From owner-freebsd-isp Thu May 25 21: 0:21 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.mailstart.com (mail.mailstart.com [207.231.76.67]) by hub.freebsd.org (Postfix) with ESMTP id 42BFF37B6F2 for ; Thu, 25 May 2000 21:00:16 -0700 (PDT) (envelope-from lures@mozcom.com) Received: from pink [207.231.76.26] by mail.mailstart.com (SMTPD32-5.05) id A6AE1CD60088; Thu, 25 May 2000 20:59:42 -0700 To: freebsd-isp@FreeBSD.ORG Cc: [so@server.i-clue.de]@FreeBSD.ORG;, tim@iafrica.com.na;, [gskouby@ns0.sitesnow.com]@FreeBSD.ORG;, [forrestc@iMach.com]@FreeBSD.ORG;, [tim@polytechnic.edu.na]@FreeBSD.ORG;, lambert@cswnet.com;, [hetzels@westbend.net]@FreeBSD.ORG;, [mark@intrepid.net]@FreeBSD.ORG;, [troy@picus.com]@FreeBSD.ORG;, [viper@2ghz.net]@FreeBSD.ORG; From: lures@mozcom.com Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Message-Id: <250500146.75583@207.206.68.135> Content-Type: TEXT/PLAIN; charset=US-ASCII Content-Length: 6081 Date: Thu, 25 May 2000 21:00:16 -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org To all that responded: I would like to say thanks for your input. From your responses I have make some decisions on some of the items based on what you said. On other items I see from your responses I was unclear in my writing so I will try to clarify them. 1. On the subject of connecting to UUnet. My sentence was unclear. I did not mean I was connecting to UUnet direct or that they were the people I was calling for problem resolution. What I meant was that the UUnet backbone was my final connect point to the internet. The true of the matter is, I an looking real hard at SPRINT as the main provider and they will connect me to the internet through their access to the UUnet backbone. An full 1.5 T1 connect costs $1250. per month with burst mode pricing for start up. If you know of better a price that I can get, please let me know. 2.On the statement No PAP or CHAP Authentication. There was a lot of discussion on this so let me clarify. The FreeBSD handbook states there is 3 login Authentication methods (PAP, CHAP, and Login) The login method I take is the manual entering in the LOGIN USER ID followed by the manual entering of the PASSWORD during each login attempt. Since this is what is normally see by the Windows95/98/2000 internet user and since this is the target group I want to service, this just seemed like the correct chose. Please jump right in and correct me or add insight now that you know where my head is at. Now this subject has other considerations when the CISCO AS5300-CH48 and radius comes into the picture. First I see the PPP function (both single and Multi-link) no longer is performed by FBSD but by the CISCO AS5300 and it can be configured to let the dialup connection choose the Authentication mode. Also someone stated that with current radius if you use PAP then you can go off the FBSD password file but if you use CHAP then you need a line in your users file for every person that I want to grant dial in access. This discussion subject has spawned new questions in my mind. What is the sequence of events in the login process from an windows dial in user? Is windows looking for a PAP login behind the scenes? Who is the master login id/password holder, FBSD or radius or what? I would like a webpage where a new subscriber can sign up for service. Where he enters his credit card, it gets billed and then he selects a id/pw, and it's checked against the master file after which he is entered into the system automatically. I have read web pages from Merchant account software vendors like authorizit.com who offer this function. I must leave a door way for this when deciding on how to configure CISCO AS5300 / radius world. Please help me out here with how you address this. 3. On the question about the T1/24 channel line for dial in connection to the CISCO AS5300. First of all I am staying with the CISCO AS5300-CH48 for two main reasons, it's growth path and it's initial cost of $10K for 48 digital 56K modems. This NAS can use ether T1 or PRI lines. The PRI line occupies 23 modems per PRI line so after loading the first 48 modem card I will always have two modems which are not generating revenue. But the big problem with PRI is it's over kill, the majority of the subscriber will be logging in with a maximum modem speed of 56K and the T1 will handle that just fine at a much better price. PRI costs $890 per month versus $600 per month. Besides ISDN is dead with DSL on the horizon. Let some other ISP handle the ISDN and DSL speed for the power hungry user. I want the ALO user who is fed up with slow response and wants better service. It's easier to attract subscribers from other ISP's than to attract first time users. 4. I have changed my desire to host news groups now that I know I can out source it. Someone posted that with 13,000 subscribers that pay $500 per month for 35 simultaneous reader slots for news group service of which the peak simultaneous reader count so far has been 16. I would like to get in touch with some news groups outsourcers to develop prices. Please pass on any info you may have access to. 5. Apache13 form the FBSD ports collection. From the responses it looks like no body is using the ports collection as they are out of date. Apache 1.3.12 seems to be the version to use as it's stable. A post did say that, This will be changing to only 3 base Apache servers (apache13,apache13+ipv6, and apache13-ssl). Additional functionality would then be added by installing an apache module port (mod_ssl, mod_fp, mod_php[34],etc) although 2.0 is in its 3rd alpha stage. Well I am lost again. What functionally does ipv6, ssl, fp, php provide? Are these functions something your ISP supports? 6. On the question, Do I have to use quota to limit disk space for web page subscribers. Since the only access to the FBSD disk space in my case will come from the personal/home web page builders and people who want a private FTP site. It seems Quote is the simplest solution. I don't want to host business web pages of any sort. If I do I have to collect and report taxes on this activity. That is just too much red tape for the money. 7. Your responses were real informing on the subject of email software. As I now understand it POP3 sends the email to the client and deletes the email from the server, whereby IMAP does the sending and them keeps the email on the server for some set period. The FBSD sendmail comes with SMTP and POP3 which is provided by the popper daemon. I want access to the mail system to have login Authentication. How does sendmail handle this with radius controlling the dial in world? I see in the MS Windows OS all the email application need the POP and SMTP DNS name or IP address. How do I make this happen in FBSD sendmail? Thanks once again Joe Barbish ----- Sent using MailStart.com ( http://MailStart.Com/welcome.html ) The FREE way to access your mailbox via any web browser, anywhere! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message