Linux-Networking Digest #744, Volume #9 Sat, 2 Jan 99 02:13:50 EST
Contents:
Rebuilt server everything OK except routing? (James Knowles)
Help connecting Linux to Internet via LAN router (STaylor640)
GSM Nokia PPP connection (luigi raffo)
Re: After IP Masquerade done ?? (Philboyd Studge)
FDDI & High availability on Linux? (Detlef Orlowski)
ezppp problem (ericzwicky)
No ethernet on RH 5.2 -- SIOCSIFLAGS?? ("JMV")
Re: How can you get Linux to log into NT Server 4.0 ("Frederick W. Reimer,Sr")
Re: NT 4 and network problems - contd (JunkDTectr)
Re: ppp-go user permissions ("George")
Re: can't find my ethernet card ("George")
2nd PCI Ethernet Card Problem (Greg Bastian)
Re: Networking Problem - Stuckup Machine?!? ("Rod Martin")
Re: problems with X-modem-protocol using rzsz (Eckardt Augenstein)
Re: Why doesn't my ppp-on script work when su'ing ("Jose Antonio C. Baduria")
Re: NAT1000 vs. Sygate vs. NAT32 vs. Masq (Philip J. Koenig)
Re: cheops - what am I missing? (=?ISO-8859-1?Q?Bj=F6rn?= Elwhagen)
NOSPAM in addresses.. ("Michael Lee Yohe")
How to use 2 DNS servers ? (Philippe PAULEAU)
Re: tcp wrapper terribly slow ("Marc D. Behr")
Re: help on ipfwadm ("mcamou" >)
----------------------------------------------------------------------------
From: James Knowles <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Rebuilt server everything OK except routing?
Date: Sat, 02 Jan 1999 06:50:05 GMT
Hi!
I just replaced an old Linux server with a new dual PII machine. I put
RH 5.2 on it, put 2.1.129 SMP kernel on, copied the PPP and masquerading
stuff on, Samba file & print sharing on.
Everything is fast as can be with only one hitch. I can access the
outside world from the server (as I am now), but nothing gets forwarded
from other machines. They can talk to the server, but can't see the
outside world.
I assume that routing is broken? After re-reading NAG selections
regarding routing, nothing obvious pops up. I'm an experienced
programmer, but there's a lot of sysadmin stuff that I'll admit a great
deal of cluelessness.
I'm basicall looking for a clue, or a direction to head in.
The thing that I'm suspicious about is the routing table. It doesn't
look like what I saw on the old server.
/sbin/route says:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
slc3-tc.xmissio * 255.255.255.255 UH 0 0 0
ppp0
192.168.50.0 * 255.255.255.0 U 0 0 0
eth0
192.168.50.0 * 255.255.255.0 U 0 0 0
eth0
127.0.0.0 * 255.0.0.0 U 0 0 0
lo
default slc3-tc.xmissio 0.0.0.0 UG 0 0 0
ppp0
default therrindur.dynd 0.0.0.0 UG 0 0 0
eth0
where slc3-tc.xmissio... is the dial-up connection with my ISP.
therrindur.dynd... is my server.
The ip-up script sets up the masquerading. It hasn't changed from the
old:
