I need to implement at my sister this kind of connection: She is connected on Local area network that has about 50-80 pc’s, but for internet access she must start an pppoe connection. For now when she wants to use lan she must put her local address (ps: they dont have dhcp), for pppoe she uses dhcp. Problem is that on that way she can’t access lan and internet at the same time. She must disconnect from lan and then start pppoe connection and vice versa. I’m intrested if it is possible to have lan access at the same time as internet access. some kind of tunel through lan up to isp. I was googling little and so PPPoE tunneling. Is it that what I need here?
It should be possible, the public Internet address is assigned to the ppp interface, not the eth interface. It is possible that the pppoe client she is using assigns a private address to the eth interface which is not in the LAN subnet. Strictly speaking this is not necessary, as PPPoE frames are not IP frames so don’t need an IP address. Nevertheless, some clients do it. You may be able to make this assigned address the same as the current address.
A quick solution might be to get a second NIC just for connecting to the modem.
quick solution is not possible because it is laptop. She is using network manager as frontend. U think that I should set in network manager under dsl settings the private address, and that it will work both for public internet and local connection?
If anything, the IP address for eth0 in the DSL settings should be the current IP address on the LAN. I can’t be sure, because I don’t use NM for DSL, usually I let the modem handle all this.
ok. I will try that for couple of days.tnx on suggestion;)
Ok. That works. But there is another problem. I need to turn on firewall for sharing on that interface. But I don’t want it to be turned on for local network and for internet.
I saw somewhere that I can make virtual nic. Is it possible it to use in this situation? and how do I make virtual NIC’s?
You can specify that a firewall rule applies to a particular interface only e.g. ppp0. However as I said, I don’t use ppp on my machine, it’s done for me on the router so I can’t really be sure.
I think You should set all the interfaces, that You don’t want to have firewall enabled on, in the internal zone and all the others (specifically the one which connects you to the Internet) in the external zone. This is very easily done using YAST.
Best regards,
Greg
Tnx on answers. But in Yast firewall I can configure rule only to physical interfaces (eg. no zone, external zone…). I will try little to explore settings in Yast firewall to see if I may apply setting on different pattern
Thanks for the feedback. Didn’t thought of that 
I’m sure it can be done using CLI but I’m really not sure how to do it myself. Maybe this thread will give You some hints on how to do this. Other than that You can always try “man SuSEfirewall2”.
Best regards,
Greg
On Mon March 7 2011 05:36 am, glistwan wrote:
>
> kalcho;2299499 Wrote:
>> Tnx on answers. But in Yast firewall I can configure rule only to
>> physical interfaces (eg. no zone, external zone…). I will try little
>> to explore settings in Yast firewall to see if I may apply setting on
>> different pattern
> Thanks for the feedback. Didn’t thought of that 
I’m sure it can be
> done using CLI but I’m really not sure how to do it myself. Maybe ‘this’
> (http://tinyurl.com/4bukol6) thread will give You some hints on how to
> do this. Other than that You can always try “man SuSEfirewall2”.
>
> Best regards,
> Greg
>
kalcho;
You assign each card to Internal, External or DMZ from YaST–>Network
Devices → Network Settings -< Device to configure> → General. To launch
Yast (ncurses) from the CLI, as root enter yast or YaST.
–
P. V.
“We’re all in this together, I’m pulling for you.” Red Green