Linux-Networking Digest #792, Volume #9 Wed, 6 Jan 99 00:13:44 EST
Contents:
Re: Telnet as root (Lew Pitcher)
Re: When a packet hits a pocket..... (Matt Kressel)
PPTP from NT4 through RH5.1 Firewall ("Hervey Wilson")
Re: RedHat 5.2 and pcmcia question? (David Hinds)
SWBell PPP/PAP/CHAP/Whatthehell? RH 5.0 ([EMAIL PROTECTED])
Re: named.boot & hosts files - are these correct use of (Vincent Zweije)
Re: Namensaufl�sung bei Modemverbindung (Vincent Zweije)
Re: ppp and dynamic dns allocation (Vincent Zweije)
Re: routing has me stumped (Vincent Zweije)
netatalk almost.... (Brian Gilman)
Re: Need advice on what network cards to buy (Jason P. Holland)
Re: linux -> windows -> internet (Jason P. Holland)
Re: Shell Scrip for Telnet (James Reprogle)
Re: SAMBA Linux to NT ("Darrell Gallion")
Mars Server ("Jeff Lapsley")
pppd not activating modem (T.L. (Terry Branscombe))
Re: 2 Netze �ber das Intenet verbinden (Vincent Zweije)
Re: Emacs! Re: Easy UNIX editor (Richard Slobod)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Lew Pitcher)
Subject: Re: Telnet as root
Reply-To: [EMAIL PROTECTED]
Date: Tue, 05 Jan 1999 19:55:00 GMT
On Wed, 06 Jan 1999 18:44:11 GMT, [EMAIL PROTECTED] (Jason P. Holland) wrote:
>On Tue, 5 Jan 1999 08:23:03 +0200, "Bertie Price"
><[EMAIL PROTECTED]> wrote:
>
>>To telnet as root:
>>First telnet as a normal user -
>>Do a "ps a" on the linux box and see what tty you came in on.
>> eg "ttyp0"
>>Now edit /etc/securetty and add "ttyp0" to the bottom of the file.
>>You should now be able to telnet as root.
>>
>>
>>
>>
>
>Huh? What flavor of linux are you running? I've never heard of this
>before.
>
I don't know what flavour of Linux bertie is running, but
telnet works in the described manner in the Slackware 3.3 distribution.
Lew Pitcher
System Consultant, Integration Solutions Architecture
Toronto Dominion Bank
([EMAIL PROTECTED])
(Opinions expressed are my own, not my employer's.)
------------------------------
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: When a packet hits a pocket.....
Date: Tue, 5 Jan 1999 18:05:43 GMT
Troutman wrote:
>
> I am preparing a linux (RH 5.2) box to use as an edge device at a new
> IPX. Basically just a router. It will be handling a great deal of
> voice over IP traffic. Unfortunately V/IP traffic averages between 23
> and 53 bytes. Very small. Which means the box may need to handle over
> and above 20,000 packets per second.
>
> I am building the machine as a p2 400 128 Mb ram. Any idea what kind of
> traffic the latest kernel will support? The ether cards on both sides
> will be 3com 10/100. It will be routing traffic across a microwave link
> to an Ascend Max 6k series box. I know the Ascend box can handle
> it....but can Linux?
>
> If a reconfiguration of the kernel is in order - what would help
> maximize small packet throughput?
>
Firstly, the minimum TCP/IP packet size is 40 bytes (IP header + TCP
header), so I guess you mean just the data. At 20,000 packets per
second with a minimum of say 60 bytes per packet, thats 1,200,000 or
over a megabyte per second.
Seems like a router is what you really need here, but since you asked...
Things to make sure you have:
1) 100 MHz CPU bus - a must
2) 100 MHz SDRAM - a must
3) 100 MHz ethernet card
Things to do with the kernel:
1) Optimize as router not host
2) Remove ALL unneccessary drivers
3) Turn OFF IP accounting and packet logging.
Thridly, I must ask: Why use a machine as a router? You do not gain
anything by converting a machine into a router. A dedicated piece of
hardware would most certainly do a better job. After all the packet has
to come in over ethernet, decoded, passed through the kernel, recoded
and passed over the next ethercard. Not to mention arp lookups. Seems
like a router would do you a world of good. If you need the logging,
then use a passive host, sniffing the network. In almost all cases, a
dedicated piece of hardware will do you better than software for this
type of thing.
