Hello Rudy and others interested,
RW> I've got a few computers in seperate subnets which I do not allow to
RW> communicate with each other.
RW> When I need to transfer data between computers in those subnets I use
RW> an USB stick.
RW> Somehow my thoughts went to if it would be possible to use an RPi 3B+
RW> as a kind go-between.
RW> The first problem would be that I would need to add another (or more)
RW> ethernet connection (so the 'puters on one subnet cannot reach 'puters
RW> on the other one). Is that at all possible (at a usable speed) ?
RW> The second would be to how to transfer data from one subnet to the other.
RW> For that I could imagine a kind of "post office" solution, where
RW> 'puters on both subnets can leave messages for each other and ofcourse
RW> read each others replies, but never directly talk to each other.
RW> (both 'puters connect to a known port on the RPi).
RW> Does anyone know if such a sulution or project (and tutorial?) for such
RW> a thing exists ?
Why not try this multi router solution:
At Home On the Move /|\ Tx
|
InterNet Cloud Ships Harbor WiFi Access Point
| or Camping Site on the i
|
|
ISP \|/ Rx
| Mobile |
WAN xDSL / COAX Cable / GlassFiber / 3G-4G-5G / WiFi Client --/
Modem / Media Converter
LAN Yes Mobile or WiFi as WAN are possible!
| i.e. at the FritzBox 6890 4G router.
|
| Fixed Cable RJ45 Note: In many cases Modem and Router are combined.
|
WAN /--------------------------------- Phone
Main Router Zero |
LAN1 LAN2 LAN3 LAN4 WiFiCh1 VoIP 192.168.0.1
| | | \--------------------------------------------- IPtv SetTopBox
| | \------------------------------------------------\
| \------------------------\ 10/100/1000 MBsec/RJ45 |
| | |
WAN Pi 4B NAS WAN
Sub Router One 192.168.1.1 | Sub Router Two 192.168.3.1
LAN1 LAN2 LAN3 LAN4 WiFiCh6 USB3A Storage LAN1 LAN2 LAN3 LAN4 WiFiCh11
| | |
| | |
Client A. Post Office Pi B. Client C.
192.168.1.y 192.168.0.x 192.168.3.z
So the NAS at Local Net Zero: 192.168.0.x can be reached both by
Client A at 192.168.1.y from Net One AND at the same time or later on from
Client C at 192.168.3.z from Net Two.
But the clients can not reach each other directly.
And second, both clients can also reach the InterNet Cloud, if you wants,
otherwise cut the WAN connection of the Main Router Zero for No InterNet.
For the subrouters you could use old ones almost every one has laying around.
With this 3 router solution both systems are behind their own router with NAT
and FireWall. You know every router mostly has a 4 port switch.
The advantage of a switch is it's intelligence above a stupid Hub that copies
all data to all ports, the switch only to the destination.
You can build the NAS with a Pi. For using USB3A storage take a Pi 4B as NAS.
For a Pi 4B you could choose between 1GB, 2GB, 4GB or 8GB internal memory.
Ofcourse you can use older Pi's and USB2A storage devices, like USB Sticks,
USB-HDD's, or USB-SSD's etc. If you do not have the money for a Pi 4B.
When WiFi is used too, give them another Channel outside of each reach,
so the Main Router on WiFi Channel 1, Sub Router 1 on WiFi Channel 6
and Sub Router 2 on WiFi Channel 11.
So a Pi ZeroW can hop to each WiFi router if it knows their (different or
equal) SSID and passwords. With this setup you are flexible enough I think.
If you are really paranoide, you could unplug the UTP/RJ45/LAN cable between
Router 2 and Client C when you UpLoad a file from Client A via Router 1 to
the NAS.
Then unplug the UTP/RJ45/LAN cable between Router 1 and Client A
before you DownLoad a file from the NAS to Client B via Router 2.
Then the clients can absolutely never reach each other,
because you split their connections in time, i.e. the one after the other.
They are never OnLine at the same time, if you are strict in your handlings.
Or you can make a technically time shift for it.
I.e. the one A only in the mornings, the other C only in the afternoons ;-)
You can organize that by entering time limits in their respective routers
based on the MAC-adres of the sytems A and B.
Eventually you gave them both more timeslots around each day,
enough for sending the largest file possible.
The same is possible for internet connection.
Ask for the MAC-adress with "ifconfig" on each machine's Terminal window,
and use that MAC-adress as a filter in the routers.
