Re: project: wired/wireless router

[j t]

On Tue, Jul 1, 2008 at 2:03 AM, thveillon.debian
 Looks like Netgear is about to bring us a nice toy :

 The high-performance WGR614L, which is Works with Windows Vista

Sorry to rain on the parade, but (to echo some comments on slashdot),
no pre-N, gigabit ethernet or usb ports? 4MB flash and 16MB ram?

High-performance?


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Gregory Seidman]

On Mon, Jun 30, 2008 at 12:26:28AM +0100, Sam Kuper wrote:
 Greg,
 
 I can confirm that the Buffalo WHR-HP-G54 is very stable under OpenWRT White
 Russian, which gives you (yet) another option if you go down the path of
 buying a new router/AP device.
 
 Alternatively, if you're set on using your existing box as your router/AP,
 why not use a USB Wi-Fi device if you're going to be occupying the sole PCI
 slot with an ethernet card? USB Wi-Fi dongles are often cheaper than
 Ethernet ones. (NB. If I've failed to notice that your box doesn't have USB,
 then please disregard this comment.)

I just wanted to report on the hardware I decided on. I couldn't find a
well-supported USB WiFi dongle, especially one that was a reasonable price
and showed any prayer of being able to work as an AP. I also realized I
already had a USB wired dongle lying around from an old TiVo (now replaced
with a TiVo that has builtin ethernet). So now I'm purchasing a Netgear
Super G PCI card (WG311TNA), which is supported by madwifi as an AP. The
USB dongle is, regrettably, USB 1.1, but since it will be connected to the
cable modem (which only provides around 3Mb bandwidth), it should be fine.

Once I have the hardware, it's just a matter of figuring out how to set up
the iptables for NAT routing and appropriate firewalling. Actually, since I
don't have wireless needs at the moment, I can start working on it this
weekend even before I receive the wireless card, assuming I have sufficient
hubs (which I might).

 Sam
--Greg


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[H.S.]

Gregory Seidman wrote:


Once I have the hardware, it's just a matter of figuring out how to set up
the iptables for NAT routing and appropriate firewalling. Actually, since I
don't have wireless needs at the moment, I can start working on it this
weekend even before I receive the wireless card, assuming I have sufficient
hubs (which I might).


For iptables, you probably want to look into various packages that 
already do this. Firestarter comes to mind, but I am not sure if it will 
measure up to your two lans requirement, LAN and WLAN.


Should you need any help regarding iptabels in this scenario, ask here 
and I will try to pitch in. I already have a similar setup running with 
my own iptables script. I am no networking expert, but I will be able to 
at least list what worked for me.


But rest assured, it is fun doing this stuff!


-HS


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Michelle Konzack]

Hello Gregory,

Am 2008-06-28 12:30:15, schrieb Gregory Seidman:
 I have a mini case with a VIA motherboard and CPU. It has an on-board
 ethernet port. I'd like to use it as a Linux firewall/NAT router to replace
 the (wired only) LinkSys I have now. It only has one PCI slot, but I want
 to be able to provide both wired and wireless LAN access. I'm looking for
 both hardware suggestions (i.e. a PCI card with both wired and wireless
 ethernet that is supported by the kernel in stable) and configuration help.

Use a PCMCIA - MiniPCI Adaptor card

I use one which have 8 MiniPCI Slots and use a VIA EPIA LN1EAG.

 My requirements are:
 
 1) Wireless is an independent subnet from the wired, and is firewalled from
the wired LAN in the same way as the outside world.

Me too

 2) Several open ports forwarded to not necessarily the same port on a
machine on the wired LAN (e.g. ports 80, 22, 443).

Me too

 3) WPA encryption on wireless.
 4) UPNP support (wired and wireless).

Me not

 5) NAT/DHCP support (wired and wireless).

Me too

 6) Prioritize all wired traffic over wireless.

Me too

 7) Prioritize all SIP (VoIP) traffic (via wired) over everything else.

