Helpful Information
 
 
Category: Linux Help
what is need to a small isp???

I have broadband and a set of linux servers. if I have 3 phone lines, a 3-comm port card and suppose I installed correctly.

I have 10 customers, using 56 K modem to call me so that they can access the internet through my site.


what is need to do such services for my clients?

Since small ISP's are dying quickly and steadily, I would say luck or try looking for "how to set up a remote access server" on linux.com or similar sites.

a U saying radius server???

I wrote


"how to set up a remote access server"

You can search here or on a site like google.

BTW: Have you ever heard about "worldtouch"?

Linux has all the capability you need to run these services, but it's obvious you need to learn the basics first. The fact that you ask the question "what is needed to do such services?" shows that you are not very experienced with Linux.

As a minimum, you need to know about:

- TCP/IP
- DNS
- PPP
- DHCP
- Network address translation -- NAT (I'm assuming you only have one IP address through your broadband connection, so you can't just "hand out" valid IP addresses to your clients)
- Linux user permissions
- Linux hardware settings (how do you know which modem is which?)

...and this is just to get started. If you are lucky, I guess you might find some pre-set software package that sets you up for an "out-of-the-box" ISP, but you won't get very far without knowing the above list fairly well. For example, what are you going to do the first time you get hacked? If you don't spend at least some time every day examining your system logs, and checking out the security advisories, you will be hacked in no time!!

I'm sure you are thinking that having 10 users will pay for your broadband connection, but you will spend so much time getting everything configured, that you won't make any real money. There is a reason that the small ISPs died out. A server and a network takes time to administrate, even with very few users. The big ISPs have all kinds of tools, and have spent a lot of time setting things up, so that they can be profitable while dealing with these problems.

Now, if you want to do this as a learning experience, then more power to you ;). Just don't expect it to be easy. You need to learn how Linux works from the ground up. It's not something you will learn in a couple of months.

search entire goggle.com.
I need url to help me to setup a tiny isp,would u please help?

my ppp ( to receive dial-in is OK).

pentium5,

You will not find a URL which "just shows you how to set up an ISP). You instead must search for understanding in each of the areas I listed earlier.

Even in your "tiny isp", you must know basically the same things as the big isps, because you are using the same technology, only on a smaller scale.

Also, you have the added problem of not having a block of valid IP addresses to dynamically assign for each modem, as users dial in. Thus, you need to have a "private" network, using addresses such as 192.168.xxx.xxx, or 10.xxx.xxx.xxx, which are a group of addresses which cannot not be seen externally on the world wide web. These addresses are intended for internal networks, where many computers can share an internet connection with the one computer (firewall) that has a valid external IP address.

Thus, you need to run your server as a firewall, doing Network Address Translation (NAT), so that all those users can surf the web using your server's IP address.

As I said, you are not going to find ONE place that lists everything you need in a nice, simple order. There are just too many possible variations of the ISP scenario to make a nice, neat list. So, you need to identify exactly what it is you want to do, and then learn each piece. There are plenty of URLs to show you how to do the following:

(try searching at www.google.com/linux)

- PPP
- NAT (search for "ipchains")
- DHCP
- DNS (you probably don't need to run your server as a DNS server, unless you want to host domains, but you still need to understand the basics of what it is, and how it works)
- Mail (specifically, sendmail, postfix, or qmail)

Look for forums and newsgroups also, such as comp.os.linux.networking. Spend some time at www.ugu.com and search through the HOWTO's at http://docs.linux.com/.

There are plenty of resources, but you won't get a "cookbook", with 1-2-3 instructions. You have to put the ideas together yourself.

http://groups.google.com/groups?hl=en&lr=&threadm=8fp2fc%249h9%241%40nnrp1.deja.com&rnum=35&prev=/%20groups%3Fq%3Ddial%2Bup%2Blinux%26start%3D30%26hl%3Den%26lr%3D%26selm%3D8fp2fc%25249h9%25241%2540n nrp<br%20/>1.deja.com%26rnum%3D35

http://www.theory.physics.ubc.ca/ppp-linux.html#Testing

http://xisp.hellug.gr/

I need to do ttyS0 to provide ppp to com1 so I can dial in from a remote office to test the conception of small isp via serial port.

I have installed the dhcp

and
[root@energy ppp]# dhcpd -f
Internet Software Consortium DHCP Server 2.0pl5
Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
All rights reserved.

Please contribute if you find this software useful.
For info, please visit http://www.isc.org/dhcp-contrib.html

Listening on Socket/eth0/192.168.1.0
Sending on Socket/eth0/192.168.1.0
There's already a DHCP server running.

exiting.
[root@energy ppp


/etc/dpchd.conf
subnet 192.168.1.0 netmask 255.255.255.0 {
range 192.168.1.80 192.168.1.254 ;
option subnet-mask 255.255.255.0 ;
option broadcast-address 192.168.1.255 ;
option routers 192.168.1.1 ;
option domain-name-servers 64.124.9.160 ;

option domain-name "mydomain.com" ;
option ip-forwarding on ;
option netbios-node-type 8 ;

and I have /etc/ppp/options like this.

