From owner-freebsd-isp  Sun Apr 28 20:18:15 1996
Return-Path: owner-isp
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id UAA15902
          for isp-outgoing; Sun, 28 Apr 1996 20:18:15 -0700 (PDT)
Received: from irbs.irbs.com (irbs.com [199.182.75.129])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id UAA15892
          for <freebsd-isp@freebsd.org>; Sun, 28 Apr 1996 20:18:08 -0700 (PDT)
Received: (from jc@localhost) by irbs.irbs.com (8.7.5/8.6.6) id XAA16018; Sun, 28 Apr 1996 23:16:51 -0400 (EDT)
From: John Capo <jc@irbs.com>
Message-Id: <199604290316.XAA16018@irbs.irbs.com>
Subject: Re: FreeBSD PPP for terminal server.
To: luiz@mirage.nlink.com.br (Luiz de Barros)
Date: Sun, 28 Apr 1996 23:16:51 -0400 (EDT)
Cc: freebsd-isp@freebsd.org
In-Reply-To: <199604290256.XAA21834@mirage.nlink.com.br> from Luiz de Barros at "Apr 28, 96 11:56:02 pm"
X-Mailer: ELM [version 2.4ME+ PL11 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-isp@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Luiz de Barros writes:
> I would like to use my freeBSD system as a ppp server for our dial-in
> modems connected through a terminal server. The Terminal server would
> telnet to freebsd , on which would give the login of the user and init 
> PPPd.

Your terminal server does not do PPP?

> Two problems arrised:
> 1- How to ensure that only the terminal server will be able to login?
>    anybody coming from outside world would not be allowed to login.

A couple of things come to mind.  Use the access list facility in
tcp-wrappers.  Use the facilities provided by login.access that is
part of login. Build a special telnetd that only accepts connections
from your domain.

In all cases you have to block IP spoofing at your border routers.
You should be doing that anyway.

> 
> 2- How to assign Dynamic IP addresses from a range of for example 33 to 49?
> 

Tricky.  I have seen some scripts floating around for this.  You
might check the FreeBSD mail archives.

I would be very interested to know how this project comes out.

John Capo                                                   jc@irbs.com
IRBS Engineering                       FreeBSD Servers and Workstations
(954) 792-9551                 Unix/Internet Consulting - ISP Solutions