Re: remote build of Debian router

[Mike M <no-linux-support@earthlink.net>]

On Tue, Nov 30, 2004 at 11:19:04AM -0800, Paul Johnson wrote:
> On Tuesday 30 November 2004 10:59 am, Mike M wrote:
> > On Mon, Nov 29, 2004 at 02:01:17PM -0800, Paul Johnson wrote:
> > > On Monday 29 November 2004 1:04 pm, Mike M wrote:
> > > 
> > > > 1) connect Deb box to cable modem
> > > > 2) ssh to Deb box to test access
> > > > 3) have father install 2nd NIC on Deb box
> > > > 4) using ssh, install iptables and configure iptables on Deb box
> > > 
> > > That'll work, but you might want to install ipmasq and get your 
> > > DHCPD of choice running on the 2nd NIC.  
> > 
> > I didn't compile the kernel to support iptables or netfilter.
> 
> netfilter is absolutely mandatory for ip masquerading, there is no way 
> around it.

Yep.  Now, how to get it in.  

a) ssh over Internet to unprotected box and recompile kernel and play with
   config
b) drive 6h to get box; install behind my f/w; fix it; drive 6h to put
   box back

If risk is manageable then I choose a). If not, then b) or c) father
buys router/firewall appliance.

-- 
Mike

Moving forward in pushing back the envelope of the corporate paradigm.