That way you can give each machine a semi fixed IPv4 address at home,
but uses DHCP when on the move at computerclubs etc.
I have made a list of MAC-adresses and correspondig IPv4 adresses in my
FritzBox 7590 router behind the glassfibre to RJ45 EtherNet media converter.
So at home, all my machines allways have the same fixed IPv4 address with DHCP.
But remember, machine C can stil be infected with a virus in a file coming from
machine A via Post Office B.
So all your machines have to scan every received file first before passing
it on to the rest of that specific machine and their programs.
You have to update that antivirus database as much as possible,
also when no internet connection is used.
Every file can be vulnarable, especially from CD-Roms, but also USB sticks,
You never know tot wich infected machine that USB stick has been over the
years.
Even photo's from friends can be infacted.
Some users here are talking about a second RJ45 EtherNet connection.
That's also simply possible. I use an Eminent EM1010 USB2A from/to RJ45
EtherNet that works excellent on My Beagle Board, all Pi's including the Pi
ZeroW.
You may need a second RJ45 of WiFi EtherNet connection when you want to
built a media convertor, bridge or GateWay, or login to different nets.
That Eminent EM1010 USB2A from/to RJ45 EtherNet dongle works both with RISC
OS and Raspbian Linux on Beagle Boards and all Pi's.
Good luck with it at all.
You now have plenty solutions given by many people.
So stop whining, and start plugging and configuring routers.
Since 1984 I have many Acorn and RISC OS computers including a
Beagle Board XM and 9 Pi's.
2 x Pi 1B, 1B+, 2B, 3B, 3B+, 4B4GB, 4B8GB, ZeroW. 4 systems are permanently on.
A Pi 1B with RISC OS and !ROSBink for FidoNet, a Pi 4B4GB for AIS- and
GPS-data receiving and webbrowsing, a Pi 3B+ for AIS+GPS+ECDIS display and
webbrowsing, and my Acorn RiscPC (1994) as workstation for FidoNet, AcoNet
and InterNet e-mail. The Pi 1B+ is a second RISC OS machine for archiving
and testing. Except the FidoNet Pi, all others are used on the move at
RISC OS and Linux computerclubs in The Netherlands and Belgium.
Greetings from Henri at Arnhen.nl.
File: InetSetUpPi.gif
Length: 5687
[coded by RISC OS Attacher v1.05]
begin 644 InetSetUpPi.gif
M1TE&.#EA%0*"`/0``````!$1$2(B(C,S,T1$1%55569F9G=W=XB(1)F95:JJ
M9KN[=P#,`(B(B)F9F:JJJKN[N\S,B.[NJLS,S-W=W>[N[O___VEG8VEG8VEG
M8VEG8VEG8VEG8VEG8VEG8VEG8RP`````%0*"```%_R`@CF1IGFBJKFSKOG`L
MSW1MWWBN[WSO_T"39$@L&HN`HW+);#J?T*AT2JU:K]BL=LOM>K_@L#@LLB;'
MZ+1ZS6Z[W_"X?#XM2U;',WW/[Z\C"V&!?H2%AH5V``R+C(QZ1(^'DI.40P0!
M31$)$5(+`@&#E:*CI%2)C:B1=Z6LK6V730L`H4\&``JNN;JCIZB.>;O!PE>P
M$@L1FIM#"0#*$@H)"47'"YL"`H/5";C3T9Q#R;3AP^3E3KT,>*OF[.T2Q0$$
MGP`"@",%$@4``?3?`?K_1E03P8\`$00C0#WCQP_!$`7\1$AS1U$8.E60AF"L
MR)$4O`"X%#23P&Q320D1!O_@D\#/P+%KQP(80,8LD,B9"^))$#"`4\V=/2,0
M&-"Q**N+3,YL-,JT$#R'0P)(DQ5(WC>$G'1:,JCIV\]B)`F(G!A!YLX"G``U
M72L)Z1*E;.,ZQ<1R8EUCLUCN"Q`Q4`"H[PP:,S"4GU_!1)CM+4A2Q``$W^1*
MGN-6"=S)F./`LRL5K]\!T4)GM4O`H"R9T?)J30P`0>AM0Q8@&$`OL^TVE8&M
MN\T;S68BG:F^([K,0%32!G\^RPN6L$AN$0HHB.XU;^_K7Q*12*H1NW:;<,8IYYQT
MUFGGG7CFJ>>>?/;IYY^`!BKHH(06:NBAB":JZ*)NBL#HHY!&*NFDE%9JZ:68
M9JKIH(YNZNFGH(8JZJBDEFHJH9V>JNJJK+;JZJNPDIIJK+36:NNMN"9JP:Z\
M]NKKK\`&*^RPQ!9KK`4'Q#EKKLPVZ^RSMQXK[;345DOL_P')PKELJ09TZ^VW
MX(9K`;3DEFNNIKN>6R>VR@+`J@$-Q"OOO/3.2\&XZN:K[[Z#ILOOF^QJZ^ZJ
M\$Y@\,$()WQP!?C^Z_##$+OI[\,!O[DMJ04KK#'"#$?L\9\<8;=RQGRPV\;.<#$#`*0=!PRBPST2K[[.;0
M,!N-=--&`QVGTB!77:G(4S?@P--]`OV``Z"2W.;%;5X"I]D4/-!>1`,0'=$(
M;9P.X/T"`YG8W@+/!^@S`@0M'`%&TT8U
M[,TWWB;P!\A+=>;8._UXRIE+?ZCAGU>-=9O-"["U\-[S"0'N*-?MJ=@4D$T!
