Router under Linux

What is all need steps to configure Red Hat 6.0 to work as
one router for connect one LAN to ISP via dial-up connections.
IP address is dynamic.
 
globalvAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

AlexanderCommented:
The only way and the most easy to do that is to do an ip masquerading.
The LAN computer can access internet (ftp, www, etc..) but cannot be accessed from the internet.

I cannot write here 5 howtos to answer you. But i can give you the links needed :

To learn about your modem installation :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/Modem-HOWTO.html

To learn about isp access :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/mini/ISP-Connectivity.html
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/ISP-Hookup-HOWTO.html

To learn about ip-masquerade :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/IP-Masquerade-HOWTO.html

and if needed, to learn about firewalls :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/Firewall-HOWTO.html
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/IPCHAINS-HOWTO.html
0
AlexanderCommented:
if you want to see the list of all HOWTO's, take a look at :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/
0
globalvAuthor Commented:
This is not answer on my question.  I know
for how-to documentation. But documentation
is not clear for understanding. My question is
only for router configuring, not for modems,
network cards and etc...  My ppp connection work,
and LAN work, but I can't configure router for
this machine.
Connection to my LAN must by in and out,
dependent of requirements of these systems.
0
AlexanderCommented:
If you have a LAN wiht IPs like 192.168.X.X or other private network addres and if you have an ip-masquerade "router" (it's the only way to provide internet addres to a local network with that kind of address) you'll never have a "in" connection possible. I mean that, for example, no one of your LAN "internal" computers can start a ftp server that can be accessed from internet : it is simply not possible ! But, of course, all the computers inside can access the internet without any problem !

If you can obtain a valid ip for each one of your LAN internal computers, so it will be possible and the ip-masquerade will not be needed.

Those howto's are very clear and easy to understand, so if you want to do an ip-masquerade router, configure it like described in :
http://uhp.u-nancy.fr/linux/linuxdoc/HOWTO/IP-Masquerade-HOWTO.html 

if you have a way to obtain valid ips for each one of your local computers (not recommended and i think it is not your case because you're using a DHCP connection to internet) the only thing that you have to do is to compile the kernel with the ip-routing options.

Every thing that i know about linux i've learned it reading howto's !
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lugnut1221Commented:
heres a very straight forward solution.

type linuxconf

go to Config/Networking/Client Tasks/ Routing and Gateways/Defaults.  

Now check the enable routing.  and accept the changes.  almost done now

in your /etc/rc.d/rc.local file add the following lines exactly how you see them.

/sbin/ipchains -P forward DENY
/sbin/ipchains  -A forward -s 10.10.10.0/24 -j MASQ

The 10.10.10.0 is my internal network. for example the Linux router will have a real IP from the ISP eventhough its dynamic but your internal computers will have Static IPs assigned by you.  the 10.10.10.0 part of the line tells it to foward all packets comming from 10.10.10.*  so if your IP addressing scheme is different you will need to change this.  Also the /24 means the subnetmask is 255.255.255.0.  Just make sure your gateway on your internal computers are set to the internal network card on your router... this should work hope it helped
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Networking

From novice to tech pro — start learning today.