FreescoでCATVのインターネット接続用ルータを作る

目次

  1. インストール
  2. 準備
  3. MACアドレスの書き換え
  4. 設定
  5. 最後に

  1. 準備
    1. 目的となるマシンにNICを2枚(or 3枚)刺します。
      (それぞれが、WAN側、LAN側となります)
    2. ディスクイメージの圧縮ファイルをダウンロードし、"PKZIP"または"unzip"にて展開します。("gzip"ではありません。また、Windows.*でしたら"Lhaca"でも展開できます)
      今回使用したバージョンは 0.2.7 ですので、ダウンロードしたのが"freesco-027.zip"、展開されたイメージファイルは"freesco.027"となりました。
    3. また、使用するNICが「ne,ne2k-pci,3c509,3c59x,rtl8139,tulip,smc-ultra」のいずれかのドライバで動作するのであれば特にドライバを追加する必要はありませんが、上記以外のNICを使用している場合はドライバの追加が必要になります。
      その場合は、"modules-027.zip"をダウンロードし、展開します。

      私は NE2000 と AT1700 を使いましたので、"at1700.o"ドライバを追加しました。

  2. インストール
  3. Freescoディスクを作成し、NICドライバを追加します。
    (DOSからのインストールでは作業手順が少し増えます)

    UN*X DOS(Windows.*)
  4. イメージファイルをフロッピーディスクに書き込みます。
  5. dd if=freesco.027 of=/dev/fd0 rawrite -f freesco.027 -d a
  6. NICドライバの追加が必要な場合は、使用するドライバをフロッピーディスクにコピーします。
  7. cp modules/at1700.o /fd/router/drv/ copy modules\at1700.o a:
  8. Freescoディスクから再起動し、rootでログインします。
  9. login:root
    Password:(パスワードの初期値はrootです)
    login:root
    Password:(パスワードの初期値はrootです)
  10. 追加ドライバを正しくコピーし直します。
    (DOS,Windowsのみ)
  11. umount /mnt
    mount -t vfat /dev/fd0 /mnt
    mv /mnt/at1700.o /tmp
    umount /mnt
    mount -t umsdos /dev/fd0 /mnt
    mv /tmp/at1700.o /mnt/router/drv/

  12. MACアドレスの書き換え
  13. このLinuxBoxに使用するNICはCATV社に登録してあるものとは違う物なので、このままではIPアドレスを取得できません。
    ですので、使用するNICが登録してあるMACアドレスと同じ値を返すようにMACアドレスを書き換えます。

    ファイルの編集には"edit"を使用します。
    ("edit ファイル名"でファイルを開き、[alt]+x または [esc]x で編集終了です)

    "rc_start"の変更
    rc_start
    #!bin/sh
    #
    # Start/stop servin and router

    # 追加行ここから
    # Change MAC address
    ifconfig eth0 down
    ifconfig eth0 hw ether ************ ←登録MACアドレス
    ifconfig eth0 up
    # ここまで

    /rc/rc_net

    --- 以下略 ---

  14. 設定
  15. ルータ用の設定をします。

    起動直後の「boot:」プロンプト時に「setup」と入力するか、ログイン後に「setup」と入力します。
    (注:ISP="Internet Service Provider" ここではCATV社)