M[/]37>9*5P`!M"D>;_I$G%0RO=S%Z6X*.P`](+`\..E#?X\;0.70U[/I]4QK
M3VO9^$`(L_S!SP$]8Q_C(O
M2YL/V\0SHL5/?>W;U_LH($&?Q0]F+BNAY;9VP^BXH>QP:FZ47/``((]&+G(?`,A6
M'QO7QXB(02TG
MNT\P4Q^$\Z7U@">`R]V..N"C0)
MLBYSB^$+V-(WS:[&K'X0^$=05\G4[ZFNB6[]'U*S31+D&IYH.B>;3BUY@.P;4-O:IG`^D*@)R]PMD;-JX1SB1#
MQ3L?(<8KP,%;]D0K3;O49)^.:XG<+-U@-SUFXAG#'*GC5FTT1&V;XQ,7""5*X!O
MRHT@TGS3S="*Z.-9^7LC^@?1'*!'CI,9FHXAFBISI^A]#(#7%!B`_B``W=+`
M5]$85#3A'!"AJ4&;B".2,\N4RW,X.DAM+P-ZVCXD9X]GNN-PK+=._U]V.W66
M6U]+K)PJ#WU3&9NK'S2^,[I=KVK[GC?&^1'3WI#27Y1X*;?XPT%9%/),?1Z
M+[WL9V^GTR^*Y@2Q\Z-:SRW0AS[OAJ:]\(??)MNC/F:<9Q3O,4:!"CC_^="/
M/O2#3_SJE][XY5K^J!AF+>I;__OEQCZYM`_^\IO?5;O"EOK7S_[VN__]\(^_
M_.=/_[:?__[X9Q6RZL___OO___+G>?DW@/\$6(!_XC\&F(`*6(`(N(`.^(#?
MUX`0.($42'H26($8F('=MX$6((F."U;9#$$1RH<.((N
M&"N[(GTR.(,T6(,V>(,XB(,I6#+ZEX/29P`O&(2M$H,^6(1&>(1(^'P[V#H]
MV"(45L(3]LX*C8@$5X(10*(5B&"I4B(5F>(8VJ(7^
M4S-_!TM#E#918R=:^"9>"(9)$S6K]S604E5QN$&2A7B!PX8\](=\QX&>#1))@G>E@HCM9;.K2(_R,"2D,;JKA;;^)-JD=$M\-5UY!:3L9J,N--
M@C-?#AD[[`@G!!4UW79KD)*0D,*-WG,[!X`YK#97EU=OXS-JP%6.?G*.>I*.