Me too - QoS

Thanks, Greetings and nice Day/Evening
Michelle Konzack
Systemadministrator
24V Electronic Engineer
Tamay Dogan Network
Debian GNU/Linux Consultant


-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/
# Debian GNU/Linux Consultant #
Michelle Konzack   Apt. 917  ICQ #328449886
+49/177/935194750, rue de Soultz MSN LinuxMichi
+33/6/61925193 67100 Strasbourg/France   IRC #Debian (irc.icq.com)


signature.pgp
Description: Digital signature

Re: project: wired/wireless router

[Andrei Popescu]

On Tue, Jul 01, 2008 at 12:06:15PM -0400, H.S. wrote:
 Gregory Seidman wrote:

 Once I have the hardware, it's just a matter of figuring out how to set up
 the iptables for NAT routing and appropriate firewalling. Actually, since I
 don't have wireless needs at the moment, I can start working on it this
 weekend even before I receive the wireless card, assuming I have sufficient
 hubs (which I might).

 For iptables, you probably want to look into various packages that already 
 do this. Firestarter comes to mind, but I am not sure if it will measure up 
 to your two lans requirement, LAN and WLAN.

I found shorewall to be very powerfull, but not too hard to configure.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


signature.asc
Description: Digital signature

Re: project: wired/wireless router

[Alex Samad]

On Tue, Jul 01, 2008 at 06:42:17PM +0200, Michelle Konzack wrote:
 Hello Gregory,
 
 Am 2008-06-28 12:30:15, schrieb Gregory Seidman:
  I have a mini case with a VIA motherboard and CPU. It has an on-board
  ethernet port. I'd like to use it as a Linux firewall/NAT router to replace
  the (wired only) LinkSys I have now. It only has one PCI slot, but I want
  to be able to provide both wired and wireless LAN access. I'm looking for
  both hardware suggestions (i.e. a PCI card with both wired and wireless
  ethernet that is supported by the kernel in stable) and configuration help.
 
 Use a PCMCIA - MiniPCI Adaptor card
 
 I use one which have 8 MiniPCI Slots and use a VIA EPIA LN1EAG.
 
  My requirements are:
  
  1) Wireless is an independent subnet from the wired, and is firewalled from
 the wired LAN in the same way as the outside world.
 
 Me too
1/2 Me too, I have independent wireless but I treat it the same as the
LAN, I protect it by wpa/psk

 
  2) Several open ports forwarded to not necessarily the same port on a
 machine on the wired LAN (e.g. ports 80, 22, 443).
 
 Me too
open wireless - lan

 
  3) WPA encryption on wireless.
me too
  4) UPNP support (wired and wireless).
 
 Me not
me not
 
  5) NAT/DHCP support (wired and wireless).
 
 Me too
 
  6) Prioritize all wired traffic over wireless.
 
 Me too
me not
 
  7) Prioritize all SIP (VoIP) traffic (via wired) over everything else.
 
 Me too - QoS
me to SIP first but done at the firewal to the internet
 
 Thanks, Greetings and nice Day/Evening
 Michelle Konzack
 Systemadministrator
 24V Electronic Engineer
 Tamay Dogan Network
 Debian GNU/Linux Consultant
 
 
 -- 
 Linux-User #280138 with the Linux Counter, http://counter.li.org/
 # Debian GNU/Linux Consultant #
 Michelle Konzack   Apt. 917  ICQ #328449886
 +49/177/935194750, rue de Soultz MSN LinuxMichi
 +33/6/61925193 67100 Strasbourg/France   IRC #Debian (irc.icq.com)



-- 
Can't living with the bill means it won't become law.