# use serial device ttyS0 (cua0) for the ppp conection /dev/ttyS0
/dev/ttyS0
#lock the device while in use
###### this file has only one line ie lock, all other I added in 27th June 2002

lock
#remote end does not need to authicate itself
noauth
#user name used when authenticaing this ppp session
name "auser"
#automatically place an entry in the routing table for the ppp conection
defaultroute
# use modem lock link at 115200 using hardware flow control
modem 115200 crtscts
#chat line used to dail modem
connect '/usr/sbin/cat -v -f /etc/ppp/chat'

/etc/ppp/options


I do not how to make this work.
I do not know how the chat should be!
currently , I can dial in the linux server and login my account and su to root.
Then I execute /usr/sbin/pppd, but there is nothing happen , no dhcp IP to me in window 98 se.

I need to do ttyS0 to provide ppp to com1 so I can dial in from a remote office to test the conception of small isp via serial port.

I have installed the dhcp

and
[root@energy ppp]# dhcpd -f
Internet Software Consortium DHCP Server 2.0pl5
Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
All rights reserved.

Please contribute if you find this software useful.
For info, please visit http://www.isc.org/dhcp-contrib.html

Listening on Socket/eth0/192.168.1.0
Sending on Socket/eth0/192.168.1.0
There's already a DHCP server running.

exiting.
[root@energy ppp


/etc/dpchd.conf
subnet 192.168.1.0 netmask 255.255.255.0 {
range 192.168.1.80 192.168.1.254 ;
option subnet-mask 255.255.255.0 ;
option broadcast-address 192.168.1.255 ;
option routers 192.168.1.1 ;
option domain-name-servers 64.124.9.160 ;

option domain-name "mydomain.com" ;
option ip-forwarding on ;
option netbios-node-type 8 ;

and I have /etc/ppp/options like this.

# use serial device ttyS0 (cua0) for the ppp conection /dev/ttyS0
/dev/ttyS0
#lock the device while in use
###### this file has only one line ie lock, all other I added in 27th June 2002

lock
#remote end does not need to authicate itself
noauth
#user name used when authenticaing this ppp session
name "auser"
#automatically place an entry in the routing table for the ppp conection
defaultroute
# use modem lock link at 115200 using hardware flow control
modem 115200 crtscts
#chat line used to dail modem
connect '/usr/sbin/cat -v -f /etc/ppp/chat'

/etc/ppp/options


I do not how to make this work.
I do not know how the chat should be!
currently , I can dial in the linux server and login my account and su to root.
Then I execute /usr/sbin/pppd, but there is nothing happen , no dhcp IP to me in window 98 se.

http://www.swcp.com/~jgentry/pers.html

I do not know which parts is wrong, in 98 SE the connection is ok until
the
check authentication and it breaks out. winipcfg does not show it has
given
an ip address .
the home server is connected a zoom modem and a dedicated Rh 7.2 is used.

the following is my setting:

/etc/inittab

S0:2345:respawn:/sbin/mgetty ttyS0 -D /dev/ttyS0
/etc/ppp/options.ttyS0

auth -chap +pap login modem crtscts debug proxyarp lock
#ms-dns 192.168.1.150
ms-dns xxx.255.144.77
# the first IP from left to right is the the IP addres of the server
# the second ip is the ip address assigned to the serial port for ppp
connections

192.168.1.80:192.168.1.200
#192.168.1.120
~
/etc/ppp/pap-secrets
#user server secret addrs
* * " " *
sally * - *
root * - *

#mtu 576
#mru 512
auth -chap +pap login modem crtscts debug proxyarp lock
ms-dns xxx. some ISP' DNS IP here
ms-dns yyy. some ISP' DNSIP here

/var/log/mgetty.log.ttyS0

--
07/02 08:05:53 yS0 mgetty: experimental test release 1.1.26-Apr16
07/02 08:05:53 yS0 check for lockfiles
07/02 08:05:53 yS0 locking the line
07/02 08:05:53 yS0 lowering DTR to reset Modem
07/02 08:05:54 yS0 send: \dATQ0V1H0[0d]
07/02 08:05:54 yS0 waiting for ``OK'' ** found **
07/02 08:05:54 yS0 send: ATS0=0Q0&D3&C1[0d]
07/02 08:05:54 yS0 waiting for ``OK'' ** found **
07/02 08:05:55 yS0 waiting...
07/02 08:06:44 yS0 wfr: waiting for ``RING''
07/02 08:06:44 yS0 send: ATA[0d]
07/02 08:06:44 yS0 waiting for ``CONNECT'' ** found **
07/02 08:07:05 yS0 send:
07/02 08:07:05 yS0 waiting for ``_'' ** found **
07/02 08:07:25 ##### data dev=ttyS0, pid=1688, aller='none',
conn='57600',
name='', cmd='/bin/login', user='sally'