M7QAM$_!%HUB$0?4R02F/1FB*-95A9=1L;E)12)9`&397T@60=IB*'(4R_S[4
M,D84=$*D-#WD1!P4=,%EE>WE4X^S#VV2<6_"9')%?%
M.&!38R_E;)T%5(O)F)W90W.G0H&))SQI.:#8DPZ@C@9SFJ+XD\X'CS_9)JH9
MF\TGF\XGF[+IFA6P,$F(E)6EE!(5<#]T0!@)C#]$4%0ID,@D.#P195<%4EIF
M1H+43B7'#Z(4#Z8T.R+`8G+YFYB63#P1D0H$/_:5=&;D)C.45V29=5$)9@?0
M<*OT#RBT.34&5;,$/#EU2LKU,D,1/?(02'D"U9E;U13B1!C@(E3(*!8T015$2]4Y):F+Q4C>70*&S@XR\M3A%UI2\
M!6:41IXNQ)$Q,S?:751#[@Q&+'YHLXU#S6DYDQ
M13GD0S7FE&685J95"EM_6J&0A%8G9WAVV@#[89PM!"<(E*CH9%!``ULF16K3
MQ:0>;NVD\)AJ/%8!"!G.C%3"CSE>C6O.3
MLAI;#["C])B4RXE3;/,R#"%(3(E)NE=\`7FD`]F0:05'!S=7;@.E$B66;^4X
MR<5S
M?(:M)"9D;'4)%:9'AO-8AQ8T*GD_4W5>%+H?8E5IE".PSOI3CO->&7=*/55K
M%*NI9U1J\95#W)I8O;1KJ^1AIRI]0564T&>:MWDY%>"RSF<\7T@XLSJKHYBR
MNSJLO3JLLKJK.IJ%-'N4Q?J;RPDSF*4[>H2GBOE7<#*+TFJ+/@:..J:MQY4^
M__NZ7".FD@WI8V93416EKI)4IIUUIHS%G8IEBT9#275Y0:+*-0JKE_0I.[FH
M2]#%K"E%L(QE/\FR>^
M6[V"$TM3.[PA&UCO-+=5N9[$N;7U-7;R,CS8
MPV"`]E?=>VLPG$Z`YG#CBV-OY"::YF#12T_A9%"JZ,*^F)?U%<*^:*KDP[AI
M:9Q:%5,L)KW;ZE9*-6F[]FYIXW"9*X.6$Y1#:;,MFW<+++.E6[,X.[,RFIHS
MR[.VZK//-P$2'+M#RV'R$S-?1V:S5FK.A&JF>K@#'*V].ZW#$\`=%+SC%6G<
MFG*+++%+C&3;T[[N*SM'>\/_-X0],3D]&"D_J;.1&;9CL84[TC:-'<9)+7,-
M7%.I)Q95)-5GX,9@YIJWY'NHX$.%`VB8\[Z:3\54^+-55*K?+
M,X8[S^0\AQ-0ELH/+\/,OE:U-DQOWFPXP_Q*<8RR\SD!ED.S067!$X!"KQJ4
M>NS`MGJC]2RS::7T7ARPI)"V5.3?(*NW>47C8Y[]
M,Z=-1*(-AYPM=Z]-DD;#M'"XDYJ+LK99HH[M@[39QP%I@VXRCP*H*B5\V=,Z
MALHMA_'`R"+,)SQIE*G:,[D*N]+-T)`]A99])YB]W-X])[BW#\^*CKE]W=&'
MHK!JWC/8T"RXW7;2W=\=WXTYVWT2W>IMR?`4KH3['>$8GF*[,C0_N$@'N(B
M/N(D7N(F?N$9GN))9`$GWN(N_N(P7N+%K>(T7N.)$H(VGN,Z7B(_N>&+NB$WNB*LNC>IRZ0/N..7NF#,ND1@^DJ
M:.FI+JA-(R5`0SHN+J:<[J@^[J
M@9+5(Y`MU+LIM'[GMF[KN"YW&8DRC=SKFO+KP;[L,+.KLI6'%IJAU1JU=FLGM[M=K[M[.[L?)*_AT.E\:2V
M^U%6[]:HSSU3V+[I[*[M[IYXMGT^6L5&ZTM$(QRX;+[OH][OR_[O>A+&/%10
MDWM;`L0/#==0/@)@:?U6_/N[E@-=Q7MB"[QP0[R
MZX5H,(-`>=:LFRJ6/:/%A:+L+B_L"B\HZ/8`ZA92@)I"-KR/>!7-$KORA][Q
M/]"W_]*4>]7JRVIC(-]\RR]WQ/Z'Z?*X`?^'D.Z6:>
M^(K_?FN_\(8O^(&^^)(_^8VOZH\/^77N])>_YH;>&XR^^8=_`(D^^J2_[J!_
M^*6?^G^N^:??^J]2ZZX?^Y8"^[)?^Y%"^[:?^XJ"^[K?^X7"^[X?_("R)L1?
1_,9__,B?_,J__,S?`R$``#L"
`
end
RISC OS filetype : 695 GIF
--- WimpLink 1.05p
* Origin: Henri's FidoNet SysOp (Test)Point on the i (2:280/1208.1)
|