root/floppyfw-3.0/scripts/config.pppoe

Revision 269, 6.0 KB (checked in by root, 19 months ago)

Quite a few changes, new release 3.0.13 and many changes to accomodate a better VLAN setup.
Line 
1#
2# Configuration for floppyfw
3# Not in use, a sed in config is.
4
5# $Id: config.pppoe,v 1.3 2005/02/05 14:23:13 thomasez Exp $
6
7#
8# Fill in the blanks.
9#
10
11# For configuring of modules to use,
12# this includes the network interfaces: /modules.lst
13
14# For configuring firewall rules and incoming traffic: /firewall.ini
15# For configuring extra network interfaces you may use netwirk.ini
16
17# The default internal network is 10.42.42.* with 10.42.42.1
18# As the floppyfw internal address (and default gateway for all
19# internal machines). To change this go down to the INSIDE section.
20
21#=============================================================================
22#
23# Basic configuration:
24#
25
26# Select the type of your OUTSIDE connection:
27
28# CONNECT_TYPE=PPP      # if you use a modem
29
30CONNECT_TYPE=PPPoE      # if you use some type of DSL that uses PPPoE
31                        # (Most of them do)
32# CONNECT_TYPE=DHCP     # For getting the IP address by DHCP, often used
33                        # on cable modems.
34# CONNECT_TYPE=STATIC   # For the good old LAN connection.
35                        # (Static IP)
36
37# CONNECT_TYPE=EXTERNAL # is a hook for booting a external startup
38                        # script from a package.
39                        # the external script has to be in /etc/ext-up.init
40
41
42#
43# Some connection methods wants a userid and password, PPP and PPPoE
44# is the typical but also the EXTERNAL option may want it.
45#
46USER_IDENT=
47USER_PASSWORD=
48
49#
50# Use a DHCP server on the inside network. (This will turn on DNSMASQ aswell)
51# (Dnsmasq is a dns cache.)
52#
53DHCP_SERVER=n
54
55#
56# Password can be created in many ways. Youhave two (three) options,
57# DES_PASSWORD will accept a crypted strong
58# PASSWORD will accept a strong (the specific root password).
59
60# This will give you "ffw" as login password.
61# DES_PASSWORD=nCLm5JgCK0G5U
62PASSWORD=
63
64#
65# Done! Your floppyfw should already work by now.
66# Save this file and give it a first shot !
67#
68#=============================================================================
69#
70
71#
72# Device layout:
73#
74OUTSIDE_DEV=eth0
75INSIDE_DEV=eth1
76
77#-----------------------------------------------------------------------------
78#
79# INSIDE settings if you are using the STATIC connection option:
80#
81#
82# Your inside network, this has 10.42.42.* set as default, this is
83# addresses assigned for internal networks according to RFC 1918.
84#
85INSIDE_IP=10.42.42.1
86INSIDE_NETWORK=10.42.42.0
87INSIDE_NETMASK=255.255.255.0
88INSIDE_BROADCAST=10.42.42.255
89
90#
91# If you use the internal DHCP server and change the IP address and range
92# above you should also set the dhcp address range.
93#
94DHCP_RANGE_START=10.42.42.100 
95DHCP_RANGE_END=10.42.42.200
96
97#-----------------------------------------------------------------------------
98
99#
100# OUTSIDE settings if you are using the STATIC connection option:
101#
102OUTSIDE_IP=
103OUTSIDE_NETMASK=
104OUTSIDE_NETWORK=
105OUTSIDE_BROADCAST=
106
107#
108# Misc
109# These are not nescessary to set if you are using DHCP.
110# (The DOMAIN field might be useful to change)
111#
112DEFAULT_GATEWAY=
113
114# Name servers can be a list, separated by a space. like "1.1.1.1 1.1.1.2"
115OUTSIDE_NAMESERVERS=""
116
117# MAC address for outside nic
118# Some ISPs uses bootp style dhcp tables and some just remembers the last
119# used MAC address. this allows you to swap nics
120# OUTSIDE_MAC=00:00:e8:48:6c:cb
121
122#-----------------------------------------------------------------------------
123
124#
125# DMZ settings.
