Blame Manuals/Tcpi-ug/Connectivity/Dialup/policy.docbook

1c6890
<sect1 id="connectivity-dialup-policy">
1c6890
1c6890
    <title>Terms Of Usage</title>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-auth">
1c6890
    <title>About PPP Authentication</title>
1c6890
1c6890
    <para>
1c6890
        The credential required by the client computers to establish
1c6890
        dial-up connection with the server computer are always the
1c6890
        same. There is only one public username and password for all
1c6890
        client computers that must be used in order to establish
1c6890
        dial-up connection with the server computer. This information
1c6890
        is the following:
1c6890
    </para>
1c6890
1c6890
<screen>
1c6890
 ISP Name: projects.centos.org
1c6890
ISP Phone: +53043515094
1c6890
 Username: faith
1c6890
 Password: mail4u.2k10
1c6890
</screen>
1c6890
1c6890
    <para>
1c6890
        The client computer can use this information to establish
1c6890
        connection to the server computer using any telephone number
1c6890
        from 10:00PM to 12:00AM. Notice how there is only one
1c6890
        telephone line available (e.g., +53043515094) in the server
1c6890
        computer to receive incoming calls.  The number of telephone
1c6890
        lines directly affects the possibilities a client computer has
1c6890
        to establish connection with the server computer in an
1c6890
        environment where more than one client computer are struggling
1c6890
        among themselves to establish a dial-up connection with the
1c6890
        server computer.  To prevent this issue from happening, it is
1c6890
        innevitable for the server computer to provide more telephone
1c6890
        lines for incoming calls (at least one for each user the
1c6890
        server computer expects to receive incoming calls from).
1c6890
        Sadly, that is not possible at present time.
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-network">
1c6890
    <title>About PPP Networking</title>
1c6890
1c6890
    <para>
1c6890
        The simpliest configuration we can achive over the telephone
1c6890
        network involves two computers only where one computer would
1c6890
        be acting as server and another as client. In this
1c6890
        configuration, the client computer establishes connection to
1c6890
        the server to make use of internet services provided therein.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        When the client computer calls the server computer, the call
1c6890
        is attended by mgetty and then passed pppd to establish a PPP
1c6890
        conversation.  The first thing in the conversation is
1c6890
        authentication and if it passes then IPCP conversation takes
1c6890
        place to set IP addresses and start transmitting data over the
1c6890
        link. IP addresses need to be set when the Modem device is
1c6890
        configured (see 
1c6890
        linkend="connectivity-dialup-modem-config" />) or you can
1c6890
        leave it to the server computer to assign them for you
1c6890
        (assuming you are calling a server computer to establish
1c6890
        connection to it). If you are configuring a server computer,
1c6890
        then it is necessary that you set the IP address and netmask
1c6890
        of the IP network you are planning to set through a Modem
1c6890
        device (e.g., ppp0).
1c6890
    </para>
1c6890
    
1c6890
    <para>
1c6890
        Specifiying the IP information on the server computer is very
1c6890
        important, otherwise the network created may end up undefined
1c6890
        and this would provoke errors on data transmission.  When the
1c6890
        server computer doesn't set the network mask in the Modem
1c6890
        device configuration file, the 
1c6890
        class="daemon">pppd</systemitem> daemon would try to retrive
1c6890
        such information from the client computer and if the client
1c6890
        computer didn't specify either, the network recently created
1c6890
        would end up having a wrong network mask (e.g., 
1c6890
        class="netmask">255.255.255.255</systemitem>) which provokes
1c6890
        the network to fail when someone tries to transfer data
1c6890
        through it.
