I have two cable modem connections coming into my home office and have a
dsl line on the way. Currently one of the cable lines is connected to a
single machine which is not on the lan. What I'd like to do, especially
when the dsl comes in is to set up a box with lrp to share all three
broadband connections with the lan and have a separate dmz network setup for
a box I can get to from the outside world. I'd also like to do some sort of
rudimentary load balancing (round robin would suffice.)
Hmm...define more about what you want for load-balancing. Are you wanting
to balance internal masqueraded machines internet access, inbound access to
servers (e-mail, web, c), or both?
I have an old Pentim (166Mhz I believe) with 20MB of RAM and three ISA
slots that I'd like to use for this. (assuming I can get an ISA multiport
card). This brings me to question 1) Will this box be able to handle that
many interfaces (only 3-4 users and no public servers running)?
The P166 is plenty fast enough, but with the system you describe, I'd want
something with a PCI bus, and several good PCI NIC's (or a multi-port, like
the DFE-570TX discussed in a seperate thread). You might also want a bit
more memory (depending on exactly how many accessory packages you want to
run)
Failing that I have a PII 300 with 64MB and 5 PCI slots I can use in a
pinch...
This would be better (PCI slots), althouh unless you're running VPN, the CPU
is overkill, and you'll almost never fill up 64 Meg of RAM...
Second question: How hard is it to configure lrp for this type of setup?
Pretty complicated, although someone was saying one of the add-on firewall
packages supports multiple external interfaces. You'll probably have to
become quite familiar with the kernel's advanced routing features, and
ipchains/iptables rules, regardless.
What distributions do you all recommend
If I'm remembering correctly, and one of the add-on firewall scripts will
support multiple external interfaces (in a way that matches what you want to
do with load-balancing), use whatever disto that script recommends. If
you're going to be coding your own firewall/routing rules, it probably
doesn't matter which disto you pick, although Oxygen and LRP 2.9.8 try to do
less setup for you, so they may be easier to modify than Dachstein, which
tries to do everything for you.
and how do I go about burning my setup to a ROM (I don't want a hard
disk in whatever box I set this up on.)?
Well, there are several options. If you're OK with a flash disk, you can
use one of the IDE Flash drives, or a compact-Flash card and a CF to IDE
adaptor. You can also use something like the M-Systems Disk-On-Chip (you
can get ISA/PCI plug in cards that support DOC parts). If you actually want
ROM's (ie something that can't be overwritten in-system), you'll have to
start looking around at the various embedded vendors...I think you can get
ISA (maybe PCI) cards with a bunch of ROM sockets...make sure you can talk
to the thing with linux before you buy one, however, or you'll be writing
kernel driver code. Correctly formatting your romdisk image, breaking the
image into pieces, and burning each OTP ROM is left as an excersize for the
reader :-)
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
