Re: (4.9-stable) Outgoing ppp through Shiva Lanrover

• Previous message: Artyom Viklenko: "Re: Using PXE to install FreeBSD 6.0 - wrong kernel path and ip"
• In reply to: gemini_at_sicilia.mv.com: "(4.9-stable) Outgoing ppp through Shiva Lanrover"
• Next in thread: gemini_at_sicilia.mv.com: "Re: (4.9-stable) Outgoing ppp through Shiva Lanrover"
• Reply: gemini_at_sicilia.mv.com: "Re: (4.9-stable) Outgoing ppp through Shiva Lanrover"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Thu, 10 Nov 2005 12:43:25 +0000
To: gemini@sicilia.mv.com

On Wed, Nov 09, 2005 at 01:41:38PM -0500, gemini@sicilia.mv.com wrote:
> I would highly prefer to handle this dial-out ppp with a shared
> Shiva Lanrover 8e terminal/modem server (firmware 4.54)
> On the lan side, the Shiva is able to handle both tcpip and ipx
> connections. It is able to initiate and handle an outgoing ppp modem
> connection using it's "lan-to-lan connect" feature. This partly works.
>
> The problems are that
> (1) The Shiva is not a router, it only bridges. Everything on the
> lan-side goes straight through with no NAT.

The Shiva Lanrover I used a couple of years ago was most definitely a
router. It had three LAN interfaces, plus serial PPP for backup. I don't
remember the model number, but it was sold as a firewall / VPN termination
device.

It definitely did NAT too - the 'inside' and 'dmz' networks we had were on
10.x.x.x addresses, but the outside on public IPs.

Sorry this doesn't help you much, but it might be worth looking into the
documentation a bit more just to make sure.

Incidentally, the difference between a bridge and a router is not to do with
NAT. If your Shiva is a router (which I think it probably is), then the
packets will still be forwarded to your ISP with the source IP address
unchanged, unless NAT is configured.

You can of course just do a direct PPP dialup from your FreeBSD box, which
will solve the problem.

Regards,

Brian.
_______________________________________________
freebsd-isp@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"

• Previous message: Artyom Viklenko: "Re: Using PXE to install FreeBSD 6.0 - wrong kernel path and ip"
• In reply to: gemini_at_sicilia.mv.com: "(4.9-stable) Outgoing ppp through Shiva Lanrover"
• Next in thread: gemini_at_sicilia.mv.com: "Re: (4.9-stable) Outgoing ppp through Shiva Lanrover"
• Reply: gemini_at_sicilia.mv.com: "Re: (4.9-stable) Outgoing ppp through Shiva Lanrover"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Understanding voip and NAT ... PC on my local lan - via a NAT D-link 604 broadband router to the net, ... I have a spare linux server on this network to run some form of server etc. ... (Debian-User) Re: Linksys WRT54G and Firewall software ... and it is completely unprotected on the LAN side. ... But what I have meant is that a average router is a very vulnerable ... NAT router's are not "secured" per se by default. ... NAT tries to match incoming packets to established connections and conversations. ... (comp.security.firewalls) Re: Which home user router has a decent firewall inside it? ... Not for your LAN. ... The NAT translation on the router will ... NAT will inspect any packets if at all. ... public IP addresses in your LAN) and keep the firewall active. ... (comp.security.firewalls) Re: Router with a software firewall. Is this possible? ... opening holes in your NAT on the router. ... computers on the LAN unless something inside the LAN opens a hole ... use a hardware router that DOESN'T put a Swiss ... >firewall to keep it all upstream of the LAN. ... (comp.security.firewalls) Re: Router with a software firewall. Is this possible? ... opening holes in your NAT on the router. ... computers on the LAN unless something inside the LAN opens a hole ... use a hardware router that DOESN'T put a Swiss ... >firewall to keep it all upstream of the LAN. ... (comp.security.firewalls)