Apologies, just realised I replied offlist
Ronan Cunniffe wrote:
> Declan Grady wrote:
>>> The adsl2 box is a "Zyxel Prestige 660RU ADSLl2+ Ethernet/USB Gateway"
>>>> All I have done is change the variables in my iptables script to the
>> new external IP.
>>>> It seems a bit more complex than the previous setup .. should I be
>> setting my adsl box into a different mode and give my firewall's eth1
>> the external IP ?
>>> Hmm, You might not be able to - I know that the Zyxel Prestige 643
> *won't* function as a dumb DSL modem, only as a NAT router, or as a
> network bridge. Read your documentation very carefully. Twice.
>> If a router, then none of your machines will contain a reference to
> the public IP address.
>>> 2. If I want to be able to aceess my internal LAN from the outside
>> world, using doze clients, (!) am I looking at VPN, or some other
>> means ?
>> i.e. I want a secure method of accessing my internal lan through my
>> firewall, to get at the internal mail server (pop3 & smtp) and
>> possibly the samba server.
>>>> The Zyxel should have a section where you set port redirection - e.g.
> "port 22 goes to 192.168.1.3", "port 80 to 192.168.1.5", etc.
>> If the only thing you're connecting to the Zyxel is your fw, turn off
> the dhcp server and give eth1 a static 192.168.1.x address.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!