--
07/02 08:08:44 yS0 mgetty: experimental test release 1.1.26-Apr16
07/02 08:08:44 yS0 check for lockfiles
07/02 08:08:44 yS0 locking the line
07/02 08:08:44 yS0 lowering DTR to reset Modem
07/02 08:08:45 yS0 clean_line: only 500 of 1390 bytes logged
07/02 08:08:45 yS0 send: \dATQ0V1H0[0d]
07/02 08:08:45 yS0 waiting for ``OK'' ** found **
07/02 08:08:45 yS0 send: ATS0=0Q0&D3&C1[0d]
07/02 08:08:45 yS0 waiting for ``OK'' ** found **
07/02 08:08:46 yS0 waiting...
07/02 08:09:06 yS0 wfr: waiting for ``RING''
07/02 08:09:06 yS0 send: ATA[0d]
07/02 08:09:06 yS0 waiting for ``CONNECT'' ** found **
07/02 08:09:26 yS0 send:
07/02 08:09:26 yS0 waiting for ``_'' ** found **
07/02 08:09:30 ##### data dev=ttyS0, pid=1967, caller='none',
conn='57600',
name='', cmd='/bin/login', user='sally'

--
07/02 08:10:04 yS0 mgetty: experimental test release 1.1.26-Apr16
07/02 08:10:04 yS0 check for lockfiles
07/02 08:10:04 yS0 locking the line
07/02 08:10:04 yS0 lowering DTR to reset Modem
07/02 08:10:05 yS0 send: \dATQ0V1H0[0d]
07/02 08:10:06 yS0 waiting for ``OK'' ** found **
07/02 08:10:06 yS0 send: ATS0=0Q0&D3&C1[0d]
07/02 08:10:06 yS0 waiting for ``OK'' ** found **
07/02 08:10:06 yS0 waiting...

I have created a user called ppp with out password

ppp:x:351:230:pppclient:/home/ppp:/usr/sbin/pppd




/etc/mgetty+sendfax/mgetty.config
port ttyS0
speed 57600

login.config
/AutoPPP/ - - /usr/sbin/pppd file /etc/ppp/options.server


I used "sally" and provide a password in the dial screen in 98 SE, it
dials
out and bring up a small screen as a normal login in linux, type in sally
and password, it does not allow me to use /usr/sbin/pppd/ then I have to
use
"su root" , execute /usr/sbin/pppd, all grabages characters, F7 to
continue,
then the login process breaks out.


would u please assist me and point me what is wrong here?

I don't know if this will help, but here is the closest thing to an all-in-one document on setting up an ISP:

http://www.ibiblio.org/pub/Linux/docs/HOWTO/other-formats/html_single/ISP-Setup-RedHat-HOWTO.html

Good Luck

--- Cerbere

that is the worst url I have read that in the first place, the last one on this thread explain more.
many thanks!




I prefer someone who has the experience will look into my setting and tell me what I have done wrong.

diagnosis, and that is why I exposed all the setting I have currently.

/etc/ppp/firewall-standalone
# firewall-standalone This script sets up firewall rules for a standalone
# machine
#
# Copyright (C) 2000 Roaring Penguin Software Inc. This software may
# be distributed under the terms of the GNU General Public License, version
# 2 or any later version.

# Interface to Internet
EXTIF=ppp+

ANY=0.0.0.0/0

ipchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward DENY

ipchains -F forward
ipchains -F input
ipchains -F output

# Deny TCP and UDP packets to privileged ports
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p udp -j DENY
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p tcp -j DENY

# Deny TCP connection attempts
ipchains -A input -l -i $EXTIF -p tcp -y -j DENY

# Deny ICMP echo-requests
ipchains -A input -l -i $EXTIF -s $ANY echo-request -p icmp -j DENY

============

/etc/ppp/firewall-masq

#!/bin/sh
#
# firewall-masq This script sets up firewall rules for a machine
# acting as a masquerading gateway
#!/bin/sh
#
# firewall-masq This script sets up firewall rules for a machine
# acting as a masquerading gateway
#
# Copyright (C) 2000 Roaring Penguin Software Inc. This software may
# be distributed under the terms of the GNU General Public License, version
# 2 or any later version.

# Interface to Internet
EXTIF=ppp+

ANY=0.0.0.0/0

ipchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward DENY

ipchains -F forward
ipchains -F input
ipchains -F output

# Deny TCP and UDP packets to privileged ports
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p udp -j DENY
ipchains -A input -l -i $EXTIF -d $ANY 0:1023 -p tcp -j DENY

# Deny TCP connection attempts
ipchains -A input -l -i $EXTIF -p tcp -y -j DENY

# Deny ICMP echo-requests
ipchains -A input -l -i $EXTIF -s $ANY echo-request -p icmp -j DENY

# Do masquerading
ipchains -A forward -j MASQ
echo 1 > /proc/sys/net/ipv4/ip_forward










privacy (GDPR)