Feb 092009
 

One of the things I’ve wanted to do for a while was move the firewall/router and minor web sites served from an old Pentium 3 in the basement to a more modern solution. I’ve blogged some of the journey, starting with the motivation and moving through the todo list. Yesterday was the day for the big switch.

After a couple of hours twiddling this and that, getting rid of spare cables, and vacuuming the backs of computers that seldom get this treatment, we now have a hardware firewall/router and some minor web sites powered by a Sun Ultra 20 OpenSolaris, rather than relying on an old Pentium 3 doing all of that. It’s amazing how much faster the minor sites load on a system with a decent amount of memory!

In other words, we’ve now gone from

old firewall + website server

old firewall + website server

and
wires

wires

to
new website server

new website server

(Photos by Tim Bray)

I still have to set up ddclient or something similar to inform DynDNS when our IP address changes, and there are some oddities, such as the Solaris box not broadcasting its hostname to the router which I want to track down. For some reason the Solaris box didn’t start the Ethernet connection properly on reboot, but I don’t yet know whether that was a random occurrence or something that I have to pay attention to. Still, things are working, at least until our next power outage. Whether it works past that depends on whether the router moves around the IP addresses it assigns, which would mean the IP-based forwarding not forwarding to the right place. I may end up installing dd wrt or something similar on the firewall (although it appears the particular one I have doesn’t support dd wrt itself), but for the time being I’m running the original software and it seems to do the job.

  2 Responses to “Re-routing”

  1. For what it’s worth, I’ve never seen one of those little routers that didn’t allow you to map MAC addresses to static internal IP’s. I’d recommend digging around the configuration. It’s likely to be in there somewhere.

    • Apparently Linksys routers generally don’t. The only way I’ve found is to set a static IP address on the computer itself, outside of the dynamic range adminstered by the router.

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)

/* ]]> */