1c6890
    </para>
1c6890
1c6890
    <figure id="connectivity-dialup-policy-network-basic">
1c6890
    <title>Simple networking over telephone line</title>
1c6890
    <screenshot>
1c6890
    <screeninfo>Simple networking over telephone line</screeninfo>
1c6890
    <mediaobject>
1c6890
    <textobject>
1c6890
<screen>
1c6890
Provice-A PPP Server                          Province-A PPP Client
1c6890
--------------------------\             /--------------------------
1c6890
192.168.0.1/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.2/24
1c6890
--------------------------/             \--------------------------
1c6890
</screen>
1c6890
    </textobject>
1c6890
    </mediaobject>
1c6890
    </screenshot>
1c6890
    </figure>
1c6890
1c6890
    <para>
1c6890
        The <xref linkend="connectivity-dialup-policy-network-basic" />
1c6890
        describes the simpliest configuration we can implement for a
1c6890
        point-to-point connection. This configuration involves two
1c6890
        computers only, one acting as server (the server computer) and
1c6890
        other action as client (the client computer). The client
1c6890
        computer calls the server computer to establish a PPP
1c6890
        connection in order to use whatever internet service the
1c6890
        server computer provides. In the figure we can see that there
1c6890
        are two IP addresses involved (
1c6890
        class="ipaddress">192.168.0.1</systemitem> and 
1c6890
        class="ipaddress">192.168.0.2</systemitem>) inside the same
1c6890
        newtork (
1c6890
        class="netmask">255.255.255.0</systemitem>).
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        This configuration might be convenient for people in the same
1c6890
        location, near one another. Here, the client computer
1c6890
        establishes connection locally and can use whatever internet
1c6890
        service the server computer provides. Since the connection
1c6890
        lifetime is limited (see 
1c6890
        linkend="connectivity-dialup-policy-lifetime" />) and only two
1c6890
        peers can be connected at the same time (assuming only one
1c6890
        modem is attached to the server computer), the implementation
1c6890
        of some internet services like chat aren't a practical offer
1c6890
        for the server computer to provide.  However, internet
1c6890
        services like e-mail fit perfectly on an environment where
1c6890
        more than one client computer will be struggling among
1c6890
        themselves for establishing connection with the server
1c6890
        computer (e.g., people connect to send/receive their e-mail
1c6890
        messages to/from the server computer).
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-network-extended">
1c6890
    <title>About Extending PPP Networking</title>
1c6890
1c6890
    <para>
1c6890
        Based on 
1c6890
        linkend="connectivity-dialup-policy-network" />, it is
1c6890
        possible to provide an extended version including several
1c6890
        server computers that may communicate between themselves to
1c6890
        distribute data collected by the client computers they serve
1c6890
        to. For example, consider the telephone network of a country
1c6890
        which is organized in provinces and each province is divided
1c6890
        in several municipalities. In such organization, it would be
1c6890
        possible to set one or more server computers for each province
1c6890
        and let near people to dial-up on them to use whatever
1c6890
        internet service they provide.  Later, it could be possible
1c6890
        for each server computer to establish a dial-up connections
1c6890
        with other near server computers in order to share information
1c6890
        from one province to another. This configuration is
1c6890
        illustrated in 
1c6890
        linkend="connectivity-dialup-policy-network-extended.fig-1" />.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        In this configuration, if someone in Province-A needs to send
1c6890
        a message to someone in Province-C (which is far away from
1c6890
        Province-A and making a telephone call there would imply a
1c6890
        considerable amount of money), there is no need (even it is
1c6890
        possible) for that person to realize a direct telephone call
1c6890
        from Province-A to Province-C. Instead, that person in
1c6890
        Province-A can send its messages to server A (the nearest
1c6890
        server on its location) making a local telephone call and
1c6890
        then, the server A would take care of delivering the
1c6890
        information using other servers following the same concept of
1c6890
        nearest delivery. 
