-   Linux - Software (
-   -   Help to prevent a divorce!!! (

Paulsuk 11-19-2005 05:05 AM

Help to prevent a divorce!!! (Internet access /NAT etc)

Oh boy am I getting some stick - not altogether unjustified either!

Ok, the setup WAS as follows:-

Broadband connection to a wireless router / 100Mb Switch.

2 Laptops connecting over wireless directly to the internet (router performing NAT)

1 Linux server (LFS 6.0) running SQUID, SAMBA, Dan's Guardian, Postfix, ClamAV and HavP. Also providing DHCP and DNS services.

2 Desktop PCs connecting over wireless to SQUID. (The kids).

All this worked fine - then we moved house.

We now have cable, so we can no longer use the wireless router for broadband access. I have connected the Linux box to the cable modem and it seems to be working OK. Also, if I connect the laptop directly to the cable modem (as I have to post this), it works fine - so I assume the internet link itself is fine.

Now for the problem.....

I need to get the Linux box working as a busybox. I can connect to the internet via SQUID etc OK, BUT I am having problems with a lot of the sites we adults use - mainly those involving https (internet banking, e-bay etc). It is either extremely slow (to the point connections time out) or gets blocked. This slowness also seems to depend on the site accessed (although not neccessarily the protocol used).

I would like to get the linux box running NAT so the laptops can connect directly, but when I try following the how-to's I can find, not only doesn't it work, but access to SAMBA, DHCP, etc etc is blocked.

I have set up packet filtering and stuff on other systems (most noteably NetWare running BorderManager) but that was some time ago and I can't get my head around IPTABLES at all.

Let me know if any other details are required.....


I wasn't sure if this should be posted in the networking forum, apologies if I misjudged - let me know and I'll repost there (I didn't want to cross-post!!)

Thanks in advance for any help.


comprookie2000 11-19-2005 08:31 AM

I do it like this;
internet -> Broadband Modem -> gentoo web server + router + gateway -> switch -> wireless access point. Plus the switch is connected to a couple of desktops. The gentoo box also is a dhcp server.
Some links;
here is my iptables stuff;
I may have changed a few things, not sure. Need anything let me know. Most should work on LFS.

Paulsuk 11-19-2005 03:57 PM

Thanks for that :)

Only thing is, your final link seems to be broken :(


rnicolson 11-19-2005 05:37 PM

This may seem like kind of a dumb question but why can't your wireless router connect to your cable provider so you can have the same setup as before? Most wireless routers I know connect fine to any cable connection.

RedShirt 11-19-2005 09:12 PM

Unless they need you to register a mac address, in which case, you have to add one more step, cloning the mac address from the tower you did register, then it should work just fine. But as you say, I agree, it should work on cable just fine. It isn't like there are dsl routers and cable routers... there are ethernet routers. No matter which kind of modem you have(cable/dsl) you can use a router just the same.

Paulsuk 11-20-2005 02:24 AM

Thanks for the responses - I've now got it working (IPTables was the issue!!)

To answer the question about using the router, my wireless router was an ADSL unit with an RJ11 connection to the broadband filter. The cable modem connects vi a coax connection to the feed from NTL, so I don't see how I could achive what you are suggesting...

Anyway, all's well that ends well.


All times are GMT -5. The time now is 03:46 PM.