Thanks for responding. Michael Weickel - iQom Business wrote: > Normally, when a provider gives you a router in bridge mode, there is no > need to use pppoe due to the fact, that there is no need to dial, but to > connect static with a given ip address. Your neigbor will me the provider > edge instead of the customer premises equipment. >
But it won't be static. I have to get his negotiation for the IP address for that interface: "Basically you start pppoe, I give you the username and password for it, and then I set the router to passthrough modem mode, and you initiate the PPPoE session directly with my LNS back here. You'll get a dynamic IP on the dsl side (which is normal) and then you just set up your static routes in the linux box as normal. My LNS automatically routes your traffic to the IP it randomly assigns to the DSL link. Once we verify that IP6CP is up, I can assign you a /48 and you can rock out" with that however you want. > When you do pppoe, your wan interface should be ppp0 instead of eth0, but is > has to be connected to an eth interface. > That is just an alias change in modprobe.conf, correct? > If there is no ip address configured on your wan interface, it is - from my > side - not really possible to route or to establish a default route. > See quote from my ISP, above. > I am working with a internet provider in Europe and I do not know any > European country where you get a provier´s bridge configured router and have > a need to configure another (own) router with pppoe client. > > If it is really as you say, you will (normally) get an ip address assigned > to your ppp interface. In this case shorewall has to know it. For example > > net ppp0 > > This is an example for your Shorewall/interfaces. > I got that for the interfaces file. > > -----Ursprüngliche Nachricht----- > Von: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Im Auftrag von Robert > Moskowitz > Gesendet: Mittwoch, 2. Juli 2008 21:24 > An: Shorewall Users > Betreff: [Shorewall-users] Setting up shorewall and PPPoE > > I am setting up to migrate to providing my own PPPoE router, and I am > starting (information wise) pretty much from scratch. > > My ISP says that once he configs the ADSL router to bridge mode, my > router (running Centos 5.2 btw) will need to use pppoe to connect and > get the IPv4 address block and IPv6 prefix. I am NOT suppose to > configure any addresses for the ethernet interface connected to the > bridge, those addresses (v4 and v6) will be assigned during the PPPoE > negotiation. > > Further I am going to set up static IPv4 routes for the internal interface. > > Shorewall's part in all of this is to set up the IPv4 iptables to > protect the router from connections and to stop basic nonsense attacks. > IPv6 will be done separately. > > The lack of an IP address on the pppoe interface should not be a > problem, correct? The interface file just refers to the inferface name > (e.g.eth0) and I can stay away from IP addresses in the rules. > > > > ------------------------------------------------------------------------- > Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! > Studies have shown that voting for your favorite open source project, > along with a healthy diet, reduces your potential for chronic lameness > and boredom. Vote Now at http://www.sourceforge.net/community/cca08 > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > ------------------------------------------------------------------------- > Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! > Studies have shown that voting for your favorite open source project, > along with a healthy diet, reduces your potential for chronic lameness > and boredom. Vote Now at http://www.sourceforge.net/community/cca08 > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
