• Next message: displaybanner.com: "An all new tool to design and display banners randomly"
• Previous message: Codepunk: "can linux help me out in this nasty situation"
• In reply to: David Efflandt: "Re: DSL works, almost"
• Next in thread: David Efflandt: "Re: DSL works, almost"
• Reply: David Efflandt: "Re: DSL works, almost"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Fri, 12 Mar 2004 09:44:35 -0500

Oh, so damn close. Thanks again, David. Now to my next round of Qs.

David Efflandt wrote:
> On Thu, 11 Mar 2004 14:00:40 -0500, Geoff Wheeler <gasbag@attglobal.net> wrote:
>
>>...It's a Westell 2200, which means it has routing capability, but I don't
>>want that, right? My thinking is that a machine in direct contact with
>>the outside world should _not_ contain info about my home LAM, correct?
>> Isn't that the reason for your suggestion to mask the LAN?
>
>
> I do not know the capabilties of your modem/router, which is why I
> suggested masquerading your LAN behind your Linux router. By default,
> your modem router would only answer for local LAN IPs in its network.
> If your other LAN behind the Linux box was not masqueraded, your
> modem/router would ignore them.

Which, I guess, is what it's doing. I may be answering my own question
from below (working my way back up your reply), but it seems that any
way I go I'll be MASQing my home LAN to eth1/ppp0. Since, through dhcp,
the modem/router only knows from eth1, every request must come from that
IP, yes? And if'n I PPPoE from Linux, that'll be happening anyway, but
from eth0->ppp0, no?

> Basically doing your own pppoe (if you could switch modem/router to bridge
> modem) would eliminate the double NAT (masquerading behind NAT). However,
> I am not familiar with WinPoET and whether it differs from standard PPPoE.

Yeahbutyeahbutyeahbut. I can enable/disable NAT on modem/router, so if
I disable it there, and use NAT on Linux to translate for home LAN,
isn't that preferrable? My concern is that using PPPoE on Linux won't
allow me to access the modem/router for configuring, unless I tear down
PPPoE and re-enable dhcpc for the time required to access modem/router.
  Small price, surely, but isn't LAN->eth1->modem/router->PPPoE->world
better insulation than LAN->ppp0->PPPoE->modem/router/world? I realize
this leaves the modem vulnerable, but better that than my home LAN, no?

>
>
>>However, when
>>initializing eth1 with 'dhcpcd' the modem overwrites my resolv.conf (a
>>very nasty thing to do). Since I have DNS running on the home LAN, I
>>need to return my own copy of resolv.conf, which contains a 'search'
>>statement for my home LAN, ISP network, and nameserver addies for home
>>and ISP.
>
>
> There should be a setting for your dhcp client to NOT change your
> resolv.conf. Your dhcp client should also have a related script to
> refresh your firewall settings when it gets an IP (or new IP).

Sorry about that, David. Amazing what a little 'man' work will reveal.

>
> That still would not work from your eth0 LAN unless masquerading is
> working properly (and /proc/sys/net/ipv4/ip_forward contains 1).

OK, next confusion. If I go PPPoE route on Linux, what should the
routing table show. Right now, it'll put the remote addy in the table
and not the local, so how does eth0 get any knowledge of ppp0(local) in
order to send packets to ppp0(remote)? Or does it need to? I'm
starting to get an inkling about MASQing here, and it must not have been
working, ever, since when I tried demand dialling, dialling would be
triggered for foreign addies but they would never resolve. This would
be because requests were coming from IPs different from ppp0, correct?

There's a small glimmer of light beginning to show at the end of the tunnel.

Thanks for taking the time,
Geoff.

• Next message: displaybanner.com: "An all new tool to design and display banners randomly"
• Previous message: Codepunk: "can linux help me out in this nasty situation"
• In reply to: David Efflandt: "Re: DSL works, almost"
• Next in thread: David Efflandt: "Re: DSL works, almost"
• Reply: David Efflandt: "Re: DSL works, almost"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Linux 10x slower than Windows ... My home LAN is connected to 2Mbs broadband via a cable router. ... windows gets 2000bps but Linux only achieves 200bps. ... alias sound-slot-0 snd-es1938 ... It's a bit curious that my Linux box is working slower than Windows - sacre ... (comp.os.linux.networking) Re: Newbie - access internet via LAN and router ... davout wrote: ... I have a home LAN with a router configured to address 192.168.1.1. ... Three Windows XP PC's on this LAN use DHCP to get their IP address, whilst the Linux PC is set to the fixed IP address of 192.168.1.55. ... when I open Firefox it fails to access the internet. ... (uk.comp.os.linux) Newbie - access internet via LAN and router ... I've just installed Suse 10 on an old PC, ... I have a home LAN with a router configured to address 192.168.1.1. ... Linux PC is set to the fixed IP address of 192.168.1.55. ... when I open Firefox it fails to access the internet. ... (uk.comp.os.linux) Newbie - access internet via LAN and router ... I've just installed Suse 10 on an old PC, ... I have a home LAN with a router configured to address 192.168.1.1. ... Linux PC is set to the fixed IP address of 192.168.1.55. ... when I open Firefox it fails to access the internet. ... (uk.comp.os.linux)

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint