[KLUG Advocacy] re: OT: uPNP

Adam Tauno Williams awilliam at whitemice.org
Wed Apr 20 18:12:24 EDT 2005

Previous message: [KLUG Advocacy] re: OT: uPNP
Next message: [KLUG Advocacy] re: OT:uPNP
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> >You can disbable NetBIOS on a per-interface basis
> Unfortunately, that won't work, as I'd like to have this machine be a 
> bit of a file server as well.  

To the external network?

> Can you do something odd like give it 2 
> IPs on the inside, one for samba, DNS, and DHCP, and the other for 
> outbound NAT?

No, disable netbios for the external interface.

> >>> always dial in response to something sensible like traceroute. Plus the
> >I'd consider ignoring ICMP a positive for a external facing interface.
> I suppose.  Half the time it wouldn't dial when I punched up a web or 
> ftp session either, though.  On-demand is likely to be a problem, 
> though, because there will be two Windows boxes behind it, and Windows 
> boxes have a nasty habit of having "update software" (some of which 
> blurs the line between legitimate update checks and spyware) that calls 
> home regularly.  I think it will be more trouble than it's worth 
> configure complicated rules explaining what IPs or protocols trigger 
> dialing and which ones don't.

This is simplified by using a proxy;  simply setup a squid proxy on the
edge-device.  If the squid server requires authentication than all this
automatic gunk is automatically broken, which is beautiful.  And you get
a performance kick for free.  HTTP requests blocked by the proxy won't
invoke demand-dial since they will never reach the external facing
interface.


> >>> Option b might be worth trying if I can't manage option a, which 
> >>> involves dumping the modem for DSL.  The modem is a piece of junk 
> >>> anyway.  External, so it's a real modem (not winmodem) but it only 
> >>> manages a connection above 31.2k about once every other February 29th.
> >Seems normal, all the 56k noise is total nonsense; it is just this site of 
> >impossible to ram 56k over a phone line - a T1 channel with clear-channel 
> >encoding only does 64k,  add in the DAC/ADC process and the unbalanced 
> >impedence of a POTS pair....  I've seen phone lines from buildings where I 
> >could see the CO from the roof clock in at under 28k.
> The wiring's good.  

I'm talking about the wiring buried in the dirt or dangling between dead
branchless trees.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://www.kalamazoolinux.org/pipermail/advocacy/attachments/20050420/1783e058/attachment.bin

Previous message: [KLUG Advocacy] re: OT: uPNP
Next message: [KLUG Advocacy] re: OT:uPNP
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Advocacy mailing list