-=Barangay Tunasan=-
router
Suppose we have a typical ADSL modem
with a four port router (e.g., an iiNet Bob2, or a 2Wire 2701HGV-W, or a D-Link
DSL504 ADSL Modem/Router). We've bought (or have lying around) a second router
(e.g., a Belkin 54Mbps Wireless 802.11g) and want to use this to add more
computers to the network through ethernet cables to share drives, printers and
the Internet connection. Let's refer to the first ADSL router as router A and
the second as router B.
Optional: We probably don't need to
limit the DHCP address range on router A--just as long as the address we
use for router B has not been allocated to some other computer by
router A, but my instructions used to include the following suggestion: Configure router A to issue DHCP
addresses in some range that does not include one IP address that we will use
for router B. For example, we might configure router A to
only issue IP's in the range starting at 10.1.1.2 (or 10.0.0.1 or 192.168.0.2)
and ending at 10.1.1.100 (or 10.0.0.137 or 192.168.0.33). Then we'll configure
router B with 10.1.1.101 (or 10.0.0.233 or 192.168.0.40). This
is all the setup that is required for router A, which otherwise has
DHCP enabled and its usual WAN (ADSL) setup for your ISP.
Disable DHCP for router B (and
perhaps we don't need the router's firewall or DMZ), and configure its WAN (Wide
Area Network) type to be STATIC and set it to any IP (e.g., 10.2.2.2 or
192.168.111.2--it should be different to the A network), with
a netmask of 255.255.255.0. Specify a gateway IP of 0.0.0.0 (or perhaps
10.2.2.1 or 192.168.111.1, if your router will not allow 0.0.0.0). This will
stop it sending traffic to its WAN (we won't be using this router's WAN
connection).
With the LAN (local
area network) configuration for router B set to STATIC set an
IP address within the subnet range of router A but outside its
DHCP range. We might set the LAN IP to 10.1.1.101 (or 10.0.0.137 or
192.168.0.40) with a Subnet Mask of 255.255.255.255 (or 255.255.255.254 perhaps
if that doesn't work) and with DHCP Disabled. Router A will
serve as the DHCP server for anything connected to router B.
Make sure that nothing is plugged
into router B's WAN. Connect a LAN ethernet port of router B to
a LAN ethernet port of router A to have them talking to each
other, using the usual ethernet cable that you would use to plug your computer
into the router. The setup will look something like the following:
|
Router A Router B WAN: --> ISP
modem WAN: Empty ethernet Configured for ISP Static IP with Gateway 0.0.0.0 LAN: LAN:
IP=10.1.1.1
IP=10.1.1.101 Subnet
255.255.255.0 Subnet
255.255.255.255 DHCP:
Enabled DHCP: Disabled LAN Ethernet Cabling: (1)
<======================> (1) (2) -->
PC1 (2) --> PC4 (3) -->
PC2 (3) --> PC5 (4) -->
PC3 (4) --> PC6 |
That's it! for details on protecting your wireless connection
from random access.)
Now, computers serviced by
router B (directly connected by Ethernet cable or else
connected wirelessly) will be assigned DHCP by router A, within the
10.1.1.* (or 192.168.0.*) network, together with DNS assignments. Router B is
just another IP node on A's network. Any LAN computer can access
and configure router B by accessing it as 10.1.1.101 (or
192.168.0.40). All computers will be on the same network subnet and so they
will have access to each other for file and printer sharing.
I added [110421] another old router
(replaced D-Link ADSL) as router C. It's network address was set to
10.1.1.102 (or 10.0.0.160). It is connected directly through to router A.
Remember to disable DHCP for router C. This seemed to function
without further setup.
Posted at 07:29PM Jan 27, 2012 by robert_daclag in General | Comments[0]
Happy New Year
Happy New Year
Posted at 10:12AM Jan 14, 2012 by robert_daclag in General | Comments[0]
Laspinas Vergonville
Larf Computer Center transfer to Vergonville Laspinas
Posted at 04:09PM Dec 21, 2011 by robert_daclag in General | Comments[0]
vergonville
open larf computer center @vergonville laspinas Octuber 23 2011
Posted at 12:30PM Nov 22, 2011 by robert_daclag in General | Comments[0]
Camayan Beach Resort
just returned home from Camayan Beach Resort
Posted at 08:55AM Sep 05, 2011 by robert_daclag in General | Comments[0]
Lypoma recovery
Operation on June 22, 2011 proceed with good result.
Posted at 10:59AM Jun 25, 2011 by robert_daclag in General | Comments[0]
LYPOMA
i got medical checkup for A lipoma a benign tumor composed of adipose tissue. It is the most common form of soft tissue tumor at our lady of peace hospital.
Posted at 11:17AM Jun 09, 2011 by robert_daclag in General | Comments[1]
back to school
Opening of school year 2011 let see what lie ahead.
Posted at 11:22AM Jun 06, 2011 by robert_daclag in General | Comments[0]
Larf Computer Center Games
20. Grandchase 02 03[Read More]
Posted at 12:51PM May 14, 2011 by robert_daclag in General | Comments[1]
zone.localhost
; ; loopback/localhost zone file ; $TTL 1D $ORIGIN localhost. @ IN SOA @ root ( 1 ; Serial 8H ; Refresh 15M ; Retry 1W ; Expire 1D) ; Minimum TTL IN NS @ IN A 127.0.0.1
Posted at 01:14PM Apr 12, 2011 by robert_daclag in General | Comments[0]
rndc config
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "xxxx";
};
options {
default-key "rndc-key";
default-server 127.0.0.1;
default-port 953;
};
# End of rndc.conf
Posted at 01:10PM Apr 12, 2011 by robert_daclag in General | Comments[0]
revp.127.0.0
;
; reverse pointers for localhost
;
$TTL 1D
$ORIGIN 0.0.127.in-addr.arpa.
