Linux-Networking Digest #327, Volume #10 Sat, 27 Feb 99 23:13:59 EST
Contents:
Re: ne card no longer detected (T.L. (Terry Branscombe))
Re: CCP: timeout sending Config-Requests ("William Grinolds")
Re: Win98 >< Linux (Ken Oster)
PPP Problems (configure-nak/rej ? error) ("Brad")
Re: Diald on Sparc Redhat 5.2 (Matthew Bafford)
Re: PPP Just Stopped Working (Clifford Kite)
Re: Caching DNS Question ([EMAIL PROTECTED])
SVEC PN102TX with DAVICOM chipset Setup (Jin-Teck Chu)
Re: ppp doesn�t obtain DNS servers address?!?! ("Jesse Mather")
Re: A question about DNS! (Michael Fuhr)
Re: Plesae suggest V.35 sync card for Linux? ("William R. Mattil")
Re: Plesae suggest V.35 sync card for Linux? ("William R. Mattil")
Comic Strip Mailing List (Jean-Sebastien Morisset)
Re: two ethernet cards ("William R. Mattil")
Re: static IP's (Greg Weeks)
Re: ipautofw ("Roman Spitzbart")
Re: Proxy Software (Seb)
ipchains & udp logging ("LP")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (T.L. (Terry) Branscombe)
Subject: Re: ne card no longer detected
Date: 28 Feb 99 02:46:37 GMT
T.L. (Terry) Branscombe ([EMAIL PROTECTED]) wrote:
: [snip]
: Mounting local filesystems...
: /proc on /proc type proc (rw)
: SIOCSIFADDR: no such device
: SIOCSIFNETMASK: no such device
: SIOCSIFBRDADDR: no such device
: SIOCADDRT: no such device
: Mounting remote filesystems...
: [snip]
Just another note. These messages are the same as those generated by
ifconfig. For some reason, Linux can no longer detect the eth0 device,
while Win95 on the same machine still can.
--
+------------------+
Terrence Branscombe
[EMAIL PROTECTED]
------------------------------
From: "William Grinolds" <[EMAIL PROTECTED]>
Subject: Re: CCP: timeout sending Config-Requests
Date: Sat, 27 Feb 1999 21:17:38 -0600
Thanks for your response and for putting my mind at ease. I'm currently
using pppd version 2.2, and I see nothing in the man pages about -bsdcomp.
Oh well - I'll just live with it. :-) Thanks again.
Bill
Clifford Kite wrote in message <7b6n6t$[EMAIL PROTECTED]>...
>Compression Control Protocol. The ISP requests a few flavors of STAC
>and then Microsoft Point-to-Point compression, both are propriatary
>and pppd can't do them. Not serious as you observed. The pppd option
>-bsdcomp *may* get rid of it. There is a noccp option in ppp-2.3.5 that
>*should* get rid of it.
>
>The ISP PPP implementation is slightly broken - not uncommon - and
>doesn't know how to properly terminate the CCP negotiations when pppd
>rejects all that it offers.
>
><snip>
>
>: Feb 23 21:26:09 st-gate pppd[849]: sent [CCP TermAck id=0x0]
>: Feb 23 21:26:12 st-gate pppd[849]: CCP: timeout sending Config-Requests
------------------------------
From: Ken Oster <[EMAIL PROTECTED]>
Subject: Re: Win98 >< Linux
Date: Sun, 28 Feb 1999 03:17:04 GMT
[EMAIL PROTECTED] wrote:
>
> Okay its been two weeks and I am no closer to getting my two boxes networked
> as I was when I started. Heres what I got:
>
> Linux RH5.1
> 486 Dx-50
> 20MB Ram
> 420HD
> 3com 3c509
> IP:192.168.1.1
>
> Win98
> P-200MMX
> 96MB Ram
> 1.6GHD
> 3com Fast EtherLink XL 10/100Mb TX
> IP:192.168.1.2
>
> The Link light on my Linux box is on until the card is initalized at boot then
> it goes off. When I go into Network Configurator in X it shows the card it
> active. Only when I deactivat the card does the link light come on. On the
> Win98 box the light is NEVER on. Not on boot, not while it pings itself,
> NEVER! I know this card works but I have never seen the light.
> Also am I correct in thinking that I do not have to have a hub to network
> these? I can just plug the network cable into the two right?