#!/bin/sh
#
# $Id: ip-up,v 1.1 1996/01/31 21:25:59 alvar Exp $
#
# This script is run by the pppd after the link is established.
# It should be used to add routes, set IP address, run the mailq
# etc.
#
# This script is called with the following arguments:
# Arg Name Example
# $1 Interface name ppp0
# $2 The tty ttyS1
# $3 The link speed 38400
# $4 Local IP number 12.34.56.78
# $5 Peer IP number 12.34.56.99
#
# The environment is cleared before executing this script
# so the path must be reset
#
PATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin
export PATH
echo "Setting up firewall:"
#
# Remove the peer link as default gateway
#
route add default gw $5
#
# Add all modules
#
echo "Adding all modules"
modprobe -a ip_masq_*
#
# ipfwadm RULES
#
# By default DENY all services
#
echo "By default DENY all services"
ipfwadm -F -p deny
# ipfwadm -I -p deny
# ipfwadm -O -p deny
#
# Flush all commands
#
echo "Flush all commands"
/sbin/ipfwadm -A -f
/sbin/ipfwadm -F -f
/sbin/ipfwadm -I -f
/sbin/ipfwadm -O -f
#
# Setup IP packet forwarding to my local network
#
echo "Setup IP packet forwarding to my local network"
ipfwadm -F -a accept -m -S 192.168.50.0/24
#
# Allow local PPP
#
echo "Allow local PPP"
ipfwadm -I -a accept -b -S 192.168.50.0/24 -P tcp -W ppp0
#
# Accept FTP
#
echo "Accept FTP"
ipfwadm -I -a accept -b -S /0 20 ftp 1024:65535 -D /0 20 ftp 1024:65535
-P tcp -W ppp0
#
# Forward WWW connections to your web server
#
echo "Forward WWW connections to your web server"
ipfwadm -F -a accept -b -D /0 www -P tcp -W ppp0
#
# Forward RealAudio connections
#
ipfwadm -I -a accept -b -D /0 6970:7170 -P udp -W ppp0
ipfwadm -I -a accept -b -D /0 7070 -P tcp -W ppp0
#
# Forward PPP keys connections
#
#ipfwadm -I -a accept -b -D /0 11371 -P tcp -W ppp0
#
# You need a rule to block incoming connections from your PPP link:
#
echo "You need a rule to block incoming connections from your PPP link"
ipfwadm -I -a deny -P tcp -y -W ppp0 -o
# Masquerading rules
# /sbin/ipfwadm -F -a m -S 192.168.50.0/24 -D 0.0.0.0/0
#
# List out the current ruleset
/sbin/ipfwadm -F -l -n
/sbin/ipfwadm -I -l -n
/sbin/ipfwadm -O -l -n
/sbin/ipfwadm -A -l -n
echo "."
#
# Synchronize the clock with NIST.
#
echo "Synchronizing clocks."
/usr/sbin/netdate time_a.timefreq.bldrdoc.gov
time_a.timefreq.bldrdoc.gov time_a.timefreq.bldrdoc.gov
time_a.timefreq.bldrdoc.gov time_a.timefreq.bldrdoc.gov
time_a.timefreq.bldrdoc.gov time_a.timefreq.bldrdoc.gov
# last line
------------------------------
From: [EMAIL PROTECTED] (STaylor640)
Subject: Help connecting Linux to Internet via LAN router
Date: Sat, 02 Jan 1999 06:50:09 GMT
At our office we are running a Novell 4.11 network (IPX). We connect to the
Internet through an IPX/IP gateway. It forwards packets to our router, which
then go to the ISP.
I have set up a computer with RedHat Linux 5.1 on it. Kernel 2.0.35. I am
trying to connect to the Internet using our router, but I am not getting it to
work. This is what I do:
insmod eepro io=0x300 irq=10 . . . to connect the Intel Ethernet 10 card.
This seems fine.
ifconfig eth0 192.168.1.1 netmask 255.255.255.0
Then when I do ifconfig, it shows both lo and eth0, and eth0 is UP and
receiving packets. Good so far. I think I chose a proper IP address for my
machine to make it in the allowable range for Intranets.
route add -net 192.168.1.0
This should point to my computer. Linux accepts this and the routing table
looks like this:
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.1.0 * 255.255.255.0 U 0 0 0
eth0
127.0.0.0 * 255.0.0.0 U 0
0 0 lo
Then I need to connect to our router, which is 208.198.203.125. This is where
I run into trouble.
route add 208.198.203.125 results in SIOCADDRT: network is unreachable
So I route del and try again, this time trying
route add -net default gw 208.198.203.125 eth0
Then when I try to look at the routing table, it lists the first two lines and
freezes. I have to ctrl-c out.