- George W. Bush
06/13/2001
referring to the McCain-Kennedy patients' bill of rights


signature.asc
Description: Digital signature

Re: project: wired/wireless router

[j t]

On Mon, Jun 30, 2008 at 6:18 AM, Alex Samad [EMAIL PROTECTED] wrote:
 On Sun, Jun 29, 2008 at 11:41:58PM +0100, j t wrote:
 Having said that, I run openwrt on a couple of asus routers: one
 wl-hdd and one asus wl-500g and they have the same issue with regards

 there has been some changes to openwrt, the latest trunk version from
 the svn repo has b43 driver which lets you use 2.6 on the broadcom based
 routers, like asus + wrt5x's. the same is true for 2.4 but not with b43
 driver.

Apologies if this is starting to veer slightly offtopic.
Alex, are you running current openrt svn yourself on any asus boxes at
the moment? If so, what mode is your wireless running in (ap, sta,
...)?

Thanks, Jaime


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Alex Samad]

On Mon, Jun 30, 2008 at 11:59:34AM +0100, j t wrote:
 On Mon, Jun 30, 2008 at 6:18 AM, Alex Samad [EMAIL PROTECTED] wrote:
  On Sun, Jun 29, 2008 at 11:41:58PM +0100, j t wrote:
  Having said that, I run openwrt on a couple of asus routers: one
  wl-hdd and one asus wl-500g and they have the same issue with regards
 
  there has been some changes to openwrt, the latest trunk version from
  the svn repo has b43 driver which lets you use 2.6 on the broadcom based
  routers, like asus + wrt5x's. the same is true for 2.4 but not with b43
  driver.
 
 Apologies if this is starting to veer slightly offtopic.
 Alex, are you running current openrt svn yourself on any asus boxes at
 the moment? If so, what mode is your wireless running in (ap, sta,
 ...)?
yep OT

yes I have a old trunk SVN (about 3 months ago) on a asus 500Pg with
atheros card run in ap mode, i hear people have the same config but with
broadcom wireless (with b43).

I just built a asus 500w with latest svn trunk with broadcom wireless,
but because its a draft N the firmware will not run it :( about to use
the broadcom minipci wireless I got from the 500gP


 
 Thanks, Jaime
 
 
 -- 
 To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
 with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
 
 

-- 
You f--cking son of a bitch. I saw what you wrote. We're not going to forget 
this.

- George W. Bush
06/20/2005
To writer Al Hunt


signature.asc
Description: Digital signature

Re: project: wired/wireless router

[owens]

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 On 06/29/08 10:31, j t wrote:
 On Sun, Jun 29, 2008 at 4:43 AM, Ron Johnson [EMAIL PROTECTED]
 wrote:
 Adding all this extra equipment is going to cost you *much* more
 than buying a Linksys WRT56GL and reflashing it with the Tomato or
 DD-WRT firmware.

 OK, I've just spent 10 minutes searching for Linksys WRT56GL (a pair
 of donkey ears for me, please)

 I realize that googling returns 259 hits, but there's no wrt56gl on
 Linksys's support website, and dd-wrt doesn't have it in their list of
 supported hardware.

 Ron, is this just a typo?

 Yup.  Sorry. It's the WRT54GL.
 http://www.newegg.com/Product/Product.aspx?Item=N82E16833124190

 - --
 Ron Johnson, Jr.
 Jefferson LA  USA

 Kittens give Morbo gas.  In lighter news, the city of New New
 York is doomed.
 -BEGIN PGP SIGNATURE-
 Version: GnuPG v1.4.9 (GNU/Linux)

 iEYEARECAAYFAkhn3VEACgkQS9HxQb37XmftdgCbBSWTY9JqsVdBpgfTpnCf/uVI
 lO8AnjxarlvlyfBGfqaO64B/GHZIVKFU
 =9+S5
 -END PGP SIGNATURE-

Let me add my name to the list of supporters.  I originally installed a
D-Link but eventually replaced it with the 54GL.  I also use the companion
Linksys range extender.
Larry


 --
 To UNSUBSCRIBE, email to [EMAIL PROTECTED]
 with a subject of unsubscribe. Trouble? Contact
 [EMAIL PROTECTED]





-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[thveillon.debian]

[EMAIL PROTECTED] a écrit :

