l i n u x - u s e r s - g r o u p - o f - d a v i s
Next Meeting:
July 7: Social gathering
Next Installfest:
Latest News:
Jun. 14: June LUGOD meeting cancelled
Page last updated:
2001 Dec 30 17:02

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] Samba and network stuff
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] Samba and network stuff

--- pblickiss@ucdavis.edu wrote:
> Has anyone set up Samba 2.2 or Samba TNG as a domain
> controller?  I'm setting 
> up a network consisting of a linux gateway, two
> Win2k boxes, and Win9x box and 
> various other stuff (maybe a RAID server if I can
> dig up the drives) and I'd 
> also like to run a webserver just for the practice. 
> This'll all be on a 
> network where you're supposed to purchase one
> connection per computer, now 
> obviously, I don't want to pay for that many
> connections when I can just pay 
> for one and MASQ it.  Any tips on how to set this
> up?  Do I even need a domain 
> controller.  What security risks am I taking?  Am I
> insane for taking this on 
> in the first place?  Also, how can I make sure that
> the sysadmin for the 
> network only thinks I have one cmputer connected
> instead of six? :)  We have 
> unlimited data transfer but the line is capped at
> one of three speeds based on 
> how much I want to shell out.  Thanks for the help.
> Patrick
> P.S. Anything else I haven't thought of regarding
> the set-up?
Hey Pat:

In trying to answer your questions:

1. I don't think you need a PDC for the setup you are
describing.  PDC's are used to link multiple subnets
to browse as if they were the same network.  All you
would need is a Local Master Browser (LMB).

2. Your security risks are: the risk of having
everything on your local net be destroyed or
corrupted.  The internet is a dangerous place.

3. Your sysadmin wouldn't know how many computers are
behind your firewall if you masquerade your network
source address (aka change each packet to look like
the source was the masquerade machine, not client on
inside net).  Ipchains and iptables can do this.  I
have some sample scripts for iptables, if anyone is

4. You're not insane for taking this on.  Just plain
crazy :)

Good luck with your project!


Do You Yahoo!?
Yahoo! Auctions - Buy the things you want at great prices.

LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Appahost Applications
For a significant contribution towards our projector, and a generous donation to allow us to continue meeting at the Davis Library.