Alexandre Souza wrote:
> 1 - Will the internal clients be set up as proxy clients or the
> masqueraded net will look like a normal internet?
It will look exactly like the normal Internet, with a couple of smallish
(for me, anyway) exceptions that I will get into in #3.
> 2 - Will the external network have acess to the internal network (eg: If I
> want to telnet a machine in my internal network)
No, at least not directly. If someone wanted to get to an internal
machine, they would first have to hack your server and then hack the
internal machine from there. As I understand it.
> 3 - Will the internal clients use quake, irc, irc, etc...transparently?
Maybe, maybe not. Some things will work transparently, some things can
be MADE to work transparently and some things are hopeless. For
instance, FTP won't work as-is, but if you create and load the
ip_masq_ftp module everything works just fine with no fiddling. FTP is
the only thing I've ever had to mess with, so I don't know about IRC,
Quake, etc.
> 4 - How safe is it?
AFAIK, it's just as good as any reasonable firewall. And it is
definitely better than Win95's bare-all attitude.
--
My public encryption key is available from
www.az.com/~drysdam/crypt/rysdam.gpg.html
and of course www.keyserver.net