1c6890
    </para>
1c6890
1c6890
    <figure id="connectivity-dialup-policy-network-extended.fig-1">
1c6890
    <title>Extended networking over telephone line</title>
1c6890
    <screenshot>
1c6890
    <screeninfo>Extended networking over telephone line</screeninfo>
1c6890
    <mediaobject>
1c6890
    <textobject>
1c6890
<screen>
1c6890
Provice-A PPP Server                          Province-A PPP Client
1c6890
--------------------------\             /--------------------------
1c6890
192.168.0.1/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.2/24
1c6890
--------------------------/      |      \--------------------------
1c6890
                                 |
1c6890
Provice-B PPP Server             |            Province-B PPP Client
1c6890
--------------------------\      |      /--------------------------
1c6890
192.168.0.3/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.4/24
1c6890
--------------------------/      |      \--------------------------
1c6890
                                 |
1c6890
Provice-C PPP Server             |            Province-C PPP Client
1c6890
--------------------------\      |      /--------------------------
1c6890
192.168.0.5/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.6/24
1c6890
--------------------------/             \--------------------------
1c6890
</screen>
1c6890
    </textobject>
1c6890
    </mediaobject>
1c6890
    </screenshot>
1c6890
    </figure>
1c6890
1c6890
    <para>
1c6890
        The more distant a telephone call is, the more expensive it
1c6890
        is. This way, to move information from one province to
1c6890
        another, server computers must be configured to send
1c6890
        information to the nearest province until reaching its
1c6890
        destination. For example, if you are in Province-A and want to
1c6890
        send an e-mail message to Province-D, the server computer
1c6890
        configuered in Province-A must sed the e-mail message to
1c6890
        Province-B, then server in Province-B must be configuered to
1c6890
        send such message to Province-C, and then C to D. This is
1c6890
        required because making a direct call from Province-A to
1c6890
        Province-D would be too much expensive.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        Since telephone calls are required to establish connections
1c6890
        between computers and each call costs money based on the
1c6890
        location and the destination, it is required to set a
1c6890
        convenction in this area, specially if you plan to realize
1c6890
        interprovincial telephone calls to interchange data with computer
1c6890
        servers on different provinces.
1c6890
    </para>
1c6890
    
1c6890
    <itemizedlist>
1c6890
    <listitem>
1c6890
    <para>
1c6890
        Do you make direct telephone calls to make direct data delivery?
1c6890
        — This configuration could be very expensive to maintain
1c6890
        (considering the telephone call distances), but data will be
1c6890
        delivered very fast to their destinations.
1c6890
    </para>
1c6890
    </listitem>
1c6890
    <listitem>
1c6890
    <para>
1c6890
        Do you call the nearest server computer and let it to deliver
1c6890
        your data to its destination? — This configuration could
1c6890
        be less expensive to maintain (considering the telephone call
1c6890
        distances), but data delivery will take much more time to
1c6890
        reach their destinations (and there is no way to be sure it
1c6890
        will do).
1c6890
    </para>
1c6890
1c6890
    </listitem>
1c6890
    </itemizedlist>
1c6890
1c6890
    <para>
1c6890
        Whatever calling schema be choosed, the server computers will
1c6890
        always talk through UUCP to transfer data from one place to
1c6890
        another. The server computers will operate with two IP
1c6890
        addresses each, unless you plan to connect one of the server
1c6890
        computers to a different network (Internet, maybe?). One IP
1c6890
        address would identify the server computer itself and the
1c6890
        other would identify the client computer establishing
1c6890
        connection to the server computer.  In this configuration it
1c6890
        is very importat that each server and client computer does
1c6890
        have one unique IP address. This way it would be possible to
1c6890
        move the information from one computer to another. Notice that
1c6890
        the number of PPP clients is directly related to the number of
1c6890
        telephone lines a server computer has configured to receive
1c6890
        incomming calls. If there is only one telephone line attached
1c6890
        to the server computer then, only one client computer will be
1c6890
        able to establish connection to that server computer.  Other
1c6890
        PPP clients will need to wait until the telephone line gets
1c6890
        free in order to establish connection with that server
1c6890
        computer.  On the other hand, if the server computer has two
1c6890
        (or more) attached telephone lines, it would be possible to
1c6890
        attend incoming calls from two (or more) PPP client at the
1c6890
        same time. As resume, we can say that: the more telephone
1c6890
        lines the server computer has attached in, the more
1c6890
        simultaneous connections that computer will be able to
1c6890
        attend/realize from/to other computers.