Through various combinations, the best I have ever done is to ping the ISP's
WAN port, but nothing beyond that returns any packets to me.
BTW, our IPX/IP gateway connects to the router using a mask of 255.255.255.128.
As you can see, I know just enough to be dangerous, but not enough to
accomplish what I want. I have been through the network HOWTO and the
newsgroups, but I still can't figure it out. What am I missing here?
TIA
Steve
------------------------------
From: luigi raffo <[EMAIL PROTECTED]>
Subject: GSM Nokia PPP connection
Date: Sat, 02 Jan 1999 06:49:41 GMT
==============B2DD6D5FCF7FAD7AAF86B1C0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I'm trying to make under Linux a PPP connection through a GSM Nokia
6110 (or 5110) with a serial
interface. Under Win95, after installation of a proper software, a COM3
port is present and a standard modem is recognized on it (GSM is
physically connected to COM2!!!) perfectly working!
I wonder if someone knows a method to install it under Linux.
Thank you in advance
Luigi
--
Dr. Luigi RAFFO, PhD - Dept. of Electrical and Electronic Engineering
University of Cagliari, Piazza d'armi - I-09123 - CAGLIARI - ITALY
[EMAIL PROTECTED] [EMAIL PROTECTED] http://www.diee.unica.it/~luigi
tel: +39 070 675-5865 675-5859, 675-5889 fax: +39 070 675-5900
==============B2DD6D5FCF7FAD7AAF86B1C0
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<HTML>
I'm trying to make under Linux a PPP connection through a GSM
Nokia 6110 (or 5110) with a serial
<BR>interface. Under Win95, after installation of a proper software,
a COM3 port is present and a standard modem is recognized on it (GSM is
physically connected to COM2!!!) perfectly working!
<BR>I wonder if someone knows a method to install it under Linux.
<BR>Thank you in advance
<BR>Luigi
<PRE>--
Dr. Luigi RAFFO, PhD - Dept. of Electrical and Electronic Engineering
University of Cagliari, Piazza d'armi - I-09123 - CAGLIARI - ITALY
[EMAIL PROTECTED] [EMAIL PROTECTED] <A
HREF="http://www.diee.unica.it/~luigi">http://www.diee.unica.it/~luigi</A>
tel: +39 070 675-5865 675-5859, 675-5889 fax: +39 070 675-5900</PRE>
</HTML>
==============B2DD6D5FCF7FAD7AAF86B1C0==
------------------------------
From: Philboyd Studge <[EMAIL PROTECTED]>
Subject: Re: After IP Masquerade done ??
Reply-To: [EMAIL PROTECTED]
Date: Sat, 02 Jan 1999 06:51:25 GMT
you could use diald on the Linux box.
http://www.loonie.net/~eschenk/diald.html
Although doesn't the most recent version of ppp support dial-on-demand?
Anybody using it that way?
Joekie wrote:
>
> I have configured IP Masquerade on my Linux box and it work fine with my
> other Win95 Machine on LAN.
>
> By the way, It is posible to do this :-
>
> Can anyone tell me how to configure so that the modem dial when the client
> from Win95 get access to the Internet and the line drop if nobody get access
> to the Internet ???
>
> Thanks in advance ....
>
> Joekie Thong
------------------------------
From: [EMAIL PROTECTED] (Detlef Orlowski)
Subject: FDDI & High availability on Linux?
Date: Sat, 02 Jan 1999 06:50:36 GMT
I am searching for a high availability solution for a firewall with one
end in an fddi ring. Can somebody give me an idea where to look for that
or pass me some hints?
Thanks
Detlef
------------------------------
From: ericzwicky <[EMAIL PROTECTED]>
Subject: ezppp problem
Date: Sat, 02 Jan 1999 06:50:40 GMT
When I disconnect from my ISP with ezppp, and later try to reconnect,
the modem does dial. If I then cancel, and again try to reconnect, it
dials and connects. It does this every time without fail.