>
> And by the way I have read the Ehternet HOWTO, DNS HOWTO, SMB HOWTO, IPX
> HOWTO, DHCP HOWTO, TCP/IP HOWTO, and I am currently writing the "HOWTO not
> have a nervous break-down when trying to network Linux and Windoze"
>
> Any suggestions would be greatly appreciated. I'm getting tired of staying up
> until 3 in the morning without getting any further in the process.
>
> --Rhasan
>
The problem seems to be the attempt at connecting the 2 directly
together
without a hub...
You can do this.. if you use a "crossover cable"...
Check out section 6.2 (Twisted Pair) in the Ethernet HOWTO... I think
this section you might have missed...
http://metalab.unc.edu/mdw/HOWTO/Ethernet-HOWTO-6.html
I hope this helps...
Ken Oster
[EMAIL PROTECTED]
http://ken.oster.org/
------------------------------
From: "Brad" <[EMAIL PROTECTED]>
Subject: PPP Problems (configure-nak/rej ? error)
Date: 28 Feb 1999 03:21:06 GMT
Hi
After using RH 4.2 (I think) for the past few years, I decided to upgrade
to RH 5.2, and am having troubles getting PPP to work. It worked fine
before when I set it up with netcfg. Basically, in Windows, I dial in,
enter a username and password, then at the prompt, type 'ppp', then enter,
then hit F7. I am setting up the account the same way I had it before, I
am assigned an IP number by the server, no PAP, but am still not able to
connect. I included a little bit from /var/log/messages below.
Some of the problem looks like it may be trying to use Appletalk or
something. The kernel is compiled with PPP support. The problem may be in
my /etc/ppp/options file, although I can't remember how it was set up
before. Does anyone have any suggestions about what I can try?
Thanks
Brad
[EMAIL PROTECTED]
Feb 27 19:31:13 VeloRevolution pppd[375]: pppd 2.3.5 started by root, uid 0
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (BUSY)
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (ERROR)
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (NO CARRIER)
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (NO DIALTONE)
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (Invalid Login)
Feb 27 19:31:14 VeloRevolution chat[380]: abort on (Login incorrect)
Feb 27 19:31:14 VeloRevolution chat[380]: send (ATL1^M)
Feb 27 19:31:14 VeloRevolution chat[380]: expect (OK)
Feb 27 19:31:14 VeloRevolution chat[380]: ATL1^M^M
Feb 27 19:31:14 VeloRevolution chat[380]: OK
Feb 27 19:31:14 VeloRevolution chat[380]: -- got it
Feb 27 19:31:14 VeloRevolution chat[380]: send (ATDT2977488^M)
Feb 27 19:31:14 VeloRevolution chat[380]: expect (CONNECT)
Feb 27 19:31:14 VeloRevolution chat[380]: ^M
Feb 27 19:31:31 VeloRevolution chat[380]: ATDT2977488^M^M
Feb 27 19:31:31 VeloRevolution chat[380]: CONNECT
Feb 27 19:31:31 VeloRevolution chat[380]: -- got it
Feb 27 19:31:31 VeloRevolution chat[380]: send (^M)
Feb 27 19:31:31 VeloRevolution chat[380]: expect (Username:)
Feb 27 19:31:31 VeloRevolution chat[380]: 26400/ARQ/V34/LAPM/V42BIS^M
Feb 27 19:31:32 VeloRevolution chat[380]: University of Pittsburgh Dialin
Service *** Authorized Users Only ***^M
Feb 27 19:31:32 VeloRevolution chat[380]: ^M
Feb 27 19:31:32 VeloRevolution chat[380]: *** Please enter your user name
in lower case ***^M
Feb 27 19:31:32 VeloRevolution chat[380]: ^M
Feb 27 19:31:32 VeloRevolution chat[380]: ehdup-l.ts line 14 ^M
Feb 27 19:31:32 VeloRevolution chat[380]: ^M
Feb 27 19:31:32 VeloRevolution chat[380]: ^M
Feb 27 19:31:32 VeloRevolution chat[380]: User Access Verification^M
Feb 27 19:31:32 VeloRevolution chat[380]: ^M
Feb 27 19:31:32 VeloRevolution chat[380]: Username:
Feb 27 19:31:32 VeloRevolution chat[380]: -- got it
Feb 27 19:31:32 VeloRevolution chat[380]: send (bafst19^M)
Feb 27 19:31:32 VeloRevolution chat[380]: expect (Password:)
Feb 27 19:31:32 VeloRevolution chat[380]: bafst19^M
Feb 27 19:31:32 VeloRevolution chat[380]: Password:
Feb 27 19:31:32 VeloRevolution chat[380]: -- got it
Feb 27 19:31:32 VeloRevolution chat[380]: send (******^M)
Feb 27 19:31:33 VeloRevolution chat[380]: expect (Local>)
Feb 27 19:31:33 VeloRevolution chat[380]: ^M
Feb 27 19:31:33 VeloRevolution chat[380]: Local>
Feb 27 19:31:33 VeloRevolution chat[380]: -- got it
Feb 27 19:31:33 VeloRevolution chat[380]: send (ppp^M)
Feb 27 19:31:33 VeloRevolution pppd[375]: Serial connection established.
