0. set the root password. I have left it blank like the idiot images so you can get right in. 1. Grab the ssh package from: http://linuxrouter.sourceforge.net/download/2.9.4/packages/ 2. follow the instructions when you type: help sshd 3. I have made a /root/.ssh directory. If you want to use keys instead of passwords copy your identity.pub to the authorized_keys file in this directory. 4. edit /etc/ssh/sshd_config - I have set my sshd up to only run on internal ports. You may want to change this file to allow external access 5. edit /etc/chatscripts/provider - change the number to that of your ISP. If your ISP does not support PAP you will have to make changes to this file so that you can login. 6. edit /etc/ppp/pap-secrets - input your username and password for your ISP. Again if your ISP does not support PAP, you can ignore this file. 7. edit /etc/ppp/peer/provider - change remotename to that of your ISPs terminal server - change the ipaddress pair to an actual pair of local:remote address pairs your ISP gives out. This will help avoid some conflicts with firewall rules in materhorn. - change username to your username you used in pap-secrets - you may want to change your modem device to a different ttyS device 8. edit /etc/pcmcia/config.opts - you may wish to add more IRQs to the skip list to avoid device conflicts. I added the two serial ports to avoid my serial terminal connection and my modem. - I also have all the options for ray_cs commented out becuase I don't think they are used since LRP doesn't have a modprobe program which is how a full Linux distribution provides them to the module. 9. edit /etc/pcmcia/network - this setup is based on the fact that the ray_cs card will show up as eth1. It is a very good bet it always will because it initialized only after the cardmanager is run but stranger things have happened. 10. edit /etc/pcmcia/network.opts - nothing should change here if you go with the default setup. but if you tinker with things pay attention to the DNS DOMAIN GATEWAY and BROADCAST variables. 11. edit /etc/named.conf - I have set this up pretty secure but I could be wrong. I based this setup on a Jpollman article on home DNS in the linux gazette issue. Also do not use this version of named for external DNS since it has known security holes. I have it listen only on my internal ports. Also you will have to change the forwarders entry to your ISPs DNS server since my DNS only does caching and serves local domains. I have left my server names and IP addresses in so that you can see some examples. 12. edit /var/named/db.local - I have left my server names and IP addresses in so that you can see some examples. 13. edit /var/named/db.1.168.192 - I have left my server names and IP addresses in so that you can see some examples. 14. edit /var/named/db.2.168.192 - I have left my server names and IP addresses in so that you can see some examples. 15. edit /etc/resolv.conf - you will want to change the search parameter to your isps domain. 16. edit /etc/inittab - you may want to comment out the one tty I have setup in this if you do not connect a keyboard or video adapter to your LRP box. (I do) - you will also want to examine the serial console device and settings so that they match your serial terminal or serial terminal program. Notes: They are four explicit assumptions in this setup. 1. you will use 192.168.1.* and 192.168.2.* networks. with the 2 network for communication between the router and laptop. you also allow all communication between the two. 2. My modem is on ttyS0 3. My serial terminal program is on ttyS1 with params 19200 8n1 using a vt102 4. your ISP uses PAP authentication one thing you will notice on initial bootup the sshd package will complain it is corrupt. This ok I have zeroed out a bunch of the ssh files to show you where they should be but not give away what mine are. :-) If you have questions you can email the linuxrouter list for general stuff. But if you think it is a specific problem to my images then mail me at mruelle@world.std.com. I am not an LRP guru so I may not know the answer but I was able to cobble this together with the help of the list.