126#
127# This is just to set up the network, you have to edit firewall.ini to
128# be able to do ahything useful with this.
129#
130
131USE_DMZ=n
132DMZ_DEV=eth2
133DMZ_IP=10.42.69.1
134DMZ_NETMASK=255.255.255.0
135
136#
137# This switch (is not working yet) will turn on or off NAT to the outside
138# network.
139#
140
141DMZ_USE_NAT=y
142
143#-----------------------------------------------------------------------------
144
145# PPP settings:
146#
147# Change the following only, if you are using PPP !
148
149#
150# Phone number:
151TELEPHONE=
152
153# Serial Port COM1 is /dev/tts/0, COM2 is /dev/tts/1 etc.
154SERIAL_PORT=/dev/tts/1
155PORT_SPEED=57600
156PPP_CONNECT_TIMEOUT=60
157PPP_CONNECT_POLL=3
158
159
160#
161# General configuration options
162#
163USEPEERDNS=yes    # set to 'yes' or 'no'
164#Change the DEMAND variable to either:
165# 'no' for "always on" connection
166# N where N is the number of idle seconds before we disconnect
167#DEMAND=600
168DEMAND=no
169
170# A debug option for debugging PPPoE, it will log to the specified file.
171# This must NOT be used during normal use, it'll fill up the ramdisk..
172# PPPOE_DEBUG=/tmp/pppoe.log
173
174#-----------------------------------------------------------------------------
175
176#
177# Defaults and switches:
178#
179
180HOSTNAME=floppyfw
181DOMAIN=floppyfwsecured.com
182
183#
184# Use a caching DNS server on the floppy. (This will automatically be true if
185# the DHCP daemon is used.)
186#
187DNSMASQ=n
188
189#
190# And for the logging the scripts use:
191# Default works for most purposes.
192#
193DEBUG_LOG="/dev/vc/3"
194
195#
196# Turning on syslogd and klogd.
197# This is a nice thing but will eat CPU which is why it is turned
198# off by default.
199# The firewall.ini file is where you can turn on logging of rejected packages.
200#
201USE_SYSLOG=n
202
203# Uncomment to log to /dev/vc/4 instead of /var/log/messages
204# which aren't exactly a good idea on a ramdisk.
205SYSLOG_TTY="-O $DEBUG_LOG"
206# Or the another virtual console than the other messages:
207# SYSLOG_TTY="-O /dev/vc/4"
208
209# Uncomment to log to network. host:port
210# SYSLOG_NET="-R 10.42.42.42:514"
211
212# Uncomment to not print a mark
213# SYSLOG_MARK="-m 0"
214
215[ "$SYSLOG_TTY" -a "$SYSLOG_NET" ] && SYSLOG_BOTH="-L"
216SYSLOG_FLAGS="$SYSLOG_MARK $SYSLOG_TTY $SYSLOG_NET $SYSLOG_BOTH"
217
218#
219# At the bottom (almost) because this is a feature that should not be
220# widely used but it will be useful for some people, escpecially
221# people using some irc servers demanding a result.
222#
223# This is a fake ident daemon, you can set the userid it shall answer
224# and floppyfw will automagically start the fake identd with this user
225# as the response.
226#
227# This will have security implications since you are running a listening
228# daemon (server) on the outside network interface. do this ONLY
229# if you really need it.
230#
231#FAKEIDENT=
232
233# If you want to use a second device (floppy disk, or whatever),
234# enter a device name like "/dev/fd1"
235# Otherwise enter "n"
236#SECOND_DEVICE="/dev/floppy/1"
237SECOND_DEVICE=n
238
Note: See TracBrowser for help on using the browser.