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
From: "Hervey Wilson" <[EMAIL PROTECTED]>
Subject: PPTP from NT4 through RH5.1 Firewall
Date: Tue, 5 Jan 1999 18:56:08 -0800
I'm pretty new to both Linux and Unix in general, so be gentle...
I have succeeded in setting up a home network of NT / W98 machines connected
to a RH5.1 server that acts as my gateway to the Internet. The RH machine is
dual homed as I have an ADSL connection. I have configured:
- routing tables (using the route command, I also don't run routed or gated)
- IP forwarding
- IPFWADM for masquerading and firewall
Everything works very well indeed for general internet access from all the
machines on my home network. However, I also need to establish a PPTP
connection from my NT machine to my office via the RH server. When I try to
do this I cannot get my password validated on the PPTP server - it seems
that I can establish the VPN connection but after that, PPTP packets don't
appear to make it through the RH machine onto the net. To verify my set up,
I direct connected my NT machine to the ADSL service and succeeded in
getting a connection immediately, so it seems certain that something on the
RH server is blocking PPTP.
Has anyone out there managed something like this ? Any words of wisdom ?
Thanks in advance,
Hervey.
------------------------------
From: [EMAIL PROTECTED] (David Hinds)
Crossposted-To: comp.os.linux.portable
Subject: Re: RedHat 5.2 and pcmcia question?
Date: 5 Jan 1999 20:22:43 GMT
Michael Kalisz ([EMAIL PROTECTED]) wrote:
: Hello everyone
:
: Does RedHat 5.2 support switching IP configuration using
: the cardctl scheme??
:
: Until now I've been running the SuSE distribution but wanted
: to try RedHat for a change. I discovered that RedHat uses
: a different setup for the pcmcia configuration then the
: one described in the PCMCIA-Howto.
:
: The "usual" is to have the configurations in /etc/pcmcia/network.opts
: so you can switch IP-configuration with cardctl.
: (Very handy, with only one file to edit)
:
: But the RedHat distribution seems to use the files
: in /etc/sysconfig/network-scripts instead.
To get scheme support, just install the /etc/pcmcia/network script
that comes with the original PCMCIA source code, rather than the one
provided by Red Hat.
-- Dave Hinds
------------------------------
From: [EMAIL PROTECTED]
Subject: SWBell PPP/PAP/CHAP/Whatthehell? RH 5.0
Date: Tue, 05 Jan 1999 19:46:18 GMT
Has anyone had any success dialing in to SouthWestern Bell?
I've tried PPP and PAP, neither seems to work.
If someone else has invented this wheel, I'd love to hear about it. If not,
I'll see what kind of damage I can do. 8)
John
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Vincent Zweije <[EMAIL PROTECTED]>
Subject: Re: named.boot & hosts files - are these correct use of
Date: 5 Jan 1999 14:27:55 +0100
In article <[EMAIL PROTECTED]>, Mark Worsdall
<[EMAIL PROTECTED]> wrote:
|| /etc/named.boot
|| ;
|| ; a caching only nameserver config
|| ;
|| directory /var/named
|| cache . named.ca
|| primary 0.0.127.in-addr.arpa named.local
|| primary 10.0.1.250 worsdall.demon.co.uk
|| primary 10.0.1.252 www.worsdall.home
|| primary 10.0.1.252 www.shadow.home
|| primary 10.0.1.252 www.hinwick.home
|| primary 10.0.1.250 www.shadow.win98
|| primary 10.0.1.250 www.worsdall.win98
/etc/named.boot is not the same as /etc/hosts! The third column contains
filenames.
Go read the DNS HOWTO.
Ciao. Vincent.
--
Vincent Zweije <[EMAIL PROTECTED]> | "If you're flamed in a group you
<http://www.xs4all.nl/~zweije/> | don't read, does anybody get burnt?"
[Xhost should be taken out and shot] | -- Paul Tomblin on a.s.r.
------------------------------
From: Vincent Zweije <[EMAIL PROTECTED]>
Subject: Re: Namensaufl�sung bei Modemverbindung
Date: 5 Jan 1999 14:40:24 +0100
In article <[EMAIL PROTECTED]>, Torsten Flammiger
<[EMAIL PROTECTED]> wrote:
|| aber sobald ich eine adresse via "lynx www......" aufrufe bleibt die
|| Verbindung stehen.
