On Sun, Jul 16, 2000 at 05:03:38PM +0200, Zoki wrote:
| What I would like to know is if I can plug the Motorola modem directly
| into my hub and setup ipchains to filter eth0 <-> [external address].
You don't want to do this. If you do this, then _every_ machine plugged into
your hub needs firewall rules. Instead, put two NICs in your firewall box:
cable-modem hub
| +--------------+++--------+
| | | |
firewall-----+ machine 2 machine 3
which is how mine is set up.
| Another question concerns the external device. Until know I have been
| using a dial-up account which means that my external device was ppp0. What
| will be the external device with the cable modem as I won't have a fixed
| IP (it'll change once in a while)?
Eth1 probably (if eth0 remains your internal NIC on the firewall).
I just:
- marked eth1 as ONBOOT=no in the redhat config file
- wrote an init script to fire up dhcpcd on eth1 to get the IP,
and made the .exe it calls (yes, .exe - we are still using Linux tho')
invoke my setup-the-firewall script with the right args
- generalised my old ppp setup-the-firewall script to work for eth1
(little change, as you get a dynamic IP either way)
I have NAT (IP masquerade) active on my firewall, so the other machines only
need to consider the firewall their gateway to the outside world).
Cheers,
--
Cameron Simpson, DoD#743 [EMAIL PROTECTED] http://www.zip.com.au/~cs/
"What the hell are we supposed to use, man -- harsh language?"
"Flame units only." - _Aliens_
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