Feb 27 19:31:34 VeloRevolution pppd[375]: Using interface ppp0
Feb 27 19:31:34 VeloRevolution pppd[375]: Connect: ppp0 <--> /dev/modem
Feb 27 19:31:37 VeloRevolution pppd[375]: Unsupported protocol (0x8029)
received
Feb 27 19:31:37 VeloRevolution pppd[375]: Unsupported protocol (0x802b)
received
Feb 27 19:31:40 VeloRevolution pppd[375]: Received bad configure-nak/rej:
03 06 88 8e 15 f4
Feb 27 19:32:07 VeloRevolution last message repeated 9 times
Feb 27 19:32:10 VeloRevolution pppd[375]: IPCP: timeout sending
Config-Requests
Feb 27 19:32:10 VeloRevolution pppd[375]: Connection terminated.
Feb 27 19:32:11 VeloRevolution pppd[375]: Exit.
------------------------------
From: [EMAIL PROTECTED] (Matthew Bafford)
Crossposted-To: comp.os.linux.misc
Subject: Re: Diald on Sparc Redhat 5.2
Reply-To: [EMAIL PROTECTED]
Date: Sun, 28 Feb 1999 03:22:21 GMT
Thu, 25 Feb 1999 17:41:21 -0500 -- Jeff Dearmin <[EMAIL PROTECTED]>:
-> [snip description about problems compiling diald on redhat]
I went through this just a few days ago. I'm not on a Sparc, though.
Rather than commenting out that stuff, you need to tell the compiler it exists.
I've included my code changes below my sig.
It wasn't a very clean patch, but I was in a hurry to just get it done.
I'll probably clean it up and submit it to the author tomorrow.
To use the patch, switch to the directory diald-0.16 and run:
patch -p 11 < patchfile
(Compiles without a warning on my machine)
Hope This Helps!
--Matthew
--
diff -x *.o -x diald -bpr diald-0.16/dev.c diald-0.16.myversion/dev.c
*** diald-0.16/dev.c Thu Dec 19 14:56:45 1996
--- diald-0.16.myversion/dev.c Sun Feb 7 14:09:11 1999
***************
*** 16,21 ****
--- 16,24 ----
#include "diald.h"
+ #include <linux/in.h>
+ extern char *inet_ntoa __P ((struct in_addr __in));
+
static int dead = 1;
/* internal flag to shortcut repeated calls to setaddr */
diff -x *.o -x diald -bpr diald-0.16/diald.c diald-0.16.myversion/diald.c
*** diald-0.16/diald.c Thu Dec 19 15:42:41 1996
--- diald-0.16.myversion/diald.c Sun Feb 7 14:09:29 1999
*************** void become_daemon()
*** 164,170 ****
{
int pid;
FILE *fp;
! if (daemon) {
close(0);
close(1);
close(2);
--- 164,170 ----
{
int pid;
FILE *fp;
! if (my_daemon) {
close(0);
close(1);
close(2);
diff -x *.o -x diald -bpr diald-0.16/diald.h diald-0.16.myversion/diald.h
*** diald-0.16/diald.h Sun Dec 15 13:29:21 1996
--- diald-0.16.myversion/diald.h Mon Feb 1 10:23:05 1999
***************
*** 34,49 ****
#include <netinet/ip_icmp.h>
#include <netinet/ip.h>
*/
! #include <netinet/in.h>
/* #include <asm/byteorder.h> */
#include <linux/tcp.h>
#include <linux/udp.h>
! #include <linux/icmp.h>
/* Shut up gcc about a redefinition that is harmless */
#undef LITTLE_ENDIAN
#include <linux/ip.h>
! #include <linux/in.h>
! #include <arpa/inet.h>
/* Hmm. Should there be a netinet pointer to these??? */
#include <linux/if_ether.h>
#include <linux/if_slip.h>
--- 34,49 ----
#include <netinet/ip_icmp.h>
#include <netinet/ip.h>
*/
! /* #include <netinet/in.h> */
/* #include <asm/byteorder.h> */
#include <linux/tcp.h>
#include <linux/udp.h>
! /*#include <linux/icmp.h>*/
