>
> I am sure that I am not the only guy who dials into an ISP and receives
> an dynamic IP address for the outside interface with ipfwadm and running
> Amateur tcpip applications. Aside from hand editing source and
> destination address's each time the system kicks off, is there a better
> mouse trap? I tried the tunnel-munge script but could not get it to
> work.
>
> The system here runs diald (dial on demand) which auto creates the ppp0
> circuit and default gw. I would like to link the internal nos network
> to other gateways via axip or even ipip using the ISP dynamic address
> (which changes with each login).
>
> Is there anyone doing this? Thank you in advance.
John
Not quite sure of the question but I think the answer is IP Masquerade.
Give your system an IP number from the private IP address ranges (RFC 1918?).
Define your firewall defaults to deny everything on all external interfaces.
Create scripts that setup/clear firewall configurations for the IP address
passed to them. These scripts enable/disable the packet filters for IP
services that you wish to use and set/unset the Masquerade address for that
interface.
For ppp call the firewall setup/clear script from ip-up/ip-down with the IP
address passed in by pppd.
For other interfaces call the firewall script with the IP address you are
using on that interface.
I use two different firewall configurations, one for IP over AX25 and one
for ppp.
--
Regards
Richard
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Amateur radio callsign: G1SOG Home BBS: G1SOG@GB7SDN.#49.GBR.EU
My opinions are mine, all mine. None to spare for unopinionated masses.
This message comes from a WinTel free zone. CPU = Cyrix, OS = Linux.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