Let me add my name to the list of supporters.  I originally installed a
D-Link but eventually replaced it with the 54GL.  I also use the companion
Linksys range extender.
Larry




Looks like Netgear is about to bring us a nice toy :

The high-performance WGR614L, which is Works with Windows Vista 
certified, features a 240 MHz MIPS32 CPU core with 16 KB of instruction 
cache, 16 KB of data cache, 1 KB of pre-fetch cache, and incorporates 4 
MB of flash memory and 16 MB of RAM. In addition to an external 2 dBi 
antenna, the WGR614L integrates a second internal diversity antenna to 
provide enhanced performance and range. The router supports free open 
source Linux-based Tomato and DD-WRT firmware and will soon support 
OpenWRT.


Source : http://www.cyberciti.biz/tips/wgr614l-wireless-g-router.html

Seen on Slashdot too : 
http://mobile.slashdot.org/article.pl?sid=08/06/29/005233


Regards,

Tom


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[j t]

On Sun, Jun 29, 2008 at 4:43 AM, Ron Johnson [EMAIL PROTECTED] wrote:
 Adding all this extra equipment is going to cost you *much* more
 than buying a Linksys WRT56GL and reflashing it with the Tomato or
 DD-WRT firmware.

OK, I've just spent 10 minutes searching for Linksys WRT56GL (a pair
of donkey ears for me, please)

I realize that googling returns 259 hits, but there's no wrt56gl on
Linksys's support website, and dd-wrt doesn't have it in their list of
supported hardware.

Ron, is this just a typo?


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/29/08 10:31, j t wrote:
 On Sun, Jun 29, 2008 at 4:43 AM, Ron Johnson [EMAIL PROTECTED] wrote:
 Adding all this extra equipment is going to cost you *much* more
 than buying a Linksys WRT56GL and reflashing it with the Tomato or
 DD-WRT firmware.
 
 OK, I've just spent 10 minutes searching for Linksys WRT56GL (a pair
 of donkey ears for me, please)
 
 I realize that googling returns 259 hits, but there's no wrt56gl on
 Linksys's support website, and dd-wrt doesn't have it in their list of
 supported hardware.
 
 Ron, is this just a typo?

Yup.  Sorry. It's the WRT54GL.
http://www.newegg.com/Product/Product.aspx?Item=N82E16833124190

- --
Ron Johnson, Jr.
Jefferson LA  USA

Kittens give Morbo gas.  In lighter news, the city of New New
York is doomed.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhn3VEACgkQS9HxQb37XmftdgCbBSWTY9JqsVdBpgfTpnCf/uVI
lO8AnjxarlvlyfBGfqaO64B/GHZIVKFU
=9+S5
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Gregory Seidman]

On Sun, Jun 29, 2008 at 02:06:57PM -0500, Ron Johnson wrote:
 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1
 
 On 06/29/08 10:31, j t wrote:
  On Sun, Jun 29, 2008 at 4:43 AM, Ron Johnson [EMAIL PROTECTED] wrote:
  Adding all this extra equipment is going to cost you *much* more
  than buying a Linksys WRT56GL and reflashing it with the Tomato or
  DD-WRT firmware.
  
  OK, I've just spent 10 minutes searching for Linksys WRT56GL (a pair
  of donkey ears for me, please)
  
  I realize that googling returns 259 hits, but there's no wrt56gl on
  Linksys's support website, and dd-wrt doesn't have it in their list of
  supported hardware.
  
  Ron, is this just a typo?
 
 Yup.  Sorry. It's the WRT54GL.
 http://www.newegg.com/Product/Product.aspx?Item=N82E16833124190

I've heard of this. I was kind of hoping to do all this with Debian, but it
sounds like the WRT54GL is a better bet, but only if it can actually
firewall the wired subnet from the wireless subnet. A little bit of
googling hasn't given me the answer to that either way. Does anyone know?

