Put two network cards in the PBX. One for outside the firewall, one for
the internal network.
The PBX will need to run a firewall on the WAN side.
On 3/7/2010 3:29 PM, terry D. Cudney wrote:
Hi all,
I have a small atom-based machine running asterisk sitting behind a
router/firewall (openwrt on a linksys wrt54gl). I would like to put that
machine outside the firewall to avoid NAT, etc. Not sure if this will work, so
please anyone with experience in a setup like this, or who knows that it
will/wo't work drop me a line.
Proposed configuration:
DSL-modem<==> netgear switch<==> atom-based machine running debian/asterisk
The atom-based machine has only one rj45 interface and no expansion slots.
I can run pppoe and get the connection through the switch/DSL-modem fine.
(public IP).
I can run DHCPD on that interface (with a statically assigned IP on it)
when ppp is not running and serve IP's to other devices connected to the
switch/ talk to them.
I want to combine these two so that the same eth0 interface will have both
a PPPOE connection with public IP and the second local IP assigned statically
talking to the local devices through the switch.
Can this be done with a single interface?
I can assign the second local-IP to the interface ok, but so far can only
get the atom-based machine to talk to external hosts when ppp is active, not
seeing the local devices. Is this just arouting problem? or is there something
more fundamental that makes this impossible/impractical?
If this can be done, I want to set up a DHCP server on the same interface
serving locall-IP's to the other switch-connected devices so that they can talk
to the atom-based machine
Is this do-able?
If so, then could one also do NAT/IP-forwarding/iptables on the atom-based
machine to provide internet access to these switch-connected devices? All
through the one rj45 interface?
Thanks in advance for any pointers to documentation on how to do this or
showing that this cannot be done!
Apologies if this is too off-topic for an asterisk list. the goal is for
some of the switch-connected devices to be SIP clients...
Thanks,
--terry
Name: Terry D. Cudney
Phone: (705) 881-1616
E-mail: [email protected]
SIP: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
--
--
Jim Van Meggelen
[email protected]
http://www.oreillynet.com/pub/au/2177
"A child is the ultimate startup, and I have three.
This makes me rich."
Guy Kawasaki
--
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
