Kevin: I am working on similar. It scares me that you indicate "OPT/" as the current version (0.4.2)is not supposed to need the "mkopt" stuff. I setup my 256mb CF card with a 64MB "/" and a 192MB "/mnt/kd". I do not mount a separate "/OPT" partition. I end up with an empty /OPT folder after the install. Maybe this is what I did wrong?
I have a Via 1GHz fanless machine. It has 256MB RAM and 3 NICs. Seems most of the folks playing with Astlinux are dealing with 266MHz machines with very modest memory and such. While I do not consider my machine to be any kind of barn burner, it is quite a bit more capable than what most seem to be using. So I would think that my setup would certainly have the horsepower needed to what I want to do. What I want it to do are as follows. 1) TFTP (provision phones) 2) FTP (provision phones) 3) Caching DNS (support 10 LAN user access to WAN) 4) DHCP (provision phones and support 10 LAN user access to WAN) 5) Firewall w/DMZ (DMZ = WiFi hotspot which requires HTTP and maybe RADIUS) and VPN (never more than 1 or 2 remote connections, 1 will be from my dymnamic IP to my office static IP, the other will be mainly daughter from college dynamic IP trying to register with my system) 6) Asterisk (very basic requirements with 10 SIP phones, simple three level IVR with only 6 branches, never more than 4 active calls) So far I have the following working. 1) TFTP (it is doing a very nice job of provisioning my Cisco 7960 phones, still trying to get it to work with the Grandstreams but I knew they would be a problem) 2) FTP ( with some odd PHP errors I have not figured out yet, but my phones provision ) 3) Caching DNS (works great) 4) DHCP (works great) 5) Asterisk (works great) The included DnsMasq service seems to be a fairly robust DHCP and caching DNS. Do not make the mistake I made and waste two days trying to figure out how to get it to run BIND and DHCPD. In the end, I messed it up so bad I had to reinstall and start again (twice - I am a slow learner). Once I figured out dnsmasq, I realized it was a very capable substitute. But on the firewall issue, I am stumped. I have mangled the settings provided for in rc.conf every way I can think of. I have messed a bit (read this as messed up!) with the astfw script. I have Googled countless documents and not yet found what I am looking for. The setup I want to do would be a snap in m0n0wal or pfsense. But so far, no joy getting it to work in Astlinux. Part of the problem may be the number of ports that need to be open to the outside world to support SIP. The settings in rc.conf will not allow you to set a "range of ports" like "u8000-u10000". Instead, it looks to me like you actually have to declare all 2000 individual ports. But this may just be "lack of documentation" and I may yet figure out how to delare a port range. So far, no joy getting EXTIF to do DHCP client against my cable provider. Interesting thing is it will pick up DHCP against another Linux server I have. But when I connect the EXTIF directly to the Toshiba cable modem (on COX Cable), it seems unable to get an address allocated. This is probably something stupid I have done. Am still working on it. Once I figure out that one, I also have to figure out how to get it to register with DynDNS.org so my SIP provider can find me to ring my DID. I can see in the scripts that iptables is setting up "mascarade" so it is indeed doing NAT. It looks likt it even will do 1:1 NAT though this is beyond my requirement. I am not a serious programmer so much of the script looks like "greek" to me but I can sort of figure out some of what is going on. In any case, I am activly working on it and if I come up with a working config, I will post it here as a "how to". Hope you will do the same. I am not so proud that I would not gladly take advantage of someone elses breakthrough if it saves me a few days of going down the wrong path. G.Hendershot -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kevin Kiely Sent: Monday, August 07, 2006 6:50 PM To: 'Discussion of AstLinux - Asterisk on Compact Flash' Subject: [Astlinux-users] OPENVPN remote access needed I have an application that I would like to replace a SOHO environment router with ASTLinux. The current application is that a desktop PC is on the network and is accessed via a notebook (XP) windows remote desktop externally. Has anyone been successful in using OPT/Openvpn with astlinux? I get some errors pertaining to the creation of the /dev/tun file? Any way to do NAT forwarding with ASTLINUX? Thanks, Kevin Kiely _______________________________________________ Astlinux-users mailing list [email protected] http://lists.kriscompanies.com/mailman/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED] _______________________________________________ Astlinux-users mailing list [email protected] http://lists.kriscompanies.com/mailman/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
