Linux-Networking Digest #228, Volume #10 Wed, 17 Feb 99 05:13:47 EST
Contents:
Re: udp time service not working correctly (Villy Kruse)
Private IP network timeout (Jeremy Randall)
bootp error (Yehia Mohsen Ibrahim)
Re: Linux VPN with Novell Netware (Raymond Doetjes)
Re: Squid cache chained to NT proxy (help!) (Raymond Doetjes)
Re: Remote Access Server (Matt Kressel)
Re: Making ppp-on executable (Matt Kressel)
Re: Cablemodem setup questions (Matt Kressel)
Re: Internet access to network vi linux box (Raymond Doetjes)
Re: Connecting to service over PPP (Malware)
Re: Web server behind firewall with masquerading (Raymond Doetjes)
Kingston kne110tx (Sebastian Mattar)
Re: DNS working, yet more questions (Sedmail problem maybe?) ("Scott Nelson")
ipfwadm z3950 (Haaino Beljaars)
Slirp & Linux.. problems... (Nazeeh Amin)
What and why is identd? (Clint Davis)
Networking Linux RedHat 5.1 and Windows98 ([EMAIL PROTECTED])
Re: Workaround for netgroup under NIS+ -Y (Peter C. Tribble)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Villy Kruse)
Subject: Re: udp time service not working correctly
Date: 17 Feb 1999 09:16:49 +0100
In article <7acas7$29m$[EMAIL PROTECTED]>,
Borris <[EMAIL PROTECTED]> wrote:
>I'm using Redhat 5.2 and enabled the tcp and udp time service in
>the /etc/inetd.conf. The tcp time works fine, but I get an icmp invalid
>port when using the udp time port. I've tried commenting out the tcp
>time service and just having the udp running, but that didn't work.
>
>Does anyone know if this works in this version or not? And if there
>is anyway to make it work.
>
You are correct. in.timed doesn't work for udp ports. However,
the inetd program has a builtin for this service which you can
inable instead of the external program, and this works for udp, too.
When you do this, you cannot use tcpd to restrict access to this
service.
Extract from /etc/inetd.conf
# External time server disabled
#time stream tcp nowait nobody /usr/sbin/tcpd in.timed
#time dgram udp wait nobody /usr/sbin/tcpd in.timed
# Internal time server enabled
time stream tcp nowait root internal
time dgram udp wait root internal
Villy
------------------------------
From: Jeremy Randall <[EMAIL PROTECTED]>
Subject: Private IP network timeout
Date: Mon, 15 Feb 1999 16:52:51 -0800
Hi folks,
I have a private IP-based network at home, 3 boxes, two running RedHat
5.2 and one running NT4. The machines are configured as 192.168.1., .2
and .3. There is no outside connection, no gateway, no DNS.
When I try to telnet or FTP between the Linux boxes, it takes about 65
seconds to get a login prompt (and WS_FTP fails entirely)... so my
questions:
o Why is it taking so long to get a login prompt? Is it due to
DNS/gateway issues?
o What should I set the Linux machines DNS and gateway addresses to be,
as neither are on this LAN?
Thanks!!
Jeremy
mailto:[EMAIL PROTECTED]
------------------------------
Date: Wed, 17 Feb 1999 10:45:32 +0200
From: Yehia Mohsen Ibrahim <[EMAIL PROTECTED]>
Subject: bootp error
i've been setting up an operating system called SPIN and i've been
having problems in booting it through bootp.. i wonder if anyone can
help....
when typing "bootpd -d4" to get debug information from a static bootpd
session 1 get:
bootpd: info(6): bootptab mtime: Tue Feb 16 21:56:37 1999
bootpd: info(6): reading "/etc/bootptab"
bootpd: info(6): read 3 entries (1 hosts) from "/etc/bootptab"
bootpd: error(3): bind: Address already in use
our bootptab file has three entries which seem correct and are read
successfully....
would you have a clue where this error is comming from???
thanks..
yehia...
------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Subject: Re: Linux VPN with Novell Netware
Date: Tue, 16 Feb 1999 21:45:15 +0100
I don't really get the picture what you would like to acheive.
Do you wanna share Netware files over the internet?
Because there isn't a tunneling for IPX wich works yet.
You could setup nfsgw on you Novell server or make a mount with ncpfs to
your Linux box and then make the files visible by using SAMBA or even
easier NFS.
When you whant to create the illusion of having a private network over
the internet than you can use ip tunneling.
I already told another person, that ip tunneling isn't to secure your
traffic. But to give the illusion of you people beeing on the same
network.
