Post#2: Need Info: Questions on > Part Six: WEP

[Anonymous]

Posted: Tue 20 May, 2003 10:45?? ?Post subject: Questions on > Part Six: WEP (Help)
————————————————————————
Posted: Sat 17 May, 2003 13:35?? ?Post subject: Questions on > Part Six: WEP is for Wusses
————————————————————————

Hi all,

Based on what I have read in the article “Part Six: WEP is for Wusses” I have a few questions;

– Set up the stub network

>>>We need to get Biggie running as an actual gateway. This means setting up NAT. Connect the machine up to the office network on the built-in ethernet port. <<<

Q: At this Point I will give it a static IP# of my LAN ex: 10.1.4.44, right?

>>>Then connect the PCI NIC, the 10 Mbps one that you installed yourself, into the AirPort Base Station. <<<

Q: What network settings do I need to enter for the second NIC?
Q: What settings must I enter for the Airport Base station?

– Set up IPSec on Biggie

>>>In our setup the secondary ethernet card in Biggie is 10.0.42.1. Biggie is giving out DHCP leases to all of the wireless machines on the network starting at 10.0.42.100 and ending at 10.0.42.149.<<<

Q: How do you setup and specify DHCP on the second NIC Card?
Q: What is the network subnet mask etc for the second NIC?

>>>For each wireless machine you’ll now need to add a shared secret. Add this to /etc/racoon/psk.txt. It would be advisable to use the same secret for all IP address just to avoid confusion.<<<

Q: In that psk.txt file, wemust replace asecretcodegoeshere with our in all 4 areas? what about the field with macuser@localhost somethingsecret ??

Thks
LeoBack to top
?
lferraro
Guest
Posted: Sat 17 May, 2003 21:03?? ?Post subject: Questions on > Part Six: WEP is for Wusses (part#2)
————————————————————————
Hi,

I just wanted to add more info to my original post…
I would appreciate it if someone can give me more detailed info on the setup
with IP# and settings for the 3 steps….

———————————————-
My Lan settings:
———————————————-

– Firewall SonicWall 10.1.1.1 with NAT
– No Dhcp Server, all static addresses
IP#: 10.1.x.x
Subnet: 255.255.0.0
Router: 10.1.1.1
DNS: xxxx

———————————————-
The G3 as a Gateway:
———————————————-

NIC-To-Lan:
– Do I just assign a static IP ex:. 10.1.x.x or must I use another network?

NIC-To-Airport Base:
– What are the settings for the Airpot Base (IP, mode???)
– How or what becomes the Dhcp server…what settings?

Will these settings affect my stable Lan in any way?
All I want is to have all Wireless connections communicate via IPSec and have access to my LAn’s Firewall, Internet and Fileservers…

Thks
Leo

[Anonymous]

Hi,

MacTroll:
Q: What network settings do I need to enter for the second NIC?
Q: What settings must I enter for the Airport Base station?

The second NIC needs to be on the 10.0.42.1/24 network. So give it 10.0.42.1

The airport at this point need only be in bridge mode. It isn’t acting as a DHCP server or a NAT box, just as a wireless access point.

LEO REPLY:

Why must it be 10.0.42.1/24?
On my lan we have a Firewall and have a VPN connection to an exsiting
network 10.0.x.x 255.255.0.0.

If I use 10.0.42.1/24 on my second NIC, Will this conflict with our VPn 10.0.x.x network? Any suggestions?

MacTroll:

Q: How do you setup and specify DHCP on the second NIC Card?
Q: What is the network subnet mask etc for the second NIC?

Read our article on setting up NAT for more info, or just use server settings and configure the DHCP server. If you aren’t using client and want to make this easier you should be able to just set up internet sharing in the sharing preferences pane. This will create at 192.168.1.1/24 network instead of 10.0.42.1/24 but other than that should be similar.

LEO REPLY:

By turning on Internet sharing, yes but, how will it determine to use my second NIC? and when I create the second NIC, what IP setting do I use before applying the Internet Sharing? Can this cause any problems on my exsisting network?

MacTroll:

Q: In that psk.txt file, wemust replace asecretcodegoeshere with our in all 4 areas? what about the field with macuser@localhost somethingsecret ??

You’ll need to have an entry for every client IP and then the shared secret in the psk file.

I’m a little confused by your question without seeing what your psk file looks like.

LEO REPLY:

In the psk file there are 4 locations that specify to enter a secret code, must we enter the secret code in each of those areas?

Thks again for responding!
Leo

[Author]

Posts