On 12/5/10 2:18 PM, peasth...@shaw.ca wrote: > Folk, > > Linux router Dalton is described and illustrated here. > http://carnot.yi.org/NetworksPage.html > http://carnot.yi.org/NetworkExtant.jpg > > On Dalton, eth0 is the interface to the internet. Cantor is masqueraded via > eth1 in the diagram, LocLCS106703196 in the configuration. There is also a > modem with ppp0 for masquerading another machine. In > /etc/shorewall/interfaces, > should such a ppp interface have the same options as eth1(<Loc+)? > Specifically > this. > loc Loc+ detect tcpflags,nosmurfs,routeback > loc ppp+ detect tcpflags,nosmurfs,routeback > Any other options recommended for masquerading via ppp?
Okay -- let's review the available options that you have not specified: arp_filter, arp_ignore, proxyarp: ppp interfaces don't use ARP blacklist: Do you want to blacklist to/from addresses on this interface? bridge: Clearly not appropriate as ppp devices are not bridges dhcp: Clearly not appropriate (DHCP isn't used on PPP interfaces) logmartians and routefilter: I think that these are always appropriate maclist: L2 (MAC) addresses aren't used on PPP links required and optional: Is it either? soureroute: Only hackers use that option upnp and upnpclient: Do you need either? wait: Do you need it? -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ What happens now with your Lotus Notes apps - do you make another costly upgrade, or settle for being marooned without product support? Time to move off Lotus Notes and onto the cloud with Force.com, apps are easier to build, use, and manage than apps on traditional platforms. Sign up for the Lotus Notes Migration Kit to learn more. http://p.sf.net/sfu/salesforce-d2d
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