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-network-eth">
1c6890
    <title>About Extending PPP Networking With Ethernet</title>
1c6890
1c6890
    <para>
1c6890
        Assuming all the server computers with a Modem interface
1c6890
        attached have also one (or more) Ethernet interface attached
1c6890
        (which is very common nowadays), it would be possible to
1c6890
        extend the configuration described in 
1c6890
        linkend="connectivity-dialup-policy-network-extended.fig-1" />
1c6890
        creating one Ethernet network for each server and client
1c6890
        computer in the configuration. For this configuration to be
1c6890
        implemented it is also required one switch device for each
1c6890
        computer with having both the Ethernet and Modem interface, as
1c6890
        described in 
1c6890
        linkend="connectivity-dialup-policy-network-extended.fig-2"
1c6890
        />.
1c6890
    </para>
1c6890
1c6890
    <figure id="connectivity-dialup-policy-network-extended.fig-2">
1c6890
    <title>PPP+Ethernet networking over telephone line</title>
1c6890
    <screenshot>
1c6890
    <screeninfo>PPP+Ethernet networking over telephone line</screeninfo>
1c6890
    <mediaobject>
1c6890
    <textobject>
1c6890
<screen>
1c6890
Province-A PPP/ETH Server                     Province-A PPP Client
1c6890
--------------------------\             /--------------------------
1c6890
192.168.0.1/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.2/24
1c6890
--------------------------/      |      \--------------------------
1c6890
192.168.1.1/24 | Ethernet        |
1c6890
---------------------|----       |
1c6890
                     |           |
1c6890
              +--------+         |
1c6890
              | Switch |         |
1c6890
              +--------+         |
1c6890
                     |           |
1c6890
---------------------|--         |
1c6890
LAN1: 192.168.1.2-254/24         |
1c6890
------------------------         |
1c6890
Province-A ETH Clients           |
1c6890
                                 |
1c6890
Province-B PPP/ETH Server        |            Province-B PPP Client
1c6890
--------------------------\      |      /--------------------------
1c6890
192.168.0.3/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.4/24
1c6890
--------------------------/      |      \--------------------------
1c6890
192.168.2.1/24 | Ethernet        |
1c6890
---------------------|----       |
1c6890
                     |           |
1c6890
              +--------+         |
1c6890
              | Switch |         |
1c6890
              +--------+         |
1c6890
                     |           |
1c6890
---------------------|--         |
1c6890
LAN2: 192.168.2.2-254/24         |
1c6890
------------------------         |
1c6890
Province-B ETH Clients           |
1c6890
                                 |
1c6890
Province-C PPP/ETH Server        |            Province-C PPP Client
1c6890
--------------------------\      |      /--------------------------
1c6890
192.168.0.5/24 | Modem ~~~ TelephoneLine ~~~ Modem | 192.168.0.6/24
1c6890
--------------------------/             \--------------------------
1c6890
192.168.3.1/24 | Ethernet
1c6890
---------------------|----
1c6890
                     |
1c6890
              +--------+
1c6890
              | Switch |
1c6890
              +--------+
1c6890
                     |  
1c6890
---------------------|--
1c6890
LAN3: 192.168.3.2-254/24
1c6890
------------------------
1c6890
Province-C ETH Clients
1c6890
</screen>
1c6890
    </textobject>
1c6890
    </mediaobject>
1c6890
    </screenshot>
1c6890
    </figure>
1c6890
1c6890
    <para>
1c6890
        In this configuration, computers connected to the switch will
1c6890
        also be considered as client computers. It is necessary that a
1c6890
        coordination be implemented at time of setting IP addresses to
1c6890
        new server computers so no IP address be duplicated. The
1c6890
        illustration above, describes one main network (192.168.0/24)
1c6890
        which connects all the server computers using the telephone
1c6890
        lines as medium for data transmission. Using the Modem
1c6890
        interface it is possible to connect just one client computer
1c6890
        at a time (assuming only one modem is availalble in the server
1c6890
        computer).
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        The telephone line is used by client computers to establish
1c6890
        PPP connections with the server computer and by server
1c6890
        computers to interchange data with other server computers, as
1c6890
        well. On the other hand, the ethernet interface attached to
1c6890
        each server computer let the administrator of that server
1c6890
        computer to connect up to 252 computers simultaneously.
