JD Runyan wrote:
#=-=-=-=-=-=-=-=-=- Todd Walton wrote:
>
> I wish there were an easy way to allow unfettered public
> access to my broadband connection, but without allowing
> any public access to my computer. Easy as in, "I know
> that someone designed the system with this specifically in
> mind, and I just have to click click and it's all good."
> I'd settle for "I just have to follow a HOWTO to install
> it, and I can be sure that the system is safe and does
> what it's supposed to do." I don't use wireless, alas,
> and I don't know how this stuff generally works.
>
> -todd
>
>
That is simple, You need to have two access points, and
firewalls. You would then have this chain of devices. Each
firewall of course could support Wired network access as
well. You could do this with off the shelf Broadband
wireless routers. I suggest that you choose two seperate
Private address ranges. You could also do this with a single
Linux box with 3 NICs (Internet, Public, Private) Use Linux
routing to control the rest. Then you would need just normal
access points attached to the switch/crossover cable on the
appropriate NIC. You would have to learn a little about
Linux routing and firewalls.
USING OTF ROUTER/AP
=====================================================
|---- Public AP
BROADBAND ----- DMZ FW ----|
|---- LAN FW ---- Private AP
This is the part that is not clear. How exactly are the off-the-shelf
devices connected, and what does the routing table look like?
I want to add wireless capability to my existing (wired) LAN. I already
have an off-the-shelf firewall/router (Linksys RV082) which, of course,
is connected to my cable modem. In case it matters, I should point out
that this router has a DMZ port on it.
Now, how to I add to this existing network, something like a Linksys
WRT54G wireless router, or can I? If so,
o How do I physically connect the two routers together, and which
one should be connected to the cable modem? That is, assuming I
leave my existing LAN as is, should the WLAN be attached to one
of the LAN router's ports, or to its DMZ port?
o Do both routers have to be on different subnets? Right now, the LAN
network is at 192.168.7.0. Can the WLAN exist on that network, or
should it be at something like 192.168.8.0? Or...?
o Do I need to set up custom routing tables on one or both routers?
If possible, I would like to be able to get from the WLAN to the
LAN, provided it can be secured. But as long as I can SSH from the
WLAN to the LAN (and vice versa), that's acceptable also.
So, the big question is, can LAN and WLAN broadband routers exist in the
same network topology, and if so, what does that topology look like? Or,
do I need a (more expensive) Access Point instead?
--
Best Regards,
~DJA.
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