What should I look for?
Thanks,
Eric
------------------------------
From: "JMV" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: No ethernet on RH 5.2 -- SIOCSIFLAGS??
Date: Sat, 02 Jan 1999 06:50:44 GMT
I can't get my ethernet card to work on RH 5.2. It's an AT 2450 (AMD PCnet
PCI) and i'm using the pcnet32 driver. It worked on Caldera Open Linux.
When I startup Linux and type "ifconfig eth0" it reports all the correct
information. If I try to use netscape though, i get a TCP error message
(telnet won't work either). If I try to activate the card using netcfg (I
get this error whether it says it is active or not), the xterm window
reports something like unable to activate eth0 SIOCSIFLAGS Resources
unavailable. What does that mean?
Also now if I type "ifconfig eth0" i will either get "unknown device eth0"
or sometimes I get some info about eth0 but now all the IP, Gateway, info
has been set to 0.0.0.0...
One problem might be my SCSI adapter. It is assigned the same IRQ. Is there
a way to prevent Linux from recognizing / starting up my SCSI card. I would
like to avoid pulling it out right now if possible. What does that kernel
daemon do??? If I try and remove the SCSI module, save, and close it doesn't
work. When I re-open kerneld the scsi module is listed again.
Like I said. It all used to work using COL 1.2 and 1.3 . Shouldn't RH 5.2 be
able to handle this? Or should I just go back to COL 1.2?
Thanks.
JMV
P.S. I have the official RH 5.2 and I sent their tech support this question
2 days ago and I have yet to hear back from them......
------------------------------
From: "Frederick W. Reimer,Sr" <[EMAIL PROTECTED]>
Subject: Re: How can you get Linux to log into NT Server 4.0
Date: Sat, 02 Jan 1999 06:42:56 GMT
"Richard F. Jr." wrote:
>
> I have a Linux system happy :) and running S.u.S.E. Linux 5.3 with -
> kernel 2.0.36.SuSE
> with network support..... So how do I do it ? the interface is 10/100
>
> drop a line please,
> Rich
Not sure what you want to do. What do you mean by "login." NT has no
login. You can use smbclient to browse around the NT box and look at
the shares. Or you could use smbmount (I think, I havn't done this
always mounting FROM a MS box to a Linux box) to "permanently" mount a
NT share. What else can you do with NT? File and print sharing is
about it right? Not like you could run an application on it and display
it on a remote system!
Fred
------------------------------
From: [EMAIL PROTECTED] (JunkDTectr)
Crossposted-To: nz.comp
Subject: Re: NT 4 and network problems - contd
Date: Sat, 02 Jan 1999 06:45:01 GMT
In article <752mc7$amb$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] says...
>
> JunkDTectr wrote in message ...
> >NTWS has a little quirk on the install, you have to install
> >WITHOUT NETWORKING, when it asks about networking, tell it no.
> >Once the install is complete, go back and setup networking.
> >
> >I used to have problems if I tried to install and config
> >networking in 1 pass. Various sporadic problems are the
> >symptoms, I've had browser election problems that killed the
> >whole net and a format/complete reinstall was the only thing to
> >correct it.
> >
> >I never trust a machine that comes preloaded w/ NT and now always
> >follow the above procedure.
> >
>
> Problem continued.
>
>
> I have killed master browser on all machines except the NT machine. I am in
> the process of reinstalling win95 on every machine, gee i have better things
> to do.
>
> I am running netbui as the primary protocol on all machines, with tcp/ip as
> second.
>
> This morning my network was dead again, disconnecting the nt box off the
> network brought the network backup, reconnecting it killed it, rebooting the
> NT box fixed it, this is crazy!!!!!!
>
> Thing
I'd be inclined to reinstall NT. It is NTWS? Newer
distributions of NTServer w/ SP1 built in don't seem to have the
problem.
