[olug] Router Need

Rob Townley rob.townley at gmail.com
Fri Feb 15 21:41:03 UTC 2008


On Fri, Feb 15, 2008 at 9:06 AM, Jaymz Ringler <jringler at neinfosec.com>
wrote:

> Craig Wolf wrote:
> > Can't you set the DHCP server to hand out the same IP each time the Mac
> address is in range?  Then you can set rights on the network by that IP/MAC.
> >
> >
> > Craig Wolf
> > Linux Server Support
> > Backup Administrator
> > Desktop/Network Specialist
> > 402-715-6283
> >
> >
> >
> That's what I was thinking..   If your medical machine always totes
> around with a 192.168.88.2 ip address..    your cheap linksys router on
> the LAN port has 192.168.88.1      Then all you need to do is take it to
> each location and the WAN port will pull an IP from each networks DHCP
> server (assuming there is one in each location).    In each location's
> DHCP server, you could set a reservation to pull a specific ip
> designated by you (or the site administrators).  Then  you port forward
> or route traffic from the WAN side of your router to 192.168.88.2 (the
> ip of your ultrasound) ..   Your Linksys router is guaranteed to receive
> the same IP in each location.    You can then simply make a host record
> in DNS at each location or edit the /etc/hosts or lmhosts file to always
> point their server to your reserved ip of your Linksys WAN port.
>
> It's reliable, predictable and I think satisfies your requirements.
> The only time it won't work is if someone spoofs the MAC of your router,
> which is easily done, but the likelihood of that is nill.
>  _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> http://lists.olug.org/mailman/listinfo/olug
>


i love dd-wrt and this application would make things simple.  But some
issues to think about in a HIPAA setting.  Will every sysadmin allow a WiFi
signal in their office?  Yes, you can tell him that you will remove the
antennas and tell him dd-wrt has an option to turn off the WiFi, but if a
patient hits the hardware reset button - the WiFi can be turned back on.
FUD.

Secondly, how many MegaBytes or GigaBytes of data are you talking about?
Most of the SOHO routers do not have 1000Mbps WAN ports and often they only
have 10Mbps.  Yes, you could buy one of the more expensive Linksys routers
(unfortunately Buffalo-Tech still can't sell in the USA), but then you will
likely have to disable the 802.11n - bummer.  i wonder if you oughta roll
your own mini-itx or other router board.

i believe Craig and Obi-Wan were referring to preexisting DHCP and
DNS servers.  Not the DHCP server in a SOHO firewall.  Hopefully, each
location can give out a statically leased IP address among other things.
Getting them to set up a common dns entry of ultrasound file server would be
helpful.



More information about the OLUG mailing list