/* Shut up gcc about a redefinition that is harmless */
#undef LITTLE_ENDIAN
#include <linux/ip.h>
! /*#include <linux/in.h>*/
! /*#include <arpa/inet.h>*/
/* Hmm. Should there be a netinet pointer to these??? */
#include <linux/if_ether.h>
#include <linux/if_slip.h>
***************
*** 59,64 ****
--- 59,66 ----
#define SOCKADDR sockaddr
#endif
+ extern u_int32_t inet_addr __P ((__const char *__cp));
+
#include "config.h"
#include "fsm.h"
#include "timer.h"
*************** int debug;
*** 224,230 ****
int modem;
int rotate_devices;
int crtscts;
! int daemon;
int dynamic_addrs;
int dynamic_mode;
int slip_encap;
--- 226,232 ----
int modem;
int rotate_devices;
int crtscts;
! int my_daemon;
int dynamic_addrs;
int dynamic_mode;
int slip_encap;
diff -x *.o -x diald -bpr diald-0.16/firewall.c diald-0.16.myversion/firewall.c
*** diald-0.16/firewall.c Wed Sep 4 10:51:14 1996
--- diald-0.16.myversion/firewall.c Mon Feb 1 10:38:05 1999
***************
*** 8,13 ****
--- 8,16 ----
#include "diald.h"
+ #include <linux/in.h>
+ extern char *inet_ntoa __P ((struct in_addr __in));
+
static FW_unit units[FW_NRUNIT];
static int initialized = 0;
int impulse_init_time = 0;
diff -x *.o -x diald -bpr diald-0.16/fsm.c diald-0.16.myversion/fsm.c
*** diald-0.16/fsm.c Thu Dec 19 15:19:26 1996
--- diald-0.16.myversion/fsm.c Sun Feb 7 14:09:39 1999
*************** void act_START_LINK(void)
*** 159,165 ****
if (acctlog && (acctfp = fopen(acctlog,"a")) != NULL) {
fprintf(acctfp,"%s: Connected to site %s.\n",
cdate(), remote_ip);
! fclose(acctfp);
}
(*pcontrol[mode].start)();
}
--- 159,165 ----
if (acctlog && (acctfp = fopen(acctlog,"a")) != NULL) {
fprintf(acctfp,"%s: Connected to site %s.\n",
cdate(), remote_ip);
! fclose(acctfp);
}
(*pcontrol[mode].start)();
}
diff -x *.o -x diald -bpr diald-0.16/options.c diald-0.16.myversion/options.c
*** diald-0.16/options.c Sat Dec 21 02:17:21 1996
--- diald-0.16.myversion/options.c Sun Feb 7 14:09:49 1999
*************** int mode = MODE_SLIP;
*** 53,59 ****
int debug = 0;
int modem = 0;
int crtscts = 0;
! int daemon = 1;
int slip_encap = 0;
int lock_dev = 0;
int default_route = 0;
--- 53,59 ----
int debug = 0;
int modem = 0;
int crtscts = 0;
! int my_daemon = 1;
int slip_encap = 0;
int lock_dev = 0;
int default_route = 0;
*************** struct {
*** 103,109 ****
{"mode","[ppp|slip|cslip|slip6|cslip6|aslip|dev]",1,0,set_mode},
/* Debugging options */
{"debug","<debugmask>",1,&debug,set_int},
! {"-daemon","",0,&daemon,clear_flag},
/* general options */
{"accounting-log","<f>",1,&acctlog,set_str},
{"pidfile","<f>",1,&pidlog,set_str},
--- 103,109 ----
{"mode","[ppp|slip|cslip|slip6|cslip6|aslip|dev]",1,0,set_mode},
/* Debugging options */
{"debug","<debugmask>",1,&debug,set_int},
! {"-daemon","",0,&my_daemon,clear_flag},
/* general options */
{"accounting-log","<f>",1,&acctlog,set_str},
{"pidfile","<f>",1,&pidlog,set_str},
*************** void init_vars()
*** 219,225 ****
debug = 0;
modem = 0;
crtscts = 0;
! daemon = 1;
slip_encap = 0;
lock_dev = 0;
default_route = 0;
--- 219,225 ----
debug = 0;
modem = 0;
crtscts = 0;
! my_daemon = 1;