    login: root
    Password:
    [Linux] setup
    Welcome to Freesco v0.2.7 Setup (c) 1999,2000 Serge Storozhevykh http://www.freesco.org IP masquerade (Powered by Linux) Legend:green - required parameters; yellow - optional parameters; red - experts only. Three steps of setup: 1) choose router type and set it up 2) change advanced settings 3) save config, exit and reboot system Press ENTER to continue < Enter >
    d) Dialup line router: ISP <- modem0 -> router <- 1st network -> local net 1 l) Leased line router: |-- <- 2nd network -> local net 2 |-- <- 3rd network -> local net 3 |-- <- modem1 -> dialin net 1 e) Ethernet router: ISP <- 1st network -> router <- 2nd network -> local net 1 |-- <- 3rd network -> local net 2 |-- <- modem0 -> dialin net 1 |-- <- modem1 -> dialin net 2 b) Ethernet Bridge: net 1 <- 1st network -> bridge <- 2nd network -> net 2 |---- <- 3rd network -> net 3 p) Print server: printer <------> server <- ethN -> local net(s) r) Remote access server: |-- <- modemN -> dialin net(s) a) Advanced settings v) View current config w) vieW previous config s) Save current config and exit q) Quit without saving Choice []? e ←IPルータにするので「e」を選択
    Host name, very useful in case of getting IP address via DHCP client (for instance when connected to @HOME) 711 Hostname of this computer [router]? ←このルータのホスト名を入力 Domain for your local network. Do not enter your ISP's domain here, this should be a domain which doesn't exist on the internet. People using some cable/dsl providers may need to add their ISP's domain to the client machine(s) domain suffix search order. 712 Domain name []? tagiya.co.jp ←このルータのドメイン名を入力 Setup will now try to detect your modems. If the serial ports are already in use, detection will fail. In that case use 'rc_modem stop' to stop the dialin server and/or 'control block' to hang up the dialout modem first, or make sure you run setup from bootup. If you choose not to detect your modems now you can autodetect them or configure them manually later from advanced settings. Autodetect modems now ? y/n [y]? n ←シリアルポートにモデムは接続していない 8xx How many network interface cards do you have (1-3) []? 2 ←NICの数 Enter the I/O port and IRQ of any ISA network cards here. I/O addresses must begin with 0x. PCI network cards ignore these settings so both should be set to 0. 811 I/O port address of 1st ethernet card [0x240]? 0x240 ←WAN側NICのI/Oアドレス 812 IRQ line of 1st ethernet card [10]? 10 ←WAN側NICのIRQ 821 I/O port address of 2nd ethernet card [0x340]? 0x340 ←LAN側NICのI/Oアドレス 822 IRQ line of 2nd ethernet card [11]? 11 ←LAN側NICのIRQ When connected to the internet in ethernet router mode, 1st network interface is the one which must go to the internet connection. By default this is eth0, but you can change it here. 720 Use DHCP client to configure 1st network interface y/n [n]? y ←WAN側(CATV側)をdhcpクライアント接続にする 721 Interface name of 1st network, eth0/eth1/eth2 etc [eth0]? ←WAN側NICを選択 722 Enable DHCP client message logging y/n [n]? ←DHCPクライアントのLOGは記録しない 723 Update DNS server settings by DHCP y/n [y]? 731 Interface name of 2nd network eth1/eth0:1/eth2 etc [eth1]? ←LAN側NICを選択 732 IP address of 2nd network interface [0.0.0.0]? 192.168.3.1 ←LAN側のIPアドレス 733 Network mask [255.255.255.0]? ←LAN側ネットマスク IP range for DHCP server, '-' - disable DHCP service on this interface. Example: 192.168.168.100 192.168.168.200 NOTE: DHCP daemon eats memory for this pool, so be realistic and don't reserve too many addresses. Dont include freesco's own address in this range. 734 IP range []? 192.168.3.10 192.168.3.30 ←LAN側をDHCPサーバにするのでその範囲 WARNING:If your router machine has only 8MB of RAM, you should not enable more services than telnet and dns unless you install on a hard drive and enable at least 8MB of swap. All services can be enabled without swap with 16MB of RAM (swap is still recommended if you install on a hard drive). If you see an error message like "can't fork..." you definately do not have enough RAM and must either add more RAM or enable swap. Now let's enable and configure services and servers. Caching DNS server. Normally you should enable and use it, in particular with a dialup connection, otherwise you may get unwanted dialouts. You may want to edit the DNS configuration files: rc_named, named.hst, named10.rev, named172.rev, named192.rev Consult manual at http://www.isc.org regarding BIND v4 WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 411 Enable caching DNS server y/s/n [n]? ←DNSサーバ無効 Enable DHCP if you want automatic configuration of client IP address, subnet mask, domain, and dns server. You must choose an IP address range in network setup for each network you require DHCP to work on. NOTE: You should not enable the DHCP server if your network already has one. WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 421 Enable DHCP server y/s/n [y]? ←DHCPサーバ有効 422 WINS address (if you have one, otherwise - '-') []? ←WINSサーバ無効 423 Default-lease-time,max-lease-time (sec) [604800,604800]? ←DHCPサーバが割り振るIPアドレスの貸出期間 424 Do you want to create/edit static dhcp leases y/n []? ←MACアドレスによるIPアドレスの割り振りはしない