DRAFT

This describes how I have set up my Personal Telco node, with NoCatAuth. The firewall is based on a CloneArmy box from FreeGeek which came with Debian Linux a number of services and NoCatAuth installed and partialy configured.

Hardware

Access Point

This router provides a Wireless networked, bridged to a 100/10 Mbit Ethernet and a 10 Mbit ethernet for connection to a DSL or Cable Modem. It provides DHCP the local net and NAT(Network Adress Translation) routing to the DSL/Cable modem.

NoCatAuth Firewall

Clone Army Box

Pentium based PC, two ethernet interfaces, 1GB harddrive. Running Debian Linux, NoCatAuth, ISC DHCP daemon.

Configuration

DI-711 DHCP is disabled and dhcpd is provided by the Firewall. The Firewall's internal ethernet conection is connected to the internal network of the DI-711. The firewall provides DHCP, routing and NAT to the internal LAN. DNS service is provided by the ISP.

It is my intention to describe all the configuration changes from the standard instalations, we will see how well I have succeded. most(all) of this should apply to any Linux or UNIX running NoCatAuth and DHCP.

NoAuthCat

Changes to /usr/local/nocat/nocat.conf from the file delivered with the NoCatAuth distribution.

GatewayMode     Passive

If I read the comments in the config file correctly I should not need this but only Open and Passive seem to work for me.

GatewayLog      /var/log/nocat.log

Log file located with the rest of the log files

HomePage        http://www.personaltelco.net/

Use Personal Telco page

ExternalDevice  eth0

Specify External (internet side) Device

InternalDevice  eth1

What ever you are using for a local network, I just use the 192.168.x.x networks out of habit.

DNSAddr 216.231.41.22

I could probably have run a DNS relay server, but it was just easier to use my ISP's server.

DHCP

/etc/dhcpd.conf 

# dhcpd.conf
#
# Sample configuration file for ISC dhcpd
#

option subnet-mask 255.255.255.0;
default-lease-time 600;
max-lease-time 7200;

subnet 192.168.1.0 netmask 255.255.255.0 {
  range 192.168.1.100 192.168.1.199;
  option broadcast-address 192.168.1.255;
  option routers 192.168.1.1;
  option domain-name "local-14.personaltelco.net";
  option domain-name-servers 216.231.41.22;
}

[CategoryExample][CategoryDocumentation][CategoryHistorical]

CloneSoldierSetup (last edited 2012-03-11 01:53:00 by RussellSenior)