Re: IPFWADM and DIALD

Giuseppe Vacanti 4 Oct 1996 18:09:24 -0000

Hi,

I'm the diald maintainer. That doesn't mean I can give you any useful
advice :-)


Sorry I didn't reply to you last message, but I'm not particularly
skilled in networking (I maintain diald only because when I installed
Debian the first time diald was not part of the distribution) and I
was hoping somebody more knowledgeable would.

I'm not sure I understood your problem. But let me describe my set up,
that appears to be similar to yours.

Those who understand networking better than I, please forgive me and
correct me.


        (server)
       ----------------      ------------
       |              |      |          |
       |              |      |          |
Net ---|       ethernet------|ethernet  |
     ^ |       192.168.1.1   |192.168.1.2
     | |              |      |          |
     | ----------------      |          |
     |                       ------------
     |                                   
     |                                   
  diald: SLIP on my real IP number (or any number if you have dynamic IP).

If I do ifconfig on my server, this is what I see:

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Bcast:127.255.255.255  Mask:255.0.0.0
          UP BROADCAST LOOPBACK RUNNING  MTU:3584  Metric:1
          RX packets:1553 errors:0 dropped:0 overruns:0
          TX packets:1553 errors:0 dropped:0 overruns:0

eth0      Link encap:10Mbps Ethernet  HWaddr 00:20:18:31:29:0A
          inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:72456 errors:0 dropped:0 overruns:0
          TX packets:71939 errors:0 dropped:0 overruns:0
          Interrupt:9 Base address:0x220 

sl0       Link encap:Serial Line IP  
          inet addr:194.109.14.67  P-t-P:194.109.2.10  Mask:255.255.255.0
          UP POINTOPOINT RUNNING  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0
          TX packets:2245 errors:0 dropped:0 overruns:0


My IP number is 194.109.14.67. In my diald.options file I have:

reroute
mode ppp
local 194.109.14.67
remote 194.109.2.10

The box on the internal network has 192.168.1.1 as its gateway.

On the box running diald I also issue these two commands:

ipfwadm -F -a masquerade -S 192.168.1.0/24 -D 0.0.0.0/0 -V 192.168.1.1
ipfwadm -F -p deny

This set up works: I can certainly telnet and ftp from the second box,
via the first one, and I always appear as if I'm coming from the
server.

You cannot instruct diald to give its SLIP (the PPP) interface the IP
number 192.168.1.1 (if I interpret you sketch correctly). Packets will
be sent out, however no router will ever route traffic for networks
in the 192.168.x class.

I don't know if you can test this set up without going live. You can
probably split you network in two halves that can talk to each other
via a firewall ...

Giuseppe

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]

Re: IPFWADM and DIALD

Reply via email to