Raymond
------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Crossposted-To: comp.os.ms-windows.nt.admin.networking
Subject: Re: Squid cache chained to NT proxy (help!)
Date: Tue, 16 Feb 1999 21:48:43 +0100
You can't use NT proxies as neighbour proxy's for squid. CInce NT proxy
use SOCKS instead ogf Unix-sockets.
In the most luckey case you could use the NT box as a gateway if it
supports NAT but otherwise it is the end.
The otherway arround would be better.
Raymond
Gary LaPointe wrote:
>
> I've got a squid cache (on a linux box) running wondefully in an
> elementary school (with a 56k line) bu now I want to connect/link it to an
> NT cache/proxy in a different building (which does my Surfwatch filtering)
> and I can't get it to work.
>
> Is anyone else doing this?
>
> I've tried a bunch of variations of
>
> cache_host my.nt.server parent 80 7 default
> (80 is the port I point a desktop to on the NTG box if I want it to
> filter) but it just doesn't filter.
>
> Any suggestions? (Any suggestions on where to look for more info?)
>
> Thanks,
> Gary
> [EMAIL PROTECTED]
------------------------------
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: Remote Access Server
Date: Tue, 16 Feb 1999 20:33:37 GMT
dlaws wrote:
>
> Hello, what I need is a way to dial from a windows 95 box at home, into
> our network at work, and be able to access our AS/400 through this
> dial-up connection using tcp/ip. Is it possible to set up Linux to act
> as a remote access server for this, and if so, could someon point me to
> some how-to's or something that would help me out.
>
See the following link:
http://www.swcp.com/~jgentry/dialin2.html
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: Making ppp-on executable
Date: Tue, 16 Feb 1999 20:27:19 GMT
jamesk wrote:
>
> I am having a hard time running the ppp-on script. The file exists in the
> /etc/ppp/ directory and I can read and edit it. I chmod 4711 /etc/ppp/ppp-on
> to make it executable for any user. When I type ppp-on, however, I get bash:
> command not found: ppp-on. What am I doing wrong? Thanks J.K.
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
Make sure to create a link from /usr/bin/ppp-on to /etc/ppp/ppp-on and
also specify full pathnames to all programs referenced in
/etc/ppp/ppp-on.
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: Cablemodem setup questions
Date: Tue, 16 Feb 1999 20:40:24 GMT
Michael wrote:
>
> Hello All:
>
> Let me start by saying that, like many who post here, I am a relative
> beginner with RedHat (and linux in general). I am however, pretty
> good with several other OS's including several commandline OS's (like
> Novell Netware).
>
> I am having a couple of problems. Nothing new, mostly sound and PPP.
>
> Let me start off with my basic situation: I have a cablemodem
> service, Speedway out of Rochester, NH. This service is ONE WAY only.
> IE, I have to dial in using my phone modem, but I get my data back via
> the cable modem at very high speed. To do this, I must use special
> dialup software provided by the manufacturer of the cable modem,
> General Instruments. The cablemodem itself is a General Instruments
> SURFboard SB1000 ISA PnP card. Details about this modem can be found
> at http://www.surfboard.com/products/sb1000.pdf. Unfortunately, the
> software does not run under Linux, thus I can't use the cable modem.
>
> SO! I am using a regular modem to access my account. The ISP
> (GWI.com) states that there is no problem with this. However, I can't
> seem to get it to work. I can dial in, get connected, and the ISP
> even says I am connected (they watched me log in and on). However,
> when I try to ping something, either by IP or URL, I can't. Data goes
> out, but never comes back in. but the ping tool sits there and pings
> away with no problems. If I leave ping going and disconnect from the
> network, it will immediately start telling me "Network inaccessable"
>
> I have tried a number of different methods of getting connected, and I
> was connected fine to my other account (the one I cancelled in order
> to get my cable account). I know all the hardware (a Zoom 56k modem)
> is working properly. All my DNS entries are in, I have a default
> searchpath in, and everything is configured just like my old account.
>
> To say the least, I am baffled as to why this is not working. I have
> contacted the isp support, and they will not support linux, but told
> me all the settings I needed, and even watched my account activity and
> noted that I got connected just fine. They can offer no explaination
> as to why stuff is not coming back to me.
>
> Now, here comes another question. CAN I use the one-way cable modem
> service without the software??? Redhad sees 2 PnP boards when it
> starts up, and gives addresses for both of them. (One is my SB64, the
> other must be the cable card). As long as one could get Linux to
> recognize the cable card, I would bet that it could be configured
> without software to send data out via PPP and look for the return to
> come in over the ethernet (cable) card, right?