Enable Public HTTP server if you want to run a small web server, files should be copied into /www with index.htm as the main page. Enable with 's' to run the web server only on your local network, or 'y' to run it on the internet as well. WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 431 Enable public HTTP server y/s/n [n]? ←HTTPサーバ無効 Enabling the web admin control panel will allow you to manage and monitor Freesco from your web browser. System configuration and logs can be viewed, non-interactive linux commands can be executed, the dialup link can be brought up or down manually, you can switch between ISP profiles, and services can be stopped and restarted. This must also be enabled for time clients to work. WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 441 Enable time server and router control via HTTP y/s/n [n]? ←HTTPサーバを使ってルータの設定はしない You can enable one or two print servers here, the client must support UNIX style LPR printing. (Native LPR printing from Linux, Microsoft TCP/IP printing for Windows NT or a 3rd party client for Win95/98) WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 451 Enable Print Server(s) y/s/n [n]? ←プリンタサーバ無効 Enable telnet to allow remote admin of Freesco. You can telnet in and perform any console commands you can use locally, including this setup script. NOTE: Only one telnet session can be active at once. WARNING: y - enable service worldwide, insecure! s - enable service locally, secure (recommended) n - disable service 46 Enable telnet server y/s/n [n]? ←Telnetサーバ無効 Screen saver and hard disk spin down timers. 14 Savers - screen(min),hdd(x5 sec) 0 -off [0,0]? 0,120 ←スクリーンセーバ無効、10分後にHDD停止 If you've installed Freesco on a hard drive, you can enable a swap file. You should enable 8MB or more swap if you have less than 16MB of physical memory. Please note - maximum size is 127MB. 15 Swap file size in Megabytes (on boot device). 0 - disable [0]? ←FDへのswapは無効 If you have 16+Mb RAM or have swap enabled, some extra modules/programs can be loaded. These include modem monitor and ile. (command history) 13 Do you want to enable extra modules/programs y/n [n]? ←外部モジュールは無効 Syslog records kernel messages and messages from other programs. Logins log keeps a log of console and telnet logins, and shell commands executed via web admin. Combined maximum log size should be less than 200000 bytes: syslog + logins_log <= 200000 16 Log sizes in bytes. syslog,logins_log [0,0]? ←ログは記録しない Enter your ISP's default gateway here. It may also be refered to as 'gateway', 'router' or 'default router'. Not all ISP's require this setting. Not required when using the dhcp client. NOTE: This is for Ethernet/Leased_line Router or Printer/RAS server 911 Host gateway (if exists, otherwise - '-') []? ←ISPにはDHCP接続なので不要 NOTE: Primary DNS is required, secondary DNS is optional. If you use the dhcp client it may override these settings. NOTE: This is for Ethernet/Leased_line Router or Printer/RAS server 912 Primary DNS address (usually your provider's DNS) []? ***.***.***.*** ←ISPのDNSサーバのアドレス 913 Secondary DNS address (otherwise - '-') []? ←ISPのセカンダリDNSは非公開 ISP http proxy for dyndns and for probable future use Format: proxy.addr.domain[:port] NOTE: This is for Ethernet/Leased_line Router or Printer/RAS server 914 ISP http proxy address, (otherwise '-') []? ←ISPのプロキシは非公開 Port forwarding. If you have any WWW/FTP/Mail/Telnet/etc servers in your local network you can make them worldwide visible, i.e. export them. You must know protocol (tcp or udp), IP address and port of this server Format : t|u,External_Port,Local_IP_addr/Local_port Example: you want to export local www server which is on port 80 on computer with IP addr 192.168.168.3, and you want to make it worldwide visible on port 81. Solution: t,81,192.168.168.3/80 NOTE: the internal machine you port forward to must have freesco as its default gateway. Also you cannot access the port forwarded machine from your internal network by its external address. 47 Do you want to export services y/n []? ←外部へ公開するサービスは無し Configured. Save settings, restart system and test it. Press ENTER to continue < Enter >
    d) Dialup line router: ISP <- modem0 -> router <- 1st network -> local net 1 l) Leased line router: |-- <- 2nd network -> local net 2 |-- <- 3rd network -> local net 3 |-- <- modem1 -> dialin net 1 e) Ethernet router: ISP <- 1st network -> router <- 2nd network -> local net 1 |-- <- 3rd network -> local net 2 |-- <- modem0 -> dialin net 1 |-- <- modem1 -> dialin net 2 b) Ethernet Bridge: net 1 <- 1st network -> bridge <- 2nd network -> net 2 |---- <- 3rd network -> net 3 p) Print server: printer <------> server <- ethN -> local net(s) r) Remote access server: |-- <- modemN -> dialin net(s) a) Advanced settings v) View current config w) vieW previous config s) Save current config and exit q) Quit without saving Choice []? s ←保存して終了
    Saved. You must restart the system before the new setting will take effect. [Linux] reboot ←再起動して設定を有効にする

  16. 最後に
  17. 参考文献

御意見御感想等ありましたらtoshi's BBSまたは、toshiまでどうぞ。

TOP


最終更新日: Nov 15 01:08