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-names">
1c6890
    <title>About Domain Names</title>
1c6890
    <para>
1c6890
        Domain names and host names are another important topic to
1c6890
        take care of, specially in a distributed network like those
1c6890
        described in 
1c6890
        linkend="connectivity-dialup-policy-network-extended" /> and
1c6890
        <xref linkend="connectivity-dialup-policy-network-eth" />.
1c6890
        Likewise IP address, names assigned to computers (both clients
1c6890
        and servers) must be unique. Each unique computer name is
1c6890
        associated to one unique IP address.  Based on the nature of
1c6890
        point-to-point connections, there is no way for the Province-A
1c6890
        to know names in Province-D unless they be defined on
1c6890
        Province-A. In this point-to-point configuration there isn't a
1c6890
        top level name resolution so it isn't possible to find out
1c6890
        such names. Each computer in this configuration must define
1c6890
        the names of their closest server computer only, using BIND
1c6890
        (without recursion) or the <filename>/etc/hosts</filename>
1c6890
        file, as prefered.
1c6890
    </para>
1c6890
1c6890
<screen>
1c6890
+------------------------+     +------------------------+       +------------------------+       +---------------------+
1c6890
| To: bob@d.domain.tld   |     | To: bob@d.domain.tld   |       | To: bob@d.domain.tld   |       |    Bob's mailbox    |
1c6890
| From: mat@a.domain.tld |     | From: ana@b.domain.tld |       | From: jef@c.domain.tld |       | (Final destination) |
1c6890
| Body: 500KB            |     | Body: 500KB            |       | Body: 500KB            |       |                     |
1c6890
+---|--------------------+     +---|--------------------+       +---|--------------------+       +------------------^--+
1c6890
    |                              |                                |                                               |
1c6890
----v--------------|<~~~~~~~~~>|---v----------------|<~~~~~~~~~>|---v----------------|<~~~~~~~~~>|------------------|---
1c6890
srv-1.a.domain.tld | 75Km Call | srv-1.b.domain.tld | 75Km Call | srv-1.c.domain.tld | 75Km Call | srv-1.d.domain.tld
1c6890
-------------------|<~~~~~~~~~>|--------------------|<~~~~~~~~~>|--------------------|<~~~~~~~~~>|----------------------
1c6890
relay to:          |   5 min   | relay to:          |   10 min  | relay to:          |  15 min   |
1c6890
srv-1.b.domain.tld |   500KB   | srv-1.c.domain.tld |   1.0MB   | srv-1.d.domain.tld |  1.5MB    |
1c6890
</screen>
1c6890
    
1c6890
    <para>
1c6890
        When the server computers call other server computers to
1c6890
        bridge data delivery, the server computer in Province-A
1c6890
        (srv-1.a.domain.tld) will never know that there is a server
1c6890
        computer on Province-C (srv-1.c.domain.tld) or Province-D
1c6890
        (srv-1.d.domain.tld), but in Province-B (srv-1.b.domain.tld)
1c6890
        only, its nearest location.  So, when a message is sent from
1c6890
        srv-1.d.domain.tld to the server computer in
1c6890
        srv-1.d.domain.tld, the server computer in srv-1.a.domain.tld
1c6890
        contacts its nearest server computer (i.e.,
1c6890
        srv-1.b.domain.tld) and delivers to it all messages sent to
1c6890
        srv-1.d.domain.tld. Later, since srv-1.b.domain.tld doesn't
1c6890
        know about srv-1.d.domain.tld server either, it delivers all
1c6890
        messages directed to srv-1.d.domain.tld to its nearest server
1c6890
        computer (i.e., srv-1.c.domain.tld).  Later, the server
1c6890
        computer in srv-1.c.domain.tld, which knows about
1c6890
        srv-1.d.domain.tld, delivers to it all the messages it has for
1c6890
        it. Notice that, in order for this configuration to work, it
1c6890
        is required that all the server computer administrators do
1c6890
        work syncronized to garantee a well defined route for messages
1c6890
        to follow.  Otherwise, if one of the server computers in the
1c6890
        path creates a route for a server computer that doesn't exist
1c6890
        (or doesn't define a route at all), the information will never
1c6890
        reach its destination when such computer is acting as a bridge
1c6890
        between the origen and the target server computer.