slip_encap = 0;
lock_dev = 0;
default_route = 0;
*************** void check_setup()
*** 559,566 ****
if (acctlog && (acctfp = fopen(acctlog,"a")) == NULL)
syslog(LOG_ERR,"Can't open accounting log file %s: %m",acctlog);
! else
! fclose(acctfp);
if (flag) exit(1);
}
--- 559,567 ----
if (acctlog && (acctfp = fopen(acctlog,"a")) == NULL)
syslog(LOG_ERR,"Can't open accounting log file %s: %m",acctlog);
! else if (acctfp) {
! fclose(acctfp);
! }
if (flag) exit(1);
}
diff -x *.o -x diald -bpr diald-0.16/ppp.c diald-0.16.myversion/ppp.c
*** diald-0.16/ppp.c Sat Dec 21 02:17:10 1996
--- diald-0.16.myversion/ppp.c Sun Feb 7 14:09:55 1999
***************
*** 20,25 ****
--- 20,28 ----
#define PPPIOCGUNIT_2_2_0 _IOR('t', 86, int)
#endif
+ #include <linux/in.h>
+ extern char *inet_ntoa __P ((struct in_addr __in));
+
/* internal flag to shortcut repeated calls to setaddr */
static int rx_count = -1;
diff -x *.o -x diald -bpr diald-0.16/proxyarp.c diald-0.16.myversion/proxyarp.c
*** diald-0.16/proxyarp.c Tue Apr 2 02:43:16 1996
--- diald-0.16.myversion/proxyarp.c Mon Feb 1 10:25:47 1999
***************
*** 22,27 ****
--- 22,29 ----
#include "diald.h"
+ #include <linux/in.h>
+
/* This is in netdevice.h. However, this compile will fail miserably if
you attempt to include netdevice.h because it has so many references
to __memcpy functions which it should not attempt to do. So, since I
------------------------------
From: [EMAIL PROTECTED] (Clifford Kite)
Subject: Re: PPP Just Stopped Working
Date: 27 Feb 1999 16:58:06 -0600
Charles Stack ([EMAIL PROTECTED]) wrote:
: I've been trying to track down the source of a bug with my PPP box. Without
: My /var/log/messages looks like:
: Feb 26 22:50:50 picard pppd[398]: write warning: Inut/output error(5)
: Feb 26 22:50:50 picard pppd[398]: write warning: Inut/output error(5)
: Feb 26 22:50:50 picard pppd[398]: ioctl(PPPIOCSASYNCMAP): Input/Ouput
: error(5)
A quick grep through the *.[hc] files in ppp-2.3.5/pppd shows that this
message comes from sys-linux.c. A look at the code shows it occurs when
there's an error setting the transmit asyncmap. I've no idea what would
cause such an error though.
--
Clifford Kite <[EMAIL PROTECTED]> Not a guru. (tm)
/* Those who can't write, write manuals. */
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Caching DNS Question
Date: 26 Feb 1999 00:34:48 GMT
Reply-To: [EMAIL PROTECTED]
I>I connect to the internet using PPP via a 56k modem and diald. My
>
>IP address is dynamic (unfortunately). I would like to configure
>
>a caching DNS server on my box, partly because my ISP's DNS server can
>
>be painfully slow, and partly just to see if I can.
>
>
>
>I would be interested if anyone has achieved this - I seem to get problems
>
>with the fact that my IP address changes from 0.0.0.0 to xxx.xxx.xxx.xxx
>
>at login, which seems to cause named some grief.
>
>
>
>Any suggestions (or sample named.boot,named.local etc.. files) welcome.
Try the DNS HOWTO. I don't have any problems running a caching only DNS
with a dynamic IP. You do have the /etc/resolv.conf with
"nameserver 127.0.0.1" in it don't you?