You have several syntax errors:
|| Der Name wird nicht aufgel�sst. Mache ich das ganze mit der IP-Adresse,
|| (wenn ich sie denn kenne) gelingts. In der /etc/resolv.conf steht
|| wahrheitsgem�� mein Nameserver:
|| search talknet.de
|| 195.252.128.53
You forgot the "nameserver" keyword:
search talknet.de
nameserver 195.252.128.53
|| Ein ping auf den Nameserver ist kein Problem aber sobald ich
|| "PING WWW.TALKNET.DE eingebe, tut sich nichts mehr.!!!
|| Die /etc/hosts.conf enth�lt: order hosts bind
|| multi on (kann doch auch nich
|| falsch sein)
You forgot a comma, and the file is called "/etc/host.conf", not
"/etc/hosts.conf":
order hosts,bind
multi on
|| Die /etc/hosts enth�lt richtigerweise nur 127.0.... localhost .
127.0.0.1 localhost
--
Vincent Zweije <[EMAIL PROTECTED]> | "If you're flamed in a group you
<http://www.xs4all.nl/~zweije/> | don't read, does anybody get burnt?"
[Xhost should be taken out and shot] | -- Paul Tomblin on a.s.r.
------------------------------
From: Vincent Zweije <[EMAIL PROTECTED]>
Subject: Re: ppp and dynamic dns allocation
Date: 5 Jan 1999 14:48:16 +0100
In article <[EMAIL PROTECTED]>, Filip Hosten
<[EMAIL PROTECTED]> wrote:
|| Is there a place in the ppp-scripts to indicate dynamic dns allocation?
||
|| Normally each time I dialup to a different isp the /etc/resolv.conf has to
|| be changed. I know that Kppp is doing the change but somethimes i have
|| problems with kppp ( i know I am still using kde b4)
You could try doing some scripting in /etc/ppp/ip-up, to modify
/etc/resolv.conf. See the pppd manual. Vincent.
--
Vincent Zweije <[EMAIL PROTECTED]> | "If you're flamed in a group you
<http://www.xs4all.nl/~zweije/> | don't read, does anybody get burnt?"
[Xhost should be taken out and shot] | -- Paul Tomblin on a.s.r.
------------------------------
From: Vincent Zweije <[EMAIL PROTECTED]>
Subject: Re: routing has me stumped
Date: 5 Jan 1999 15:31:57 +0100
In article <76qd9g$b76$[EMAIL PROTECTED]>, Neil Robinson
<[EMAIL PROTECTED]> wrote:
|| I have 2 network cards in the firewall machine. The first (eth0) is
|| connected to the internal 100MB network. The second (eth1) is connected to
|| a Cisco 2503 router via a crossover cable. The Cisco ethernet side has the
|| address 193.123.234.145. My IP network as provided by my IP is
|| 193.123.234.144/24. The eth1 device is assigned 193.123.234.146. The eth0
|| device is assigned 192.168.2.60. The rest of the internal network is using
|| various addresses from the 192.168.2.0 net range. From the firewall machine
|| I can ping the 192 network and also the Cisco. From the internal network I
|| can also ping the eth1 card. Unfortunately, I can't ping the Cisco from the
|| internal network. I have set up the routing table using the route command,
|| but it doesn't appear that anything is being routed from the 192 network to
|| the 193 network other than to the single card on the firewall. I am at a
|| complete loss here, since it seems that this is the only problem left
|| standing in the way of everything working (at least until I start
|| configuring the packet filtering rules and the squid stuff ;-)
||
|| The routing table is show below:
||
|| Kernel IP routing table
|| Destination Gateway Genmask Flags Metric Ref Use Iface
|| 193.123.234.144 * 255.255.255.240 U 0 0 5 eth1
|| default 193.123.234.145 255.255.255.240 UG 0 0 0 eth1
|| 192.168.2.0 * 255.255.255.0 U 0 0 6 eth0
|| loopnet * 255.0.0.0 U 0 0 5 lo
Your default route must have mask 0.0.0.0.
It is unclear whether you can route the entire 193.123.234.144/24 directly
to your eth1 interface. Since you're talking about a crossover cable,
I think only the Cisco is directly reachable. If so, you need a host
route to the Cisco, not a network route.
With these two changes, you get:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
193.123.234.145 * 255.255.255.255 UH 0 0 5 eth1
^^^ ^^^ ^
192.168.2.0 * 255.255.255.0 U 0 0 6 eth0
loopnet * 255.0.0.0 U 0 0 5 lo
default 193.123.234.145 0.0.0.0 UG 0 0 0 eth1
^^^^^^^
I presume the Cisco does not do IP masquerading. This means that your
firewall will have to do this, because the 192.168.2.0/24 network is
not known by or beyond the Cisco.
