From owner-freebsd-isp@FreeBSD.ORG Thu Nov 10 12:43:29 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 46A4F16A41F for ; Thu, 10 Nov 2005 12:43:29 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id E43EB43D46 for ; Thu, 10 Nov 2005 12:43:28 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 384D6418; Thu, 10 Nov 2005 07:44:13 -0500 (EST) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id F19AA87; Thu, 10 Nov 2005 07:44:11 -0500 (EST) Received: from lists by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1EaBm1-000HSt-Kc; Thu, 10 Nov 2005 12:43:25 +0000 Date: Thu, 10 Nov 2005 12:43:25 +0000 From: Brian Candler To: gemini@sicilia.mv.com Message-ID: <20051110124325.GA67086@uk.tiscali.com> References: <20051109184334.D7F9043D48@mx1.FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051109184334.D7F9043D48@mx1.FreeBSD.org> User-Agent: Mutt/1.4.2.1i Cc: freebsd-isp@freebsd.org Subject: Re: (4.9-stable) Outgoing ppp through Shiva Lanrover X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Nov 2005 12:43:29 -0000 On Wed, Nov 09, 2005 at 01:41:38PM -0500, gemini@sicilia.mv.com wrote: > I would highly prefer to handle this dial-out ppp with a shared > Shiva Lanrover 8e terminal/modem server (firmware 4.54) > On the lan side, the Shiva is able to handle both tcpip and ipx > connections. It is able to initiate and handle an outgoing ppp modem > connection using it's "lan-to-lan connect" feature. This partly works. > > The problems are that > (1) The Shiva is not a router, it only bridges. Everything on the > lan-side goes straight through with no NAT. The Shiva Lanrover I used a couple of years ago was most definitely a router. It had three LAN interfaces, plus serial PPP for backup. I don't remember the model number, but it was sold as a firewall / VPN termination device. It definitely did NAT too - the 'inside' and 'dmz' networks we had were on 10.x.x.x addresses, but the outside on public IPs. Sorry this doesn't help you much, but it might be worth looking into the documentation a bit more just to make sure. Incidentally, the difference between a bridge and a router is not to do with NAT. If your Shiva is a router (which I think it probably is), then the packets will still be forwarded to your ISP with the source IP address unchanged, unless NAT is configured. You can of course just do a direct PPP dialup from your FreeBSD box, which will solve the problem. Regards, Brian.