Re: bridge between ppp and ethernet - 1 IP address and assign it to anot

Subject: Re: bridge between ppp and ethernet - 1 IP address and assign it to another host
From: bert hubert
Date: Mon, 7 Mar 2005 22:32:11 +0100
On Tue, Mar 08, 2005 at 12:26:43AM +1030, Mark Smith wrote:

> (Bert, sorry for calling you Ben earlier, I must have got a bit
> distracted between seeing your name on a web page, and typing it on my
> email client)

I'll live :-) there are several Ben's I'd love to be confused with :-)

> I'm fairly confident that broadly I'm thinking about the same way as
> Bert, although as I'm about to go into some detail, it might turn out we
> have slightly different ideas.

Indeed, we are in full agreement. The idea is to have the ability to fully
firewall and monitor a machine that absolutely needs to have a real
routable IP address, without wasting an IP address for the router (or trying
to get an ISP to assign you multiple addresses, which can be a major chore
these days).

I'd settle for a 'dirty' solution. Remco van Mook of suggested
abusing iptables -j QUEUE combind with tun/tap to inject the packets on the
ethernet side, where userspace does the PPP -> ethernet conversion by making
up the required headers.