Oh, when you do it, only have one foot on the floor and chant
"hummm .... hummmmm ..... hummm". Throw some salt over your
shoulder for good measure.
------------------------------
From: "George" <[EMAIL PROTECTED]>
Subject: Re: ppp-go user permissions
Date: Sat, 02 Jan 1999 06:44:29 GMT
Try chmod on /etc/ppp/pppscript too :)
George
[EMAIL PROTECTED] wrote in article <7540ha$m17$[EMAIL PROTECTED]>...
> i have a small problem. my family uses 1 linux box. we have each had to
log
> in as root to run ppp-go. up until now that was no problem. i have
recently
> given accounts to my kids. in order to keep from confusing them, i would
like
> to be able to call ppp-go from an icon on my popup menus. i have tried
but
> can't quite figure it out.
>
> how do i change permissions on ppp-go? or is there an easy way to call
ppp
> from a shell? - i have tried to chmod on ppp-go, pppd, and pppd-2.X.
>
> we're running slack 3.5 on a 486/33.
>
> thanks in advance
>
> jay
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
>
------------------------------
From: "George" <[EMAIL PROTECTED]>
Subject: Re: can't find my ethernet card
Date: Sat, 02 Jan 1999 06:44:30 GMT
Read the /usr/src/linux/configuration.help file
George
Chad Cunningham <[EMAIL PROTECTED]> wrote in article
<v04102f03b29b6526a125@[128.146.110.24]>...
> This is driving me mildly crazy, and the people are coming tomorrow to
> install the cable modem. I had a generic DEC Tulip clone card. I compiled
> support for it into my kernel, rebooted, and it didn't get detected.
Well,
> I never could get win98 to work with it, so I figured it was just a bad
> card, so I went out and bought an SMC EzCard, which several people had
said
> worked great with linux. So I go to recompile my kernel, and there's no
> option for this card. So I guess and go for the SMC Ultra driver. Reboot,
> and it's still not found.
>
> So, am I just picking the wrong cards here? Is there a card that does
work
> well with linux? Is there something else I have to do to get it to work?
> The docs for installing ethernet cards really suck, they basically seem
to
> plug it in and go. I've got to be missing something here, but I have no
> idea.
>
>
>
> ************************************************************
>
> Chad Cunningham
> Guy Who Sold Out And Left Calculus&Mathematica at Ohio-State
> http://socrates.mps.ohio-state.edu
>
> ************************************************************
>
> "Power corrupts. Absolute power is pretty neat."
>
------------------------------
From: Greg Bastian <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,aus.computers.linux
Subject: 2nd PCI Ethernet Card Problem
Date: Sat, 02 Jan 1999 06:45:16 GMT
Hi All,
I have a RH 5.2 machine with two D-Link DFE-530TX 10/100 card, however,
I cannot get the machine to recognise the second card.
I have successfully had either card working, but not both.
I have an "append ether=0,0,eth0 ether=0,0,eth1" in my lilo.conf
I have
alias eth0 via-rhine
alias eth1 via-rhine
in my conf.modules.
On bootup, the eth0 is initialised, but I get a
Delaying Eth1 initialization
for the eth1 interface.
Any help available ?
Greg.
------------------------------
From: "Rod Martin" <[EMAIL PROTECTED]>
Subject: Re: Networking Problem - Stuckup Machine?!?
Date: Sat, 02 Jan 1999 06:44:33 GMT
tcpdump says nothing when the machine is not responding... but once I get it
going it says normal echo/responses. I installed samba so maybe that will
keep the network alive...
Thanks
Dave Calvin wrote in message <753sv3$rqo$[EMAIL PROTECTED]>...
>Rod Martin ([EMAIL PROTECTED]) wrote:
>: I know my problem is with m68k Linux but it might be a problem that
>: can be solved by a x86 linux techy.... Please help if you can.
>: Message is quoted from comp.os.linux.m68k.
