Thu Jul 10, 2008 4:46 am
Hi headstrong
I have a general "rule of thumb" way of setting up all highsites/relay sites.
Say we have the setup where we have one server room, one highsite, a smaller relay site and a client connected via PPPoE.
SERVER ROOM/MAIN SITE:
BANDWIDTH ROUTER(ADSL or whatever):
IP Address: 192.168.100.254/24
CORE ROUTER (Router connected between ADSL and ROOF MT):
ether1 IP (Ether connected to ADSL router): 192.168.100.1/24
ether2 IP (Ether connected to ROOF MT): 192.168.101.254/24
NAT Rules: src-nat action=masquerade (You could nat the entire 0.0.0.0/0 range OR individual ranges depending on how many other ranges on your network should be able to access the internet)
Default Gateway: Destination: 0.0.0.0/0 Gateway: 192.168.100.254
SERVER ROOM ROOF MT:
ether1 IP (Ether connected to CORE router): 192.168.101.1/24
NO MASQUERADING RULES
Default Gateway: Dst:0.0.0.0/0 Gateway: 192.168.101.254
wlan1 mode: AP Bridge (or you could use bridge on both ends. I prefer ap bridge)
wlan1 IP: 192.168.110.254/24
Wireless security: You could use WEP, WPA, MAC Filtering, I prefer MAC filtering for backbone links
HIGHSITE 1: (wlan1=uplink to server room, wlan2=distribution antenna1), wlan3=link to relay site
wlan1 IP: 192.168.110.1/24
wlan1 mode: station OR bridge (depending on other site)
security: depending on other site
Default Gateway: dst=0.0.0.0/0 GW:192.168.110.254
wlan2 IP: NONE
wlan2 mode: AP Bridge
wlan2 Security: MAC filtering
wlan2 connection method: PPPoE Server
PPPoE Server wlan2 details:
pppoe1 pool: 10.10.1.1-10.10.1.250
pppoe1 profile local address: 10.10.1.254/24
pppoe1 profile remote address: pppoe1 ip pool
wlan3 IP: 192.168.111.254/24
wlan3 MODE: ap bridge / bridge
wlan3 security: MAC filtering
RELAY SITE:
wlan1 (uplink to main highsite) IP: 192.168.111.1/24
wlan1 security: MAC
wlan1 MODE: station/bridge
wlan2 (distribution to clients) IP: NONE
wlan2 security: MAC filtering
wlan2 MODE: AP bridge
pppoe IP Pool: 10.10.2.10-10.10.2.250
pppoe profile local IP: 10.10.2.254/24
pppoe profile remote IP: pppoe1 ip pool
Default gateway: dest=0.0.0.0/0 gw=192.168.111.254
TYPICAL PPPoE CLIENT:
wlan1 MODE: station
wlan1 IP: NONE
ether1 IP: 192.168.0.254/24
DHCP Server: Pool: 192.168.0.10-192.168.0.250
PPPoE Client: Interface=wlan1
NAT Rule: src-nat action=masq
I hope you get the basic idea. I didn't get into details, but this setup you could make much more advanced for instance using your CORE router as a DNS server where all clients' MT's use your CORE router as DNS server, and each client's MT is used as the client's local DNS server. This does save a little internet traffic, but makes regular visited sites's DNS lookups a bit faster. You could also setup WEB Proxy, personally I don't like them though. Then you could setup USERMANAGER to authenticate your clients from a central point etc. I suggest you first get your basic setup right before installing usermanager etc.
My rule of thumb is to allways make the site where something is connected to's IP address something which ends in .254 eg x.x.x.254/24. Also, the interface with the x.x.x.254/24 address is always in AP-Bridge mode.
Hope this helps!
Good luck! G