------------------------------
From: Jin-Teck Chu <[EMAIL PROTECTED]>
Subject: SVEC PN102TX with DAVICOM chipset Setup
Date: Sat, 27 Feb 1999 21:29:10 -0600
Can anybody give me any help on how to setup my network card? Need some
specific instructions. Had tried to look on the web pages but failed to
find any specific details on this card. Thanks.
Model : SVEC PN102TX with DAVICOM chipset
Jin
[EMAIL PROTECTED]
------------------------------
From: "Jesse Mather" <[EMAIL PROTECTED]>
Subject: Re: ppp doesn�t obtain DNS servers address?!?!
Date: Sat, 27 Feb 1999 01:21:07 -0500
no, you have to know the ip address of their DNS servers.
Luis Sousa wrote in message <[EMAIL PROTECTED]>...
>I�v got some misconfigured and can't figure out what!
>After I connect and login to my ISP using netcfg (RedHat 5.2), i'm
>connected to the
>net but can only acess trough IP numbers, not by names.
> I've tryed to start named and what I get is that I can get nslookup to
>search the
>hostnames and give me the IP number of any Location. But if I go to
>telnet and try to open an adress by hostname I get an error. Strangely
>(or not) ifconfig reports that
>the netmask my isp has given me is 255.255.255.255, where am I suposed
>to go with a netmask like that?? Wasn't I suposed to get the IP
>addresses of the DNS servers when a connect to the ISP???
>
> Luis Sousa
>
------------------------------
From: [EMAIL PROTECTED] (Michael Fuhr)
Subject: Re: A question about DNS!
Date: 27 Feb 1999 02:06:12 -0700
[EMAIL PROTECTED] (L J Bayuk) writes:
> [EMAIL PROTECTED] wrote:
> > i have got a question ,i am seeking help:
> >I have setup two WWW server,the domain names are WWW1.DOMAIN ,
> >WWW2.DOMAIN
> >the HomePage file in both server are the same.
> >But I want user to use WWW.DOMAIN to access my server,
> >if WWW1.DOMAIN is not busy,user will get the page from WWW1.DOMAIN.
> >If WWW1.DOMAIN is busy,user will connect to WWW2.DOMAIN to fetch the
> >pages.
> >How i can configure my DNS ?
> >Or Where can i configure to do so?
> >Thx alot!!!
>
> You can't use DNS to do this kind of load balancing. There is no
> way the DNS server can check system load before deciding how to
> reply. "Big" sites use DNS to do round-robin load sharing, where
> the same name can resolve to more than one system. The DNS server will
> resolve the name to the different addresses in turn, but that isn't
> dependent on the system loads.
You can use DNS to do this kind of load balancing with lbnamed:
http://www.stanford.edu/~riepel/lbnamed/
--
Michael Fuhr
http://www.fuhr.org/~mfuhr/
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: Plesae suggest V.35 sync card for Linux?
Date: Fri, 26 Feb 1999 21:14:07 -0600
Mark wrote:
> I would setup a Linux box as a router to connect through V.35 device.
> Please suggest me any V.35 board good with Linux driver. I heard about
> COSA and SRP. Is there any other else?
>
> Any information would be very appreciated
> mark @ chevalier.net
I think that the cheapest way to go here would be to find a used Cisco
router with a WAN and 10BaseT interfaces. V.35 Interfaces for a PC are no
doubt available but probably expensive. I have seen used Cisco IGS/R
routers for less than $150.00 and 320X series for $200.00. I just can't
imagine that you could do this cheaper using a V.35 interface and would
most-likely lose some flexibility as well.
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 256-3219 | and... in high heels.
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: Plesae suggest V.35 sync card for Linux?
Date: Fri, 26 Feb 1999 21:16:13 -0600
Mark wrote:
> I would setup a Linux box as a router to connect through V.35 device.
> Please suggest me any V.35 board good with Linux driver. I heard about
> COSA and SRP. Is there any other else?
>
> Any information would be very appreciated
> mark @ chevalier.net
I think that the cheapest way to go here would be to find a used Cisco
router with a WAN and 10BaseT interfaces. V.35 Interfaces for a PC are no
doubt available but probably expensive. I have seen used Cisco IGS/R
routers for less than $150.00 and 320X series for $200.00. I just can't
imagine that you could do this cheaper using a V.35 interface and would
most-likely lose some flexibility as well.
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 256-3219 | and... in high heels.