 Ron Johnson, Jr.
--Greg


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[j t]

On Sun, Jun 29, 2008 at 9:38 PM, Gregory Seidman
[EMAIL PROTECTED] wrote:
 I've heard of this. I was kind of hoping to do all this with Debian, but it
 sounds like the WRT54GL is a better bet, but only if it can actually
 firewall the wired subnet from the wireless subnet. A little bit of
 googling hasn't given me the answer to that either way. Does anyone know?

I can't talk from personal experience with that particular router, but
according to:
http://wiki.openwrt.org/OpenWrtDocs/Hardware/Linksys/WRT54GL
it seems like unless you limit yourself to to a 2.4 kernel, you won't
have to worry about firewalling the wireless subnet (since you won't
have one!)

Having said that, I run openwrt on a couple of asus routers: one
wl-hdd and one asus wl-500g and they have the same issue with regards
to their wifi under a 2.6 kernel. I've been running white russian
(linux 2.4.30) on both of them for ages and they're perfectly stable
(current uptime measured in months). As it's a straight linux, you get
a full iptables to play with. When it's time to upgrade to 2.6, one
option for me (and possibly for you) is to plug a usb wireless stick
into the usb socket (which both of these devices possess).

Again, just my 0.02cents. HTH...


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Sam Kuper]

Greg,

I can confirm that the Buffalo WHR-HP-G54 is very stable under OpenWRT White
Russian, which gives you (yet) another option if you go down the path of
buying a new router/AP device.

Alternatively, if you're set on using your existing box as your router/AP,
why not use a USB Wi-Fi device if you're going to be occupying the sole PCI
slot with an ethernet card? USB Wi-Fi dongles are often cheaper than
Ethernet ones. (NB. If I've failed to notice that your box doesn't have USB,
then please disregard this comment.)

Sam

Re: project: wired/wireless router

[Gregory Seidman]

On Mon, Jun 30, 2008 at 12:26:28AM +0100, Sam Kuper wrote:
 I can confirm that the Buffalo WHR-HP-G54 is very stable under OpenWRT
 White Russian, which gives you (yet) another option if you go down the
 path of buying a new router/AP device.
 
 Alternatively, if you're set on using your existing box as your
 router/AP, why not use a USB Wi-Fi device if you're going to be occupying
 the sole PCI slot with an ethernet card? USB Wi-Fi dongles are often
 cheaper than Ethernet ones. (NB. If I've failed to notice that your box
 doesn't have USB, then please disregard this comment.)

I hadn't even considered USB WiFi. I like the idea. The existing box does
have USB, so that's workable. Now I just need to do a bit of research on
which USB WiFi devices are well supported by 2.6.18 (I think that's what's
in Debian stable).

The box has one PCI slot, several (three? four?) USB ports, and an on-board
wired ethernet port. I also have a wired ethernet PCI card lying around
somewhere and I think I have a suitable wired hub, so it's just a matter of
the USB WiFi. Comparing the certainty of the software being able to run
separate interfaces and route properly, not to mention the familiarity of
Debian, to the WRT stuff where you are restricted to a 2.4 kernel and I
don't feel certain it supports the configuration I need, it looks to me
like my existing box is a better approach.

Now I just need to learn iptables really well so I can configure it. Any
book suggestions?

 Sam
--Greg


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/29/08 17:41, j t wrote:
 On Sun, Jun 29, 2008 at 9:38 PM, Gregory Seidman
 [EMAIL PROTECTED] wrote:
 I've heard of this. I was kind of hoping to do all this with Debian, but it
 sounds like the WRT54GL is a better bet, but only if it can actually
 firewall the wired subnet from the wireless subnet. A little bit of
 googling hasn't given me the answer to that either way. Does anyone know?
 
 I can't talk from personal experience with that particular router, but
 according to:
 http://wiki.openwrt.org/OpenWrtDocs/Hardware/Linksys/WRT54GL
 it seems like unless you limit yourself to to a 2.4 kernel, you won't
 have to worry about firewalling the wireless subnet (since you won't
 have one!)
 
