Next message: Tom Roth: "Re: [WinMac] static & dynamic IP?"
Ron wrote:
> This is where you need a firewall or proxy server which will translate
> (using NAT - Network Address Translation) the ISP's addresses to his home
> LAN addresses.
BZZZZT. C'mon Ron, he explicitly said that his boss is *not* trying
to share the dial-up access with the other computers. :}
> Alternatively the one machine which is trying to connect to the ISP can
> have 2 LAN cards; one with a fixed IP address on the home LAN, the other
> with a DHCP (dynamic) address assigned from the ISP. Be aware that with the
> latter approach, it is possible for anyone on the internet to hack the
> person's home network via the two-card PC.
BZZZZZZT. Using NT as a base of operations to hack into a local
LAN over a dial-up connection? Well let's see: NT doesn't really
have a "shell" from where you can launch nasty commands (as Unix
might let you, although i suppose you could install a trojan or
three, which could cleverly read local traffic and send it back to
you.) But let's remember that he has a dynamic *dial-up* connection?
What kind of fun would hacking over that be? You'd have to find
out when the guy was on-line, *and* guess what his IP was for every
session. And then it'd be *slow*.
And 2 LAN cards? i remind you that he's dialing up, not using a
cable modem or DSL. Just one LAN card.
Anyways, Tom, all your boss really needs is another Ethernet card. He
can assign a static IP address to that, completely independent of the
dynamic IP address that his ISP assigns.
For his private LAN he should use one of the range of IP addresses
specifically allocated for this purpose: 192.168.1.0 - 192.168.254.254
OR 10.0.0.1 - 10.254.254.254
OR 172.16.0.1 - 172.31.254.254
So: NT machine's ethernet card: 192.168.1.1
Other machine: 192.168.1.10
Another machine: 192.168.1.20
They should be able to ping each other. However, the case could be
made that if you have less than 5 computers that just need to share
some files, that maybe the only protocol you should run on the cards
is NetBEUI so that when the boss enables file/print sharing, the
intrepid (and amazingly lucky) hacker won't be able to see the shares
over his slow modem connection. Or maybe that's just a binding issue.
It's been a while since i've set this up.
Ack... i've typed far too much.
--Darryl
> At 08:52 2000-07-31, you wrote:
>
> >My boss is trying to setup a home network while still retaining his
> >dial-up ISP connection. He is NOT trying to share the dial-up access
> >with the other computers. He just wants the other two or three
> >computers to be able to connect to each other. No server is involved.
> >His Windows NT computer gets it's IP number from the ISP when it
> >connects. Yet for home use, it seems that he would need a static IP so
> >the other computers can find the WinNT computer. I know home networks
> >have been discussed here on WinMac before so I would think some of you
> >may have run across this very same problem. Any suggestions would be
> >appreciated.
> >
> >Thanks!
*** Windows-MacintoshOS Cooperation List ***
FAQ: http://www.darryl.com/winmacfaq/
Archive: http://www.darryl.com/winmac/
To unsubscribe, send mail to winmac-request@lists.best.com
with just the word "unsubscribe" in the body of the message.
This archive was generated by hypermail 2b29
: Mon Jul 31 2000 - 11:15:23 PDT