[Gllug] [OT] Non Nat dsl router advice?
Chris Bell
chrisbell at overview.demon.co.uk
Mon Oct 18 20:55:56 UTC 2004
On Mon 18 Oct, Ken Smith wrote:
>
> Andy, I came across a D-Link ADSL modem a week or so ago that might suit
> you. The device connected to its Ethernet side gets the public IP address.
> No NAT or firewall or anything. So you could put a firewall Linux box there
> with GNUGK on it. I don't recall the type number but it will be on the
> D-Link site. I too have battled with H323 and its quite NAT hostile.
>
> Ken - in nearby Riddlesdown
I heard some time ago that an ADSL modem used with a standard BT line
should have an IP address, but that it did not need to be a routable
address, so the visible IP address can be allocated to the (firewall?) box
behind it. I have not tried to do that yet, but it is probably possible to
even have a firewall between the ADSL modem and the box which has the
official IP address, see the HOWTO on Bridge + Firewall + DSL Mini-HOWTO:
Bridging, Firewalls, and DSL connections
http://www.tldp.org/HOWTO/Bridge+Firewall+DSL-2.html
It goes into great detail about what is required to make a transparent
bridge with firewall capabilities but without any visible IP address, but it
did not seem to match the information I found with Debian. I eventually
installed the package "bridge-utils" and found that I just had to enable it,
everything else was done! It is very difficult to break a firewall if you
can't see it.
I see that there is another package in Debian Sarge (testing) br2684ctl
for configuruing RFC2684 ATM/Ethernet bridging.
--
Chris Bell
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list