objectives
history
Hardware
overview
675 modem
firewall
hub/lan
Networking
interfaces
dhcp
forwarding masquerading
dns
zippy
Security
source address verification
tcp wrappers
ipchains
Web
Services
mail
web server
proxy services
Hardware Components
Web hosting through DSL can be achieved through various hardware and software configurations. I have elected to use a standard single machine DMZ style model with a dual homed computer that services the internet. Consider the following diagram:
The following bullets describe each of the components in the diagram:
- Cisco 675 DSL Modem - This device provides the high speed TCP/IP networking functions to the Zoomtown network. This device is a dual homed router and modem. It also supports some level of security configuration.
- eth1 Interface - This interface represents a single NIC card in the Linux machine. The purpose of this card is to establish connectivity with the 675 router and in turn the internet. This is known as the external interface. As you will see later, this interface gets its IP address from the 675 & Zoomtown's DHCP services.
- eth0 Interface - This NIC (network interface card) connects the internal network to the Linux gateway or firewall machine. This interface becomes the gateway for all computers on the LAN.
- Hub - This standard networking device allow one to many computers to be attached to a network. These are typically referred to as 5 port, 24 port hubs. For my setup I have a basic $20 five port hub.
Cisco Systems
manufactures great networking equipment and their stock is a killer!
Cobalt Networks
has a few very nice Linux solutions. Typical product is dual homed
web server/firewall.
Penguin Computing is another Linux
OEM that has several workstation and rack mounted solutions.
VA Linux offers many rack mounted
solutions. A few of my clients are using these guys.
One thing I am considering is a wireless solution for my
home so I can extend the reach of zoomtown across my home. 3COM is a solid solution.