 Having said that, I run openwrt on a couple of asus routers: one
 wl-hdd and one asus wl-500g and they have the same issue with regards
 to their wifi under a 2.6 kernel. I've been running white russian
 (linux 2.4.30) on both of them for ages and they're perfectly stable
 (current uptime measured in months). As it's a straight linux, you get
 a full iptables to play with. When it's time to upgrade to 2.6, one
 option for me (and possibly for you) is to plug a usb wireless stick
 into the usb socket (which both of these devices possess).

Maybe the Tomato or DD-WRT firmware?

- --
Ron Johnson, Jr.
Jefferson LA  USA

Kittens give Morbo gas.  In lighter news, the city of New New
York is doomed.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhoQHwACgkQS9HxQb37XmfhYgCcDr9H+l32zTfKbBD07aFJ/sSE
qSUAoOupjmDwdOLKmOnNwQDeYoDkh1g/
=8Y6+
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Alex Samad]

On Sun, Jun 29, 2008 at 11:41:58PM +0100, j t wrote:
 On Sun, Jun 29, 2008 at 9:38 PM, Gregory Seidman
 [EMAIL PROTECTED] wrote:

[snip]

 Having said that, I run openwrt on a couple of asus routers: one
 wl-hdd and one asus wl-500g and they have the same issue with regards

there has been some changes to openwrt, the latest trunk version from
the svn repo has b43 driver which lets you use 2.6 on the broadcom based
routers, like asus + wrt5x's. the same is true for 2.4 but not with b43
driver.

there was issue with the Wl-500pg and seg faults, but again that is
fixed with 2.6

 to their wifi under a 2.6 kernel. I've been running white russian
 (linux 2.4.30) on both of them for ages and they're perfectly stable
 (current uptime measured in months). As it's a straight linux, you get
 a full iptables to play with. When it's time to upgrade to 2.6, one
 option for me (and possibly for you) is to plug a usb wireless stick
 into the usb socket (which both of these devices possess).
 
 Again, just my 0.02cents. HTH...
 
 
 -- 
 To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
 with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
 
 

-- 
Sic transit gloria mundi.
[So passes away the glory of this world.]
-- Thomas `a Kempis


signature.asc
Description: Digital signature

project: wired/wireless router

[Gregory Seidman]

I have a mini case with a VIA motherboard and CPU. It has an on-board
ethernet port. I'd like to use it as a Linux firewall/NAT router to replace
the (wired only) LinkSys I have now. It only has one PCI slot, but I want
to be able to provide both wired and wireless LAN access. I'm looking for
both hardware suggestions (i.e. a PCI card with both wired and wireless
ethernet that is supported by the kernel in stable) and configuration help.

My requirements are:

1) Wireless is an independent subnet from the wired, and is firewalled from
   the wired LAN in the same way as the outside world.

2) Several open ports forwarded to not necessarily the same port on a
   machine on the wired LAN (e.g. ports 80, 22, 443).

3) WPA encryption on wireless.

4) UPNP support (wired and wireless).

5) NAT/DHCP support (wired and wireless).

6) Prioritize all wired traffic over wireless.

7) Prioritize all SIP (VoIP) traffic (via wired) over everything else.

Basically, I want my VoIP line to get the best bandwidth available on the
external connection, wired to get priority over wireless, and wireless to
be firewalled from the external interface (no forwarded ports at all,
except UPNP), but wired firewalled from both wireless and external
interfaces (with some forwarded ports). I don't feel the need to run my own
DNS, though, just routing.

--Greg


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[oneman]

On 28-jun-2008, at 18:30, Gregory Seidman wrote:


I have a mini case with a VIA motherboard and CPU. It has an on-board
ethernet port. I'd like to use it as a Linux firewall/NAT router to  
replace
the (wired only) LinkSys I have now. It only has one PCI slot, but  
I want
to be able to provide both wired and wireless LAN access. I'm  
looking for
both hardware suggestions (i.e. a PCI card with both wired and  
wireless
ethernet that is supported by the kernel in stable) and  
configuration help.