1c6890
    </para>
1c6890
1c6890
<screen>
1c6890
+------------------------+             +---------------------+
1c6890
| To: bob@d.domain.tld   |             |    Bob's mailbox    |
1c6890
| From: mat@a.domain.tld |             | (Final destination) |
1c6890
| Body: 500KB            |             |                     |
1c6890
+--|---------------------+             +------------------^--+
1c6890
   |                                                      | 
1c6890
---v---------------------|<~~~~~~~~~~>|-------------------|---
1c6890
srv-1.a.domain.tld       | 225Km Call | srv-1.d.domain.tld
1c6890
-------------------------|<~~~~~~~~~~>|-----------------------
1c6890
relay to:                |   5 min    |
1c6890
srv-1.d.domain.tld       |   500KB    |
1c6890
</screen>
1c6890
1c6890
    <para>
1c6890
        When the server computers make direct telephone calls (no bridge
1c6890
        in-between is used to transfer data), the server computer in
1c6890
        Province-A (srv-1.a.domain.tld) contacts the server computer
1c6890
        in Province-D (srv-1.d.domain.tld) making a direct telephone call
1c6890
        to it. In this configuration, the telephone call might cost more
1c6890
        than a bridged configuration where several smaller telephone calls
1c6890
        are dialed between the data origin and the data destination;
1c6890
        or less, considering that when server computers in a bridged
1c6890
        configuration interchange data they may move data accumulated
1c6890
        from other server computers, while a direct telephone call would
1c6890
        transmit data from one server computer to another without
1c6890
        intermediate steps. There is no need to overload the server
1c6890
        computers with foreign data when each server computer could
1c6890
        call themselves to transfer data directly.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        The elapsed time in a server-to-server conversation is
1c6890
        directly related to the amount of data that need to be moved
1c6890
        from one server to another. In a direct telephone call
1c6890
        configuration, telephone calls could result to be less
1c6890
        expensive than those in bridged configurations where server
1c6890
        computers may accumulate traffic from other server computers
1c6890
        in the path. The accumulation of traffic between server
1c6890
        computers increases the amount of time the last server
1c6890
        computer in the path before the final destination needs, in
1c6890
        order to transmit everything to the final destination. In a
1c6890
        bridged telephone call configuration, server computers acting
1c6890
        as bridges do act as servers as well and produce their own
1c6890
        traffic which is sumed to that one already accumulated in
1c6890
        them. This may provoke a heugh traffic in a server-to-server
1c6890
        conversation (remarkably on the last destination before the
1c6890
        final destination), that could be potentially increased with
1c6890
        each new server computer added to the string of server
1c6890
        computers acting as bridges one another.
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-policy-lifetime">
1c6890
    <title>About Established Connection Lifetimes</title>
1c6890
1c6890
    <para>
1c6890
        The server computer restricts the lifetime of established
1c6890
        Modem connections to 15 minutes from the establishment moment
1c6890
        on.  Once the connection has been established, if the link is
1c6890
        idle for 1 minute, the server computer will also close the
1c6890
        established connection to free the telephone line.  This
1c6890
        control can be implemented through the
1c6890
        <option>maxconnect</option> and <option>idle</option> options
1c6890
        inside the <application>pppd</application>'s configuration
1c6890
        file.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        The server computer will attend incoming calls from client
1c6890
        computers every night from 10:00PM to 12:00AM. Outside this
1c6890
        range of time, the telephone could be answered by somebody,
1c6890
        not the computer. This control can be implemented through a
1c6890
        cron job and the <filename>/etc/nologin.ttyxx</filename> file;
1c6890
        where ttyxx represents the device name of your modem (e.g.,
1c6890
        <filename>/etc/nologin.ttyACM0</filename> would prevent the
1c6890
        Modem device installed in <filename>/dev/ttyACM0</filename>
1c6890
        from answering calls).
