I know this was discussed a few months ago, but for whatever reason I can't seem to find the discussion. I guess I'm not up to snuff on Google lately. So I'll ask here, since it directly deals with Linux anyway... And I ask that you not simply point me to the plug.org mailman page. After all, I think this is actually covering a couple of topics. :) Explain to me why you recommend whatever software or whatever configuration. I don't mind being pointed to web sites to download a specific program, but I'd like to have a better understanding of WHY that program was recommended over other programs that could accomplish the same end result.
I'm trying to design a network that would have two separate segments, one physical and one virtual. The virtual would be setup using KVM and would be protected by IPTables on the host. IPTables would be configured to examine each incoming network packet, and only forward certain ports to each virtual computer if their real world IPs match. For example, new port 25 connections only go to 192.168.4.2, AND only if they were supposed to go to 209.66.74.9. Port 53, UDP and TCP, if sent to 74.9 goes to 4.2, and if sent to 74.10 goes to .4.3. Next, the physical segment is both wired (eth1) AND Wireless (wlan0/ath0/whatever). I don't want to plug in a physical Wi-Fi router, for various reasons. I just want the server to offer DHCP addresses to anyone who connects to eth1, or to anyone who connects to wlan0 IF they also have the correct wpa2_personal key configured. These machines would connect via simple IP masquerading since there will be no connections originating outside the network that need to be responded to. Not that dissimilar to a Wi-Fi router. However, like I said above, I have various reasons for preferring to not use a separate Wi-Fi router/AP. I know from experience with 802.11g cards that there is usually an "Ad-Hoc" mode where one NIC on computer A talks to one NIC on computer B. But my understanding is that then for computer C to computer A, A would need a separate NIC, or would need to wait until B is no longer associated with A. I haven't had an opportunity to closely examine the 11n series cards to see if they do the same thing, and I've not had an opportunity at all to look at any 11ac series cards at all. So perhaps this is no longer an issue. However, if that is the issue, then obviously Ad-Hoc mode won't work. But the only way I ever saw "Managed" mode working was when it would connect to a physical AP/Router. I could really use some help on this. I don't mind grabbing other programs when need be. The server will probably be running CentOS, although Gentoo is not an impossible choice. That decision is yet to be made, as well as exactly what Wi-Fi card to buy for the server so it can communicate wirelessly. I am sure most, if not all, the traffic control will be done via IPTables. That's fine. I may not fully understand that program, but I do get it well enough to write up a fairly simple firewall. I appreciate the help folks! --- Dan /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
