> In principle, a router *could* do all of this. But I know of no > off-the-shelf Linux applications that actually *would* do all of this, > either on LEAF or on a full-size-distro Linux router. Because it is such a > security nightmare, I expect nobody has even thought of developing > something like this for a router ... though, of course, there could easily > be something I am unfamiliar with, but that somebody else will suggest, > based on my restatement of your requirements. >
Thanks for your reply, I understand. I don't speak english very well, but read enough well. Please see a http://www.nomadix.com/products/hsg.asp have a solution with Hardware but inside a Linux embedded.
Your software solution is Dynamic Address Translation. A Dynamic NAT.
It's possible to reply this solution?
Interesting. The site is not rich in technical detail, and it makes many references to patented solutions. FOr example:
"Nomadix’ patented Dynamic Address Translation™ (DAT™) provides transparent broadband network connectivity as users travel from different locations (e.g. hotels and coffee shops) without requiring any changes to their computer’s settings or special client-side software."
"Nomadix has developed its patent-pending iNAT™ feature that creates an intelligent mapping of IP Addresses and their associated VPN tunnels allowing multiple tunnels to be established to same VPN server creating a seamless connection for all the users at the Public-access location."
(These quotes include three Trademark symbols; I don't know if they will make it through e-mailing.)
From reading the site over quickly, I would guess the product actually implements something like what I outlined in my prior message. Tough to do, but not impossible ... just requiring some careful work at the OS and application levels. Since it provides for billing, it must include some step that requires the client to identify him/herself ... for example, the initial connection might be restricted to a Web site where the user enters identifying information, including arranging to pay for time via a credit card or whatever (I worked on a similar, abandoned service a couple of years ago - this part isn't hard).
One correction to what you wrote: this is NOT an Embedded Linux product. The FAQ says they use VxWorks/Tornado from Wind River Systems as their OS. So while I cannot say how effective this implementation is, I can say that it is not a *Linux* implementation of the idea.
Reading over the site leaves me wondering about a couple of loose ends. For example, given the widespread use of 192.168.1.0/24 with NAT'd LANs, this system would have to have a way to deal with two simultaneous clients that had the same IP address. MAC address can distinguish them, of course, but that's one more tricky thing to be handled in the "DAT" mapping.
So, to summarize: What you want can be done. I still know of no Linux software that will do it, either on LEAF or on a full-size Linux distro. It it hard enough that I doubt anyone will take it on as a hobby. Vague patent claims by Nomadix make it even more doubtful that someone will develop a Linux version without a revenue stream sufficient to support attorney's fees.
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