------------------------------
From: Jean-Sebastien Morisset <[EMAIL PROTECTED]>
Crossposted-To: comp.unix.solaris,comp.os.linux.misc
Subject: Comic Strip Mailing List
Date: Sat, 27 Feb 1999 09:41:10 -0500
In case anyone reads the Dilbert, UserFriendly and GPF comics <grin> you
can get 'em every morning by e-mail if you like. Send a message to
"[EMAIL PROTECTED]" with "subscribe comics" in the BODY of
you message.
This is a completely SPAM FREE mailing list. It's also in HTML with
uuencoded attachments (if anyone knows a good base64 encoder for UNIX,
please let me know).
LateR!
js.
--
Jean-Sebastien Morisset, Sr. UNIX Admin <mailto:[EMAIL PROTECTED]>
Personal Homepage <http://www.axess.com/users/jsm-mv/jsmoriss/>
This is Linux Country. On a quiet night you can hear Windows NT reboot!
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: two ethernet cards
Date: Fri, 26 Feb 1999 21:22:50 -0600
Jeffrey Fulmer wrote:
> Hi,
>
> I am trying to configure two ethernet cards on a Slackware linux
> computer using kernel support for ne2000. The first card is located at
> 0x300 IRQ 5, the second at 0x320 IRQ 9. I added:
>
> append="ether=5,0x300,eth0 ether=9,0x320,eth1"
>
> to my lilo.conf
>
> The machine boots and picks up eth0 and that card is working fine. The
> problem is that eth1 is not recognized at all. There are no failure
> messages in any of the logs. I'm fairly certain that I don't have a
> hardware conflict. This computer is a single boot linux configuration.
>
> Any insight would be appreciated.
>
> Thanks, Jeff.
Jeff,
It might be informative to try this:
append="ether=9,0x320,eth0"
And confirm that the other card works with the settings shown ? It has
been lierally years since I used LILO to pass parameters to multiple NIC's
but I think your syntax is correct.
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 256-3219 | and... in high heels.
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: static IP's
Date: Sat, 27 Feb 1999 21:41:24 -0600
In article <[EMAIL PROTECTED]>,
Antonio Boveia <[EMAIL PROTECTED]> writes:
> I have a dial-up provider who doesn't provide static IP addresses,
> and I want one. Is there any way around this? Can I register a
> domain name and then update the IP address each time I dial in,
> or is there some site out there that could act as 'pointer' to mine?
There are several providers of names for dynamic IP's. ml.org was the
biggy, but they've shut down. The one I use currently is www.tzo.com.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: "Roman Spitzbart" <[EMAIL PROTECTED]>
Subject: Re: ipautofw
Date: Sat, 27 Feb 1999 16:22:26 +0100
Maybe http://linuxsite.webjump.com can help you.
--
Roman Spitzbart
------------------------------
From: Seb <[EMAIL PROTECTED]>
Subject: Re: Proxy Software
Date: Sat, 27 Feb 1999 12:02:33 -0500
cyberjb wrote:
> anyone know where i can get like a http proxy? so i can have my other
> computer use http
Try www.linuxberg.com they have a program call squid.. go figure :-)
------------------------------
From: "LP" <[EMAIL PROTECTED]>
Subject: ipchains & udp logging
Date: Sun, 28 Feb 1999 04:08:27 GMT
I am running a 2.2.1 kernel with ipchains & ipmasq on a 'firewall'. While
trying to tighten security, I decided to set up logging to determine when
people are probing the machine. I've included the configuration script
below. Note that I'm trying to create a very paranoid configuration - just
to see if its possible.
I think I've tightened it up as much as possible - internal computers can
get out over any protocol (including PPTP eventually), but external
computers are stopped from touching any port on $MYIP. I log all tcp
packets coming into $MYIP with the SYN bit set (I can probablt combine the
two rules which do this...). I allow TCP and UDP in for the higher ports
(1023+) because of IP Masquerading. I currently allow ICMP for testing, but
I'll probably disable it eventually.
IP Masq'ing seems to be the largest security hole. I've heard that it might
be possible to reduce the range of ports used by it by editing the kernel
headers somewhere - any info would be appreciated.
My question is about logging. I can reject and log TCP packets coming into
$MYIP if they have their SYN bit set (i.e. connection requests). I block
all incoming UDP access below 1024 and log it (this might turn into a
problem if someone floods a UDP port), but there doesn't seem to be any way
to handle the higher UDP Ports. I assume they need to be open for MASQing
to work - correct? Is there some way