Replies inline below.
I waited a bit before replying to see if others could give you more direct
answers than I can. Please take these comments for what they are worth.
At 05:09 PM 7/9/02 -0700, Harold Miller wrote:
>I'm new to the whole LEAF / LRP arena, but an old programmer. Started my
>first ISP with a single Linux/486DX4-100 box a while ago, sold it, and now
>have a dozen machines running at my home/office. I have a few questions. I
>read what documentation I could find, but most of the sites appear to be
>down/moved (c0wz, etc).
>
>My hardware is an older 486-dx4100, with 4 NETGEAR FA311 PCI cards, 2X
>210Meg IDE drives (in case), generic ISA video, serial / parallel. 64Meg RAM
>
>I have ISDN with fixed IP's running through an old Firewall box, feeding a
>DMZ with 2 servers and a subnet of masqueraded windoze boxes. The new LEAF
>box will replace that older Firewall, and allow me to switch to a Cable
>modem. I hope to get the new one operational, and move things over a bit at
>a time before axeing the old box. Thats why I have 4 ehternet cards
>(eth0=CABLE, eth1=ISDN, eth2=DMZ, eth3=MASQ)
>
>I will have 5 fixed IP's on the CABLE connection when I get it all done.
>(GW/eth0, DMZ/eth2, 3Xservers in DMZ)
>
>I have D/L'd several versions of the project, most recently Dachstein
>V1.0.2.
>
>1) Which version should I be playing with? Security is my main concern..
There is no simple answer to this question. All the variant developers take
security seriously. But all the variants still miss on security from time
to time, needing to upgrade to deal with (for recent examples) security
holes in ssh and bind. glibc-2.0.x is no longer maintained, so you should
worry about the possibility of security holes in variants that use it.
>2) The Ethernet cards came with a fa31x.o file, but it generates lots of
>errors when included in the module area. Tulip.o seems to generate less
>errors, but still a few. Which module should I be using?
It depends a bit on what the fa31x.o file was compiled for. You need a
module that matches your kernel version.
At least some Netgear cards work with some versions of the tulip driver.
Whether yours do or not ... well, it depends on what the errors are, right?
If you want meaningful advice here, you really need to tell us more about
the cards, the modules, and what the error messages say.
>3) Where do I get ipcfg, route, and the other required tools to troubleshoot
>this whole process? I don't believe LINUX is seeing any of the cards. dmesg
>lists the tulip module banner as the last line in the startup process.
What is "ipcfg"? If you mean ifconfig, either you use the "ip" command
instead ("ip link show", specifically) or you choose a variant that has an
ifconfig.lrp dropin package (discussed on this list earlier today). For
"route", use either "netstat" to get information or "ip" to set things.
What other tools do you consider to be "required"?
>4)Will I have to create yet another machine just to compile kernels if I
>want to use the IDE drives, and the network cards?
Well ... if you need to compile your own kernels, you will need a machine
able to handle kernel source and the usual compilers. LEAF systems are
focused on routing (or other special-purpose concerns), not this sort of
general capability. But you should check more carefully at the Sourceforge
site for kernels and packages that meet your particular needs (whatever
they are). If you only want to use the IDE drives *after* boot/init, for
example, you can add IDE support in as a module; it needs to be compiled in
only if you are loading packages from there.
>Thanks for the boost. Once the basics are running, the firewall, etc should
>be a straight forward port from the existing linux box. (ipchains)
>
>If ya wanna flame me, please do it off-line at [EMAIL PROTECTED], and not
>on the list...Suggestions can be sent to the same address.
--
-----------------------------------------------"Never tell me the
odds!"--------------
Ray Olszewski -- Han Solo
Palo Alto, California, USA [EMAIL PROTECTED]
-------------------------------------------------------------------------------------------
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Stuff, things, and much much more.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