Maybe not the answer that you were looking for. But seeing what your  
requirements are, I'd simply add a two or four port ethernet card to  
the case and plug a wireless bridge into one of the ports. This would  
be a hassle free setup and give you all the options you need without  
having to hunt down that probably rare or non existent card with both  
wireless and wired. This would also give you the future proof  
posibility to add another wireless bridge when a new and better  
standard is hitting the market. (I love to have both 802.11b and  
802.11n bridges on my network, so I can have the 802.11n bridge  
running at its fastest setting).







Groet,


Peter Teunissen


---
mrwhite:~ oneman$ man woman
No manual entry for woman


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Nick Lidakis]

oneman wrote:


On 28-jun-2008, at 18:30, Gregory Seidman wrote:


I have a mini case with a VIA motherboard and CPU. It has an on-board
ethernet port. I'd like to use it as a Linux firewall/NAT router to 
replace

the (wired only) LinkSys I have now. It only has one PCI slot, but I want
to be able to provide both wired and wireless LAN access. I'm looking for
both hardware suggestions (i.e. a PCI card with both wired and wireless
ethernet that is supported by the kernel in stable) and configuration 
help.



Maybe not the answer that you were looking for. But seeing what your 
requirements are, I'd simply add a two or four port ethernet card to the 
case and plug a wireless bridge into one of the ports. This would be a 
hassle free setup and give you all the options you need without having 
to hunt down that probably rare or non existent card with both wireless 
and wired. This would also give you the future proof posibility to add 
another wireless bridge when a new and better standard is hitting the 
market. (I love to have both 802.11b and 802.11n bridges on my network, 
so I can have the 802.11n bridge running at its fastest setting).




I had done something similar with my monowall firewall running on a PC 
Engines WRAP board. Adding a mini-PCI wireless card, with its associated 
cables and antennas, would have been a big expense.  It was much cheaper 
to pick up a used Linksys WRT54G ($20 from Craigslist) and use it as a 
dedicated wireless AP. You can also use the the remaining  3 ethernet 
ports as you would a regular switch for the wired devices on your LAN.



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Gregory Seidman]

On Sat, Jun 28, 2008 at 10:04:52PM +0200, oneman wrote:
 On 28-jun-2008, at 18:30, Gregory Seidman wrote:

 I have a mini case with a VIA motherboard and CPU. It has an on-board
 ethernet port. I'd like to use it as a Linux firewall/NAT router to
 replace the (wired only) LinkSys I have now. It only has one PCI slot,
 but I want to be able to provide both wired and wireless LAN access. I'm
 looking for both hardware suggestions (i.e. a PCI card with both wired
 and  wireless ethernet that is supported by the kernel in stable) and
 configuration help.

 Maybe not the answer that you were looking for. But seeing what your  
 requirements are, I'd simply add a two or four port ethernet card to the 
 case and plug a wireless bridge into one of the ports. This would be a 
 hassle free setup and give you all the options you need without having to 
 hunt down that probably rare or non existent card with both wireless and 
 wired. This would also give you the future proof posibility to add 
 another wireless bridge when a new and better standard is hitting the 
 market. (I love to have both 802.11b and 802.11n bridges on my network, 
 so I can have the 802.11n bridge running at its fastest setting).

Good advice. Suggestions on make/model for a multiport card supported by
the stable distribution's kernel?

 Groet,
 Peter Teunissen
--Greg


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/28/08 22:05, Gregory Seidman wrote:
 On Sat, Jun 28, 2008 at 10:04:52PM +0200, oneman wrote:
 On 28-jun-2008, at 18:30, Gregory Seidman wrote:

 I have a mini case with a VIA motherboard and CPU. It has an on-board
 ethernet port. I'd like to use it as a Linux firewall/NAT router to
 replace the (wired only) LinkSys I have now. It only has one PCI slot,
 but I want to be able to provide both wired and wireless LAN access. I'm
 looking for both hardware suggestions (i.e. a PCI card with both wired
 and  wireless ethernet that is supported by the kernel in stable) and
 configuration help.