>
>This is really just a guess, but maybe it's an ARP issue? The linux
machine
>isn't correctly getting ARP messages from other machines, unless they ping
>first. Then it works until the linux machine clears it's ARP cache, and
>the cycle continues. I'd get it so that ping isn't working. Let it keep
>pinging, then run 'tcpdump -i eth0'. Watch for any 'arp who-has' messages
>that aren't getting responses. Keep watching the tcpdump, then ping so
>that it works. See if anything different happens. If this is the case,
>I'm not sure why it would happen, but it's a start to narrowing down the
>problem.
>
>Dave
>
>
------------------------------
From: Eckardt Augenstein <[EMAIL PROTECTED]>
Subject: Re: problems with X-modem-protocol using rzsz
Date: Sat, 02 Jan 1999 06:45:08 GMT
In case anybody is interested in an answer: After a great random walk
Ifound out the fault was on my side: I just had to set the serieal comm. on
8bits/1stopbit/no parity and everything works fine ...
For an easy script-access to the serial port I took dcon (from
sunsite.unc.edu/pub/linux)
Eckardt Augenstein wrote:
> Anybody familiar with x-modem-file-transfer?
>
> All I want to do is downloading files with the X-modem-protocol from my
> modem's memory using e.g. a bash script or a terminal-programm which can
> be called with a script passed to it. So I triedto make rx work. It
> works fine called from minicom (but it seems impossible starting minicom
> directly with a script passed to it). So I tried to use rz directly from
> the bash and from seyon piping stdout and stdin to /dev/modem. Both
> causes the same problems. I get one block received, thats all. I found
> some hints that newer versions of szrz (I use 0.12b) don't work with
> stdout and stdin but uses files like /var/log/rzlog (but though I
> created theese files I can't sense any activities there). I read there
> are patches making rz working with stdout and -in again, but where? I
> also tried lrz (what the hell is the difference?) with same results.
> Does anyboy know how to
> - make rx work with seyon or bash
> - find another programm instead of rx
> - find any other solution for this task?
>
> Can anybody help?
>
> Thanks, Eckardt
------------------------------
From: "Jose Antonio C. Baduria" <[EMAIL PROTECTED]>
Subject: Re: Why doesn't my ppp-on script work when su'ing
Date: Sat, 02 Jan 1999 06:45:22 GMT
Hello Tim,
I think there's a problem with your $PATH. Anyway, try using "su - root"
when su'ing to root so
that it would also run the profiles of root. It's just as if you logged in as
root. I think this should work.
Regards
Tim Gibson wrote:
> If I run my ppp-on script on the local consol when logging in as root then
> it dials and connects perfectly. But when I telnet into my linux box, log
> in as a user, then su to root and try to run the ppp-onn scripts it does
> nothing. It just returns to the comman propt without even dialing hte
> modem. How can't I get it to dial when I su in?
------------------------------
From: [EMAIL PROTECTED] (Philip J. Koenig)
Crossposted-To: comp.dcom.modems.cable,comp.dcom.xdsl,microsoft.public.win98.networking
Subject: Re: NAT1000 vs. Sygate vs. NAT32 vs. Masq
Date: Sat, 02 Jan 1999 06:46:36 GMT
In article <74qt6j$1jco$[EMAIL PROTECTED]>, Kevin Martin
<[EMAIL PROTECTED]> writes...
> In article <[EMAIL PROTECTED]>, it says Dan Kegel
> <[EMAIL PROTECTED]> wrote:
>
> >Sygate installed easily, but it has wierd, wierd problems.
>
> It might help to know the version number. I'm using Sygate to connect a few
> nodes to a machine that's running DirecPC, which (in turn) I've only been
> able to run under a specific version of the Hughes Win95/98 DPC software.
