On Mon, Apr 17, 2000 at 10:37:04AM -0600, Daniel Woods wrote:
->
-> > Assuming your ISP is providing you with only a single IP address, you want
-> > something along these lines:
-> >
-> > +--------+
-> > | Comp B |---\ +---+
-> > +--------+ \---| H | +--------+ +-------+
-> > | u |------| Comp A |-----| Modem |
-> > +--------+ /---| b | +--------+ +-------+
-> > | Comp C |---/ +---+
-> > +--------+
-> >
-> > Comp A is your Linux box. The network card in A connected to your
-> > cable/xDSL modem is assigned the external address supplied by your ISP
-> > (static or DHCP). You'll need to use ipchains on this box so that it acts
-> > as a gateway for the LAN.
-> >
-> > Comp B and Comp C are you Windows or ther Linux boxes.
->
-> I have not set this up yet, however I don't have a "Comp A" (yet).
-> Right now Comp B (mdk6.1 - development machine) and Comp C (win98 - kids
-> machine) will be hooked up to my new 100 Mps *switch*, and the modem
-> downloads at up to 7 Mps (2 Mps upload - so they say).
->
-> What is the recommended minimum speed/memory for Comp A ?
-> Is a P75/90 with 64 MB enough ? Will this affect the speed noticed
-> by Comp B and C when using the internet ? Does any of this not matter
-> as long as Comp A's network card is at least 10 Mps ?
Overkill, actually. I use a 486/dx66 with 16 MB of physical memory. You
might be able to get away with a 386/25, I haven't tried it.
->
-> If I wanted to have a web server running (or ftp, mail, news), can
-> it be on Comp B instead of Comp A ? I know the ISPs don't like this.
-> I take it that Comp A would have to have some kind of proxy server
-> to forward the request to the private web server on Comp B.
-> If I started to get many web hits, would the speed and memory of
-> Comp A affect users, or is it affected by the speed of Comp B ?
-> Does opening up Comp B's port 80 (web) create a security risk
-> (or is it if you use a proxy server - recommendations) ?
Think security. Stuff the outside world will see should be on the firewall
only. The fewer open ports on the firewall, the more secure it it. And if
the outside world can see a service, someone will try to crack it.
Also why route data across your internal network if you don't need
to?
Unless you are on a T1, any old Pentium class computer should do it.
--
-- C^2
No windows were crashed in the making of this email.
Looking for fine software and/or web pages?
http://w3.trib.com/~ccurley