>
> ANYONE with some suggestions as to what to try 1) to solve my PPP
> connection problem, and 2) to try getting cable access without having
> to hire someone to port over the software from Win95/98 to Linux, I
> would be real interested in hearing from you. Please e-mail me back,
> and post a reply too, for others that might be able to benefit/help.
> REMEMBER TO TAKE NOSPAM OUT OF MY E-MAIL ADDRESS.
Here's my simple, possibly useless help:
1) Try enabling the "defaultroute" feature of PPP so that when you
connect your route is properly set up. Also, do a "route -n" after
connecting to see what your routing tables look like.
2) Look into LOAD-BALANCING for Linux. I know that you can use two
modems to split a load with Linux. Also, Linux 2.2.x supports bandwidth
limitation on an interface. If you set up the cable modem for incoming
only and the regular modem for outgoing only perhaps you could get this
to work....
OK, HTH.
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Subject: Re: Internet access to network vi linux box
Date: Tue, 16 Feb 1999 21:52:55 +0100
This is possible
you need to the the following:
Make a kernel wich has firewalling and masquerading in it. This will
let you use SMTP and POP3 and DNS through your local network to the
internet and back.
Install Squid this is a caching proxy server for HTTP and FTP. Setup you
browsers to use it. Default it uses port 3128.
Install diald to automatically start dialing upon a IP request wich
falls outside of your local net
Set the default gateway address of your clients to the ip address of
your Linux box. This way the will send data wich falls outside of the
local network to your Linuxbox. It will try to deliver it to the
internet
Raymond
------------------------------
From: Malware <[EMAIL PROTECTED]>
Crossposted-To: comp.protocols.ppp
Subject: Re: Connecting to service over PPP
Date: Tue, 16 Feb 1999 20:31:17 +0100
Hi Matt,
you wrote:
> > But if I connect using a PPP dialup link which from the client assigned a
> > server IP 192.168.1.5 and telnet to port 7100 I get 'Connection refused' as if
> > the service does not exist. From the client, I can telnet to a number of
> > services OK (i.e. telnet port-23, ftp port-21, finger port-79).
>
> The "Connection Refused" does not mean that the service does not exist.
> It does mean that either your tcp wrappers have blocked the connection
I disagree here. The tcp wrapper usally does accept the connection and
does drop it if it is not a legal one. The user will see the error
"connection closed by foreign host".
> or that the server has a firewall blocking the connection. Check your
Yes, that could be the case.
Another reason might be the server does only listen on 127.0.0.1. The
fix for this case is application dependend. As I have no knoledge on the
sybase application I can not specify this further.
Malware
------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Subject: Re: Web server behind firewall with masquerading
Date: Tue, 16 Feb 1999 21:54:26 +0100
Download rinetd and set this up.
It will do portfowarding. You can deside by the portnumber to wich
server it will be send and on wich port number it should arrive there
Raymond
------------------------------
From: [EMAIL PROTECTED] (Sebastian Mattar)
Subject: Kingston kne110tx
Date: Tue, 16 Feb 1999 20:45:13 GMT
Reply-To: [EMAIL PROTECTED]
Hi there!
I am planning to upgrade the local network to fast ethernet. I am
thinking about buying a bunch of Kingston kne110tx network cards. But
it seems that linux just supports the kne100 (which are actually
10mbit cards that can be upgraded to 100mbit). Has anybody experience
with Linux and the kne110tx network cards?
Thanks a lot!
cu,
{zeep}
---
[EMAIL PROTECTED] - http://zeep.inparo.com
"The mind is a funny thing. Sometimes it needs a good whack on the side of the head to
char things loose."
Fingerprint: 192E B088 52DC 8EA0 6434 3207 F65E 2F5D 45D4 81EC
PGP public key available on request
------------------------------
From: "Scott Nelson" <[EMAIL PROTECTED]>
Subject: Re: DNS working, yet more questions (Sedmail problem maybe?)
Date: Mon, 15 Feb 1999 21:36:11 -0500
When you find out the answer to the second problem, I would like to see it.
I have the same problem.
Another problem I'm having is that I cannot receive any mail from my server
using POP3 (Netscape/IE). Apparently Red Hat does not ship a POP3 daemon
with their stuff. Does anybody know where I can get one?
Scott Nelson
Dave Weis wrote in message ...