Good luck. Vincent.
--
Vincent Zweije <[EMAIL PROTECTED]> | "If you're flamed in a group you
<http://www.xs4all.nl/~zweije/> | don't read, does anybody get burnt?"
[Xhost should be taken out and shot] | -- Paul Tomblin on a.s.r.
------------------------------
From: Brian Gilman <[EMAIL PROTECTED]>
Subject: netatalk almost....
Date: Tue, 05 Jan 1999 23:19:59 -0500
Reply-To: [EMAIL PROTECTED]
Hello!
I was wondering if someone could give me a quick and dirty way of
fixing my netatalk version 2.1.0-05 so that I can log in as someone
other than guest? I looked at the hamptons homepage and other places
but,I only get more confused as they talk because half the documentation
doesn't pertain to me! I'm using redhat 5.2.......Thanks!
Brian Gilman
------------------------------
From: [EMAIL PROTECTED] (Jason P. Holland)
Crossposted-To: comp.os.linux.hardware
Subject: Re: Need advice on what network cards to buy
Date: Wed, 06 Jan 1999 19:07:59 GMT
On Tue, 05 Jan 1999 05:05:32 GMT, [EMAIL PROTECTED] (Mars)
wrote:
>I will be buying another computer and want to network my existing one.
>The new box will mainly be running linux (debian 2.0 kernel 2.0.36)
>and the old box will be running win95.
>
>I want to use thinnet network (10base2) because I don't want to buy a
>hub for a 10baseT network.
>
>I will be using the linux box as a gateway/router/proxy for a modem
>connection to my ISP (via ip masqarading (sp?)) and in a not so
>distant future i'll be getting (hopefully) a cable modem connection
>with rogers@home.
>
>Having said that what is a good, cheap or mid priced NIC card that I
>could use with linux with this set up. Should I go with 3com cards
>(just for the brand name?) or some generic cheapo one.
>
You want a card that will work with any operating system, get a 3Com
PCI card. They are a little more expensive, but they are worth it
when it comes to compatibility. Otherwise, any PCI card that is not
plug and pray will work fine. I had good success with Realtek PCI
cards. Less than $40 bucks for a PCI 10mbit card.
Jason
------------------------------
From: [EMAIL PROTECTED] (Jason P. Holland)
Subject: Re: linux -> windows -> internet
Date: Wed, 06 Jan 1999 19:03:55 GMT
On Tue, 05 Jan 1999 03:59:19 -0600, Todd Smith <[EMAIL PROTECTED]>
wrote:
>i have an ethernet network set up between my linux box and windows95. I
>know i should make my linux box connect to the net instead of windows,
>but right now it's linux -> windows -> net. so my two computers can ping
>each other, windows can telnet to linux, linux can get to windows (with
>a rejection, but at least it can get there). I suppose i need a proxy
>server on win95, so any suggestions on how to do that? if you insist on
>making me get linux to dial the net, i would need help on setting up
>either a Diamond Multimedia SupraExpress 336i PnP Voice modem or a
>NewCom 56ifxvC Internal Voice modem. either way, i'd like help. thanks.
>
You need to setup your linux box to do network address resolution, or
what's commonly called ip masquerading. Its fairly easy to setup, and
works great!! Basically, your linux machine acts as a gateway to the
internet, forwarding all requests. Here is the link to the howto for
setting it up
http://metalab.unc.edu/LDP/HOWTO/mini/IP-Masquerade.html
I tried to find the homepage, but they recently moved domains and I
could not find it. You won't be able to get that Diamond modem
working unless you can disable the Plug and Pray features. Try the
modem howto on setting up your modem
http://metalab.unc.edu/LDP/HOWTO/Modem-HOWTO.html
You won't be disappointed when you get ip masquerading running, its
very slick! Plus, you can easily add more machines to your network
and just point them to your linux gateway. Boom! On the net!
Good luck!!
Jason
------------------------------
From: James Reprogle <[EMAIL PROTECTED]>
Subject: Re: Shell Scrip for Telnet
Date: 6 Jan 1999 04:28:20 GMT
Have you tried a scripting language like expect?
Or more simply, why not use rlogin...
To do this you must have a .rhosts file at the far end in your home directory, and its
syntax should be:
near_end_machine_name username
You should be careful with this though, and make sure that you are the only one with
any permissions to this file. Also,
rlogin must be turned on from the inetd.conf file.