@ IN SOA localhost. root.localhost. (
1 ; serial
8H ; refresh
15M ; retry
1W ; expire
1D ) ; minimum
IN NS localhost.
1 IN PTR localhost.
Posted at 01:07PM Apr 12, 2011 by robert_daclag in General | Comments[0]
Bind 9
//
// sample BIND configuration file
//
options {
// tell named where to find files mentioned below
directory "C:/dns/etc";
// on a multi-homed host, you might want to tell named
// to listen for queries only on certain interfaces
listen-on { 127.0.0.1; 192.168.0.1/24; };
allow-recursion { 192.168.0.1/24; };
};
// The single dot (.) is the root of all DNS namespace, so
// this zone tells named where to start looking for any
// name on the Internet
zone "." IN {
// a hint type means that we've got to look elsewhere
// for authoritative information
type hint;
file "named.root";
};
// Where the localhost hostname is defined
zone "localhost" IN {
// a master type means that this server needn't look
// anywhere else for information; the localhost buck
// stops here.
type master;
file "zone.localhost";
// don't allow dynamic DNS clients to update info
// about the localhost zone
allow-update { none; };
};
// Where the 127.0.0.0 network is defined
zone "0.0.127.in-addr.arpa" IN {
type master;
file "revp.127.0.0";
allow-update { none; };
};
logging{
channel simple_log {
file "C:/dns/log/named/bind.log" versions 10 size 5m;
severity dynamic;
print-time yes;
print-severity yes;
print-category yes;
};
channel "query_log" {
// query logs go to a separate file
file "C:/dns/log/named/query.log" versions 10 size 500k;
severity debug;
print-severity yes;
print-time yes;
};
category default{
simple_log;
};
category queries { query_log; };
category lame-servers { null; };
};
key "rndc-key" {
algorithm hmac-md5;
secret "xxxxxxx";
};
controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndc-key"; };
};
Posted at 01:04PM Apr 12, 2011 by robert_daclag in General | Comments[0]
Php
C:\Program Files\Sun\WebServer7\plugins\php>setupPHP -instancename=https-caroli
no
C:\Documents and Settings\Tiu>keytool -list -keystore ../mykeystore -storepass o
kongs
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
tunasan, Jan 22, 2010, PrivateKeyEntry,
Certificate fingerprint (MD5): 9E:57:06:27:1B:76:58:1C:AF:E4:0E:6C:77:91:DE:B0
C:\Documents and Settings\Tiu>keytool -list -keystore .keystore -storepass okong
s
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
mykey, Jan 22, 2010, PrivateKeyEntry,
Certificate fingerprint (MD5): 14:D7:86:87:50:31:0B:FA:05:05:92:CC:C5:B5:97:CF
C:\Documents and Settings\Tiu>keytool -list -v -keystore ../mykeystore
-----BEGIN CERTIFICATE-----
Alias name: tunasan
Creation date: Jan 22, 2010
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=romy.daclag.com, OU=fm3jcomputercenter, O=shop, C=PH
Issuer: CN=romy.daclag.com, OU=fm3jcomputercenter, O=shop, C=PH
Serial number: 4b5a8d3a
Valid from: Fri Jan 22 21:46:34 PST 2010 until: Wed Jul 21 22:46:34 PDT 2010
Certificate fingerprints:
MD5: 9E:57:06:27:1B:76:58:1C:AF:E4:0E:6C:77:91:DE:B0
SHA1: 4F:26:31:93:11:9B:A2:10:3A:B8:0D:02:01:1B:E4:42:32:46:3C:15
Signature algorithm name: SHA1withDSA
Version: 3
-----END CERTIFICATE-----
C:\Documents and Settings\Tiu>keytool -printcert -v -file ../tiu/cert-daclag.cer
Owner: CN=carolino
Issuer: CN=admin-ca-cert, OU=Sun Java System Web Server 7.0, O="Sun Microsystems
, Inc."
Serial number: -2cbf9c17
Valid from: Sat Apr 26 18:13:36 PDT 2008 until: Thu Apr 26 18:13:36 PDT 2018
Certificate fingerprints:
MD5: 7B:4E:09:4D:A3:25:C1:AB:BC:F6:8A:25:A8:59:C7:B6
SHA1: 94:29:26:2D:73:AC:DB:40:AF:4C:3A:D3:7A:F7:51:F1:34:D7:61:36
Signature algorithm name: SHA1withRSA
Version: 3
Extensions:
#1: ObjectId: 2.5.29.15 Criticality=true
KeyUsage [
Key_Encipherment
Key_Agreement
]
C:\Documents and Settings\Tiu>keytool -importkeystore -srckeystore ../mykeystore
-srcstoretype JKS -deststoretype PKCS12 -destkeystore server-keystore.pkcs12
Enter destination keystore password:
Re-enter new password:
They don't match. Try again
Enter destination keystore password:
Re-enter new password:
They don't match. Try again
Enter destination keystore password:
Re-enter new password:
Enter source keystore password:
Enter key password for <tunasan>
Entry for alias tunasan successfully imported.
Import command completed: 1 entries successfully imported, 0 entries failed or
cancelled
Posted at 02:47PM Mar 29, 2011 by robert_daclag in General | Comments[0]