>
>> First problem, I can email out of my machine, but when the recipient
>> recieves it, it puts the sender with the machine name appended (ie
>> from: [EMAIL PROTECTED]) . I would like it so the sender says
>> [EMAIL PROTECTED] . Is this a DNS or a Sendmail issue? How do I fix
>> it?
>
>You would set this in whichever mail program you use (on pine, go to the
>setup menu and manually put in the domain)
>
>> Second problem, If I go to send email to [EMAIL PROTECTED] and it gets
>> bounced with a relay error( included below). If you are more curious
>> about the error, send email to [EMAIL PROTECTED] and it should bounce.
>> If you send email to [EMAIL PROTECTED] it gets there. Of
>> course I want people to be able to send email to [EMAIL PROTECTED] .
>> Same question of course: Sendmail or DNS? The fix?
>
>Edit /etc/sendmail.cw and put in the line
>bigbrie.com
>
>and restart sendmail.
>
>djweis
>
>--
>David Weis | 10520 New York Ave, Des Moines, IA 50322
>[EMAIL PROTECTED] | Voice 515-278-0133 Ext 231
>http://www.plconline.com/ | We're dans la maison
>
------------------------------
From: Haaino Beljaars <[EMAIL PROTECTED]>
Subject: ipfwadm z3950
Date: Wed, 17 Feb 1999 10:34:27 +0100
Reply-To: [EMAIL PROTECTED]
Hi,
can anybody help me out. I am currently trying to configure my RH 5.2,
kernel 2.0.36 with ipfwadm 2.3.0, as a internet router to my local
network. For this reason I have downloaded a example ipfwadm script
from: http://www.xos.nl/linux/ipfwadm/paper/ In this paper there call a
service called z3950. Does anybody know what this service does?
ps. please answer me and don't post answer in newsgroup.
--
Greetings from Haaino Beljaars
Home Page: HTTP://www.phys.uu.nl/~beljaars/
I am pro Open Source Software
------------------------------
Date: Wed, 17 Feb 1999 10:46:17 +0200
From: Nazeeh Amin <[EMAIL PROTECTED]>
Subject: Slirp & Linux.. problems...
hi..
I have this problem that i don't understand.. I have a Unix shella
account and i use Slirp to connect to it using ppp.. it works just fine
in Windows.. but when i connect using Linux, it connects, but nothing is
working.. nothing at all.. even though if i use a REAL ppp account,
Linux works fine..
What could be the problem here ? is there some kind of setting i need
to give to Linux and/or Slirp? can someone please let me know?? Thanx a
lot.. please reply by email :))
--
Your conscience never stops you from doing anything. It just stops you
from enjoying it.
------------------------------
From: Clint Davis <[EMAIL PROTECTED]>
Subject: What and why is identd?
Date: Wed, 17 Feb 1999 00:19:02 -0800
I have an app on my linux box that calls in.identd ( I guess).
Every now and then when I do ps ax there is in.identd running and
according to "top" is consuming 96% of the cpu.
I have found little doc on what/why about identd.
I have put an entry on inetd.conf and tried removing it but either way
makes
no difference.
Clint
------------------------------
From: [EMAIL PROTECTED]
Subject: Networking Linux RedHat 5.1 and Windows98
Date: Wed, 17 Feb 1999 08:40:53 GMT
Can anyone point me in the right direction here. I have read the NET-3-HOWTO
and I am beginning to get frustrated because I am having no sucess. Any
Suggestions would be greatly appreciated. Is there a better HOWTO I should be
reading. Funds are a little low for me to go out and but a Linux book right
now.
RMW
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: [EMAIL PROTECTED] (Peter C. Tribble)
Crossposted-To: comp.unix.solaris
Subject: Re: Workaround for netgroup under NIS+ -Y
Date: 17 Feb 1999 08:30:42 GMT
In article <7acm86$sas$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Tom Holub) writes:
> I'm running an NIS+ server on Solaris 2.6. For a long time it was running
> in NIS+ only mode, but recently I've had to start hooking up Linux boxes
> to it, so I've had to turn on YP compatibility mode. This works for
> most things, but apparently netgroups are not supported under YP
> compatibility mode (per the Solaris FAQ). We make fairly extensive
> use of netgroups, so this is a significant problem.
Hm. We use NIS+ in compatibility mode and haven't had problems with
netgroups. Yes, you can't use ypcat on a client to see what the
contents of a netgroup are, but all the underlying functionality is
there.
--
-Peter Tribble
HGMP Computing Services
http://www.hgmp.mrc.ac.uk/~ptribble/
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