>
> Except for some flakiness that forced me to use PASV mode with FTP, Sygate's
> been pretty good; it allows me to use Lotus Notes, for instance, which the
> proxy solutions such as Wingate won't do. I haven't had any problems using
> samba or Windows networking between the Sygate machine and the rest of the
> local net.
The issue of PASV mode is a common problem with dumb packet-filters; if
the router blocks all the high-numbered ports then it will require ftp
to be used in PASV (passive) mode. Stateful packet filters that look for
outgoing traffic and open incoming ports in response aren't subject to
that problem.
Phil
--
Philip J. Koenig The Electric Kahuna Organization [see below]
=================Computers & Communications for the New Millenium=============
References to my email address in this message have been modified to foil
address-collection robots. If you wish to send email, use the following
address by removing numbers and spaces: pjkunet64 @ ekahuna27 . c o m
------------------------------
From: =?ISO-8859-1?Q?Bj=F6rn?= Elwhagen <[EMAIL PROTECTED]>
Crossposted-To: comp.security.unix
Subject: Re: cheops - what am I missing?
Date: Sat, 02 Jan 1999 06:47:52 GMT
In comp.os.linux.networking Michael Howard <[EMAIL PROTECTED]> wrote:
> You got it to install? I can't. It keeps complaining about the gtk library
> version. I even compile and install the new versions but no luck. What
> version of gtk and glib did you use?
I'm using Debian Potato and i had to trick a bit to install it. I
symlinked all the .so.2 libs it wanted to the existning .so.3 ones.
Someone really oughta change the deps in cheops... ;)
I can't give any specific help since you haven't told us your
distribution and versions it complains about but you could always try my
method.
C'ya around!
Regards
// Marwin
--
Bj�rn Elwhagen
Student at Wexio University
Sweden
------------------------------
From: "Michael Lee Yohe" <[EMAIL PROTECTED]>
Subject: NOSPAM in addresses..
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Date: Sat, 02 Jan 1999 06:47:50 GMT
Gee, guys - I guess it's not really a known fact that common email gatherer
programs know to strip out "nospam" "antispam" and other "spam" references
from your addresses. Be a little creative or just lay out your email
address plain n' simple.
***************************************************************************
* Michael Lee Yohe Office: TH N318 *
* UAH ASPIRE System Administrator Office: 256-890-6904 *
* UAH CS Assistant Administrator Home: 256-828-2667 *
* Email: [EMAIL PROTECTED] Web: http://www.aspire.cs.uah.edu/mlyohe *
***************************************************************************
------------------------------
From: Philippe PAULEAU <[EMAIL PROTECTED]>
Crossposted-To: comp.protocols.tcp-ip.domains
Subject: How to use 2 DNS servers ?
Date: Sat, 02 Jan 1999 06:48:02 GMT
I have two interfaces on my linux system, one for my local network, the
other for the ouside internet.
I need to configure 2 DNS servers, dns.mydomain.com for local resolve
which is authoritative for mydomain.com, and the other for internet DNS.
But i don't want to be authoritative for mydomain.com.
The resolv.conf file doesn't seems to allow this.
So, what is the easiest way to do this ?
Do i have to use named and how i configure it ?
Thanks you for the time spent on the answer.
--
Paix sur terre aux hommes (et aux femmes) de bonne volonte.
PAULEAU Philippe \|/
[EMAIL PROTECTED] @ @
[EMAIL PROTECTED] o
-
-- ICQ# 5507655 ---------------------oOO-----OOo------------
------------------------------
From: "Marc D. Behr" <[EMAIL PROTECTED]>
Subject: Re: tcp wrapper terribly slow
Date: Sat, 02 Jan 1999 06:48:03 GMT
Thomi Hug wrote:
> hello
>
> im running a redhat 5.1 linux on my pc.
>
> every daemon who is running with tcp (wuftp, telnet, ...) is terribly slow. every
>other daemon like apache or
> samba work perfectly.
>
> when i connect to telnet via network, i have to wait about 2 minutes for the
>connect...
>
> help!!!
