As another option.. This is the configuration that I was originally running
in, and it did work ok but eventually I found that it is tedious to maintain
Linux as a firewall and always having to leave it running. What I
eventually ended up doing was to buy a 4 port LinkSys router from BestBuy
that acts as a firewall, handles DHCP, ...
You can still run Linux but you don't have to worry about ipchains,
ipforwarding and all that good stuff. Unless you want to.
-----Original Message-----
From: Cole Tuininga [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, December 05, 2000 6:59 AM
To: Bob Bell
Cc: [EMAIL PROTECTED]
Subject: Re: Managing services on two NICs
On Dec 5, Bob Bell claimed:
> I've got an appointment to get cable modem Internet access installed
> Tuesday (woohoo!). After they hook me up on my Windows box, I'll be
> looking to resetup service on my dedicated Linux box with two NICs. One
> will speak to the cable modem and rest of the world, and the other will
> speak to my local network (only 1 other system currently) and provide IP
> masquerading.
Congrats - it's a good setup. I'm doing it at home myself. One thing you
should be aware of if you haven't had experience with cable modems
before: When they set it up, the cable modem is set to key off the MAC
address of the NIC it is initially connected to. So when you go to make
use of the linux box, either you have to move the NIC to it, or (once you
have the linux box up) you have to call MO/ATT to have them essentially
reset the cable modem (no, power cycling it will not have the same
effect).
> I haven't found any good information yet on how I can set up
> services on those two network cards (with different addresses)
> differently. For instance, I may want to run DNS locally but not
> externally, or I may want to have FTP or Apache configured differently
> depending on the network. Does anyone have any good information on
> this, or pointers to some?
Making the assumption you know how to configure both NIC's (perhaps not a
safe assumption?) the easiest way to limit services and such is to use
tcpwrappers. man (8) tcpd will get you started.
-Cole Tuininga
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