Jim
Reprogle
Chan Tin Lok wrote:
> Does anybody know how to write a shell script to automatically telnet to a system
>and enter the username and password?
------------------------------
From: "Darrell Gallion" <[EMAIL PROTECTED]>
Subject: Re: SAMBA Linux to NT
Date: Tue, 5 Jan 1999 23:28:30 -0500
Theres a registry setting to turn off encrypted passwords.
It's on the web, I found it with a search in the past.
greyman wrote in message ...
>You _need_ to use encrypted passwords. Here is part of my smb.conf file.
>
>Greyman
>[EMAIL PROTECTED]
>
>Jack J. Woehr wrote in message <[EMAIL PROTECTED]>...
>>I've got SAMBA on RedHat 5.1 working, I can list files
>>on the NT machine from Linux okay. But NT can't connect
>>to any of the shares on Linux. NT keeps telling me that
>>the user is not allowed to connect from that workstation.
>>
>>I've read the FAQ and tried every trick in the SAMBA
>>configuration I can think of. Any tips, please? TIA.
------------------------------
From: "Jeff Lapsley" <[EMAIL PROTECTED]>
Subject: Mars Server
Date: Tue, 5 Jan 1999 22:49:25 -0600
I am attempting to use the mars server to fileserve images for cloning
purposes...
How does Linux via mars compare to a dedicated Netware server? (This is
assuming no hardware difficulties, which I am finding is most DEFINATELY not
the case ;) ) I am talking from a performance standpoint only.
thanks!
Jeff
------------------------------
From: [EMAIL PROTECTED] (T.L. (Terry) Branscombe)
Subject: pppd not activating modem
Date: 5 Jan 99 21:07:43 GMT
I recently changed my modem from a 14.4 with an onboard com port to a
freebie no-name 28.8 PnP. I installed and configured isapnp using pnpdump
info and had minicom and seyon up and running no problem, and at the right
speed. Since I did not (at least initially) alter my options files and
chat scripts, I assume pppd is having trouble finding the PnP modem.
If anyone can suggest things to try, I'd really appreciate it.
--
+------------------+
Terrence Branscombe
[EMAIL PROTECTED]
------------------------------
From: Vincent Zweije <[EMAIL PROTECTED]>
Subject: Re: 2 Netze �ber das Intenet verbinden
Date: 5 Jan 1999 13:55:31 +0100
In article <[EMAIL PROTECTED]>, Alexander Beck [CDC]
Mister Pec <[EMAIL PROTECTED]> wrote:
|| Thanks. Do you know which port is used by a IP-IP Tunnel?
The IP tunnel protocols I mentioned are protocols. They come in the
place of TCP or UDP, or ICMP, which are protocols too.
Services (ports) are built on top of protocols. TCP and UDP support
services. The IP tunnel protocols I mentioned don't (as far as I know).
In short, the IP tunnel is *not* a service on top of a protocol, instead
it *is* a protocol.
Ciao. Vincent.
--
Vincent Zweije <[EMAIL PROTECTED]> | "If you're flamed in a group you
<http://www.xs4all.nl/~zweije/> | don't read, does anybody get burnt?"
[Xhost should be taken out and shot] | -- Paul Tomblin on a.s.r.
------------------------------
From: [EMAIL PROTECTED] (Richard Slobod)
Crossposted-To:
comp.os.linux.misc,comp.os.linux.portable,comp.os.linux.powerpc,comp.os.linux.setup,comp.editors
Subject: Re: Emacs! Re: Easy UNIX editor
Date: Tue, 05 Jan 1999 21:46:31 GMT
[followups trimmed to comp.editors as this thread is being rather
excessively crossposted]
CSO Visitor <[EMAIL PROTECTED]> wrote:
> > > > >Well, actually there is one bug/feature in vi that drove me nuts:
> > > > >To insert *ONE* character you have to type *THREE* keys: "i", the character,
> > > > >and "ESC".
> > > >
> > > > Inserting one character is a worst case proposition for vi. Whatever
> > > > time you lose in those rare instances is recouped 1000 times over
> > > > during normal use simply because it's so efficient in most other
> > > > respects.
> This is hardly a "rare instance"! I spend a good fraction of my vi
> time doing it. Is there a way to make a vi macro or somesuch to get
> around this problem?
Yes, you can map a key to " i_<esc>r" (without the quotes of course)
to get a insert-one-character command. Note that you have to enter
the "<esc>" by typing <Ctrl-V><Esc> if you're not using Vim (Vim will
accept the "<esc>" as-is).
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