>
> thanks
>
> tom
Is DNS correctly configured (and working) on your system? Sounds like tcpwrappers is
trying to lookup who the
caller is and is waiting for a timeout.
Marc
--
Marc D. Behr [EMAIL PROTECTED]
PGP Key ID: 0x1F1920BC
Fingerprint20 = 7DC2 3B63 EEB4 9328 0D44 7AC6 7E73 BCBF 1F19 20BC
"Unibus timeout fatal trap program lost sorry"
- An error message printed by DEC's RSTS operating system for the PDP-11
------------------------------
From: "mcamou" <Mario Camou <[EMAIL PROTECTED]>>
Subject: Re: help on ipfwadm
Date: Sat, 02 Jan 1999 06:48:05 GMT
Eugen,
There are 2 problems:
1. The firewall rules are evaluated top-to-bottom and stop when you get
to the first rule that matches. You need to put your "deny" rules
before the "accept" rules.
2. You should use "A.B.C.D/255.255.255.255". If you use the netmask
you're using, you will deny access to the WHOLE network the host is in,
not just to the host.
Hope this helps,
-Mario Camou
On Tue, 15 Dec 1998 15:28:57 +0200 eugen neagoe <[EMAIL PROTECTED]> wrote:
>
> Hello,
>
> If there is an ipfwadm expert out there, please help me.
>
> I'm trying to set a blocking firewall on our network that will
> block access to/from a host. That is, all hosts on our network have
> unlimited access to the Internet, except this A.B.C.D host that
> must not be reached from the Internet and must not have access to
> the Internet.
>
>
> I figured the following rules will work, but they don't :
>
>
> # default policy: accept all traffic
> /sbin/ipfwadm -F -p accept
> /sbin/ipfwadm -F -a accept -P all -S 0.0.0.0/0 -D 0.0.0.0/0
>
> /sbin/ipfwadm -I -p accept
> /sbin/ipfwadm -I -a accept -P all -S 0.0.0.0/0 -D 0.0.0.0/0
>
> /sbin/ipfwadm -O -p accept
> /sbin/ipfwadm -O -a accept -P all -S 0.0.0.0/0 -D 0.0.0.0/0
>
> # deny access to/from A.B.C.D
> /sbin/ipfwadm -F -a deny -P all -S 0.0.0.0/0 -D A.B.C.D/255.255.255.224
> /sbin/ipfwadm -F -a deny -P all -S A.B.C.D/255.255.255.224 -D 0.0.0.0/0
> /sbin/ipfwadm -I -a deny -P all -S 0.0.0.0/0 -D A.B.C.D/255.255.255.224
> /sbin/ipfwadm -O -a deny -P all -S A.B.C.D/255.255.255.224 -D 0.0.0.0/0
>
>
> (A.B.C.D is the IP of the host to be blocked; it's a valid Internet IP)
> 255.255.255.224 is the netmask for the subnet A.B.C.D is on.
>
>
> Can you tell me what's wrong ?
> Thank you,
>
> --
> eugen
>
> -----BEGIN PGP PUBLIC KEY BLOCK-----
> Version: 2.6.2i
>
> mQCNAzXb6hwAAAEEANiE5gOeGbgKZ3c0IwF1vi1rv9k7HldXx41mrg9Qnyr/AWfZ
> uKmlAMqfaW7BpYuDUQ1xLmfcdCIJJJjW9nIxSn92y/G0oruEb98yJPrRz1GiEsCd
> CyhwRiDQ0Ij4XwZp4vyoVQxon4KfGWnHOUKevLOgn66/m8B6Or51EosyD0bxAAUT
> sAGHtB1ldWdlbiBuZWFnb2UgPGVuZWFnb2VAY3RpLnJvPrABAw==
> =J3o2
> -----END PGP PUBLIC KEY BLOCK-----
--
Surf Usenet at home, on the road, and by email -- always at Talkway.
http://www.talkway.com
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