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
    <sect2 id="connectivity-dialup-services">
1c6890
    <title>About Supported Services</title>
1c6890
1c6890
    <para>
1c6890
        The implementation of services that required persistent
1c6890
        connections (e.g., <application>chats</application>) should
1c6890
        not be considered as a practical offer inside the server
1c6890
        computer.  Instead, only asynchronous services (e.g.,
1c6890
        <application>e-mail</application>) should be supported. This
1c6890
        restriction is required to reduce the connection time demanded
1c6890
        by services. For example, consider an environment where you
1c6890
        connect to the server computer for sending/receiving e-mails
1c6890
        messages and then quickly disconnect from it to free the
1c6890
        telephone line for others to use.  In this environment, there
1c6890
        is no need for you and other person to be both connected at
1c6890
        the same time to send/receive e-mail messages to/from each
1c6890
        other.  The e-mails sent from other person to you will be
1c6890
        available in your mailbox the next time you get connected to
1c6890
        the server computer and use your e-mail client to send/receive
1c6890
        e-mail messages.  Likewise, you don't need to be connected to
1c6890
        the server computer in order to write your e-mail messages.
1c6890
        You can write down your messages off-line and then establish
1c6890
        connection once you've finished writing, just to send them out
1c6890
        and receive new messages that could have been probably sent to
1c6890
        you.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        Another issue related to e-mail exchange is the protocol used
1c6890
        to receive messages. Presently, there are two popular ways to
1c6890
        do this, one is through IMAP and another through POP3.  When
1c6890
        you use IMAP protocol, e-mail messages are retained in the
1c6890
        server computer and aren't downloaded to client computer.
1c6890
        Otherwise, when you use POP3 protocol, e-mail messages are
1c6890
        downloaded to the client computer and removed from server
1c6890
        computer. Based on the resources we have and the kind of link
1c6890
        used by the client computer to connect the server computer,
1c6890
        using POP3 is rather prefered than IMAP. However both are made
1c6890
        available.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        Assuming you use IMAP protocol to read your mailbox, be aware
1c6890
        that you need to be connected to the server computer.  Once
1c6890
        the connection is lost you won't be able to read your messages
1c6890
        (unless your e-mail client possesses a feature that let you
1c6890
        reading messages off-line). Moreover, you run the risk of
1c6890
        getting your mailbox out of space. If your mailbox gets out of
1c6890
        space, new messages sent to you will not be deliver to your
1c6890
        mailbox.  Instead, they will be deferred for a period of time
1c6890
        (e.g., about 5 days when using
1c6890
        <application>Postfix</application> defaults) hoping you to
1c6890
        free the space in your mailbox to deliver them.  If you don't
1c6890
        free space on your mailbox within this period of time, the
1c6890
        deferred e-mails will be bounced back to their senders and you
1c6890
        will never see them.  On the other hand, assuming you are
1c6890
        using POP3 protocol to read your mailbox, you always keep your
1c6890
        mailbox free to receive new e-mails messages and keep them for
1c6890
        you until the next time you establish connection with the
1c6890
        server computer and download them to your client computer
1c6890
        using your e-mail client.
1c6890
    </para>
1c6890
1c6890
    <para>
1c6890
        The information generated inside the server computer is
1c6890
        isolated from Internet. This way, any information generated
1c6890
        inside the server computer will be available only to people
1c6890
        connected to the same network the server computer is connected
1c6890
        to. For example, don't ever expect to send/receive e-mails
1c6890
        to/from Internet e-mail accounts like Gmail or Yahoo, nor
1c6890
        visiting web sites like 
1c6890
        url="http://www.google.com/">Google</ulink> or 
1c6890
        url="http://www.wikipedia.org/">Wikipedia</ulink> either. For
1c6890
        this to happen, it is required an established connection
1c6890
        between the server computer you are establishing connection
1c6890
        through and the Internet network those services are available
1c6890
        in. Without that link, it is not possible to direct your
1c6890
        requests to those sites.
1c6890
    </para>
1c6890
1c6890
    </sect2>
1c6890
1c6890
</sect1>