Re: Reading to turn computer into internet router for modem

To: debian-user@lists.debian.org
Subject: Re: Reading to turn computer into internet router for modem
From: "Michael D. Crawford" <crawford@goingware.com>
Date: Sun, 28 Apr 2002 18:14:24 -0500
Message-id: <[🔎] 3CCC8250.2080503@goingware.com>

I do just what you're asking about.

You should use your linux box as the gateway machine.

You could use your windows box as the gateway if you use winroute but it suxrox. I had files corrupted when I FTP'ed through a winroute gateway.

What you do is use one of the network addresses that is reserved for non-routednetworks within your local LAN. For example, my machines have the IP addresses:


192.168.1.1
192.168.1.2
192.168.1.3
192.168.1.4

that way you don't have to apply to ICANN to get a network address, which theywouldn't give you anyway.

You will need to have a kernel with PPP enabled, and to configure PPP so itdials in and connects properly from the Linux box. You may want to usedial-on-demand, but maybe not if you're charged for your connect time.

Then my recommendation is that you run a 2.4 kernel and use iptables. You willneed to enable some options in your kernel to use it. If you don't know how tobuild a kernel, maybe debian has a readybuilt kernel you can download withiptables enabled.

This rule, turned on in a startup script, will turn on IP Masquerading. Youwill want other rules for a complete firewall:


/etc/init.d/mymasq:
#!/bin/sh

case "$1" in
	start)
		modprobe iptable_nat
		iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
		echo 1 > /proc/sys/net/ipv4/ip_forward
	;;
	stop)
		echo 0 > /proc/sys/net/ipv4/ip_forward
		iptables -t nat -D POSTROUTING -o ppp0 -j MASQUERADE
	;;
esac

exit 0

Some howtos that are helpful:

http://www.tldp.org/HOWTO/Kernel-HOWTO.html
http://www.tldp.org/HOWTO/PPP-HOWTO/index.html
http://www.tldp.org/HOWTO/Firewall-HOWTO.html

It is not necessary to set up an HTTP proxy on your linux box, but it will helpyour performance if you do. It will also help your performance if you set up acaching nameserver, but again that is not necessary.


Mike
--
Michael D. Crawford
GoingWare Inc. - Expert Software Development and Consulting
http://www.goingware.com/
crawford@goingware.com

    Tilting at Windmills for a Better Tomorrow.


--

To UNSUBSCRIBE, email to debian-user-request@lists.debian.orgwith a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Re: apt did not install
Next by Date: pppd mulfunction ???
Previous by thread: Re: Reading to turn computer into internet router for modem
Next by thread: apt did not install
Index(es):
- Date
- Thread