Adding all this extra equipment is going to cost you *much* more
than buying a Linksys WRT56GL and reflashing it with the Tomato or
DD-WRT firmware.

 Maybe not the answer that you were looking for. But seeing what your  
 requirements are, I'd simply add a two or four port ethernet card to the 
 case and plug a wireless bridge into one of the ports. This would be a 
 hassle free setup and give you all the options you need without having to 
 hunt down that probably rare or non existent card with both wireless and 
 wired. This would also give you the future proof posibility to add 
 another wireless bridge when a new and better standard is hitting the 
 market. (I love to have both 802.11b and 802.11n bridges on my network, 
 so I can have the 802.11n bridge running at its fastest setting).
 
 Good advice. Suggestions on make/model for a multiport card supported by
 the stable distribution's kernel?

Intel cards have been well-supported for ages.

- --
Ron Johnson, Jr.
Jefferson LA  USA

Kittens give Morbo gas.  In lighter news, the city of New New
York is doomed.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhnBL4ACgkQS9HxQb37XmdUTQCffJfJqGopd8pNJx9oO5lYXS20
pIgAnRa6/hD8upgVpWHP4jZ+HLvWbUMl
=7rWQ
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[H.S.]

Nick Lidakis wrote:

cables and antennas, would have been a big expense.  It was much cheaper 
to pick up a used Linksys WRT54G ($20 from Craigslist) and use it as a 


Yup, going this way is going to be cheaper, no doubt. However, if the OP 
goes the way he is thinking about (adding a multiport NIC and a wireless 
bridge or an additional wireless card), that will be an excellent 
learning experience. I have an old machine running as a router this way. 
It has two NICs and a wireless PCI card working as an access point 
(D-Link, can look up the model if anyone wants, but it is supported by 
madwifi driver). One of the NICs is connected to my ADSL modem, the 
other to a LAN switch. My wired LAN is 192.168.0.x, my wireless LAN is 
192.168.5.0 and I have iptables running with my custom rules controlling 
both the network with access the internet via the ppp0 connection made 
through the ADSL modem.


Now, I also have the WRT-54GL which has been flashed with the open 
source firmware.


I would say the consumer router choice (e.g. WRT-54G(L)) is the easiest 
to implement. The other choice, making a computer as a router, is quite 
involved but interesting (could be made very streamlined using a 
firewall machine oriented Linux Distro) and serves as an excellent 
learning project (networking and iptables). Moreover, with the latter 
choice, one has very fine grained control over the routing and filtering 
of network packets.


My 2 cents,
either way, Good luck to the OP!


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[Celejar]

On Sun, 29 Jun 2008 00:50:51 -0400
H.S. [EMAIL PROTECTED] wrote:

...

 I would say the consumer router choice (e.g. WRT-54G(L)) is the easiest 
 to implement. The other choice, making a computer as a router, is quite 
 involved but interesting (could be made very streamlined using a 
 firewall machine oriented Linux Distro) and serves as an excellent 
 learning project (networking and iptables). Moreover, with the latter 
 choice, one has very fine grained control over the routing and filtering 
 of network packets.

I'm considering these options, too.  IIUC, another argument in favor of
the former option is the power draw; isn't it much lower for a SOHO
router than for a full blown computer running as a router?

Celejar
--
mailmin.sourceforge.net - remote access via secure (OpenPGP) email
ssuds.sourceforge.net - A Simple Sudoku Solver and Generator


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: project: wired/wireless router

[H.S.]

Celejar wrote:


I'm considering these options, too.  IIUC, another argument in favor of
the former option is the power draw; isn't it much lower for a SOHO
router than for a full blown computer running as a router?


Yes, you are correct. Plus the form factor, no upgrades, no keyboard, 
etc. If one wants is just a simple router with plug-and-go 
functionality, a consumer SOHO router is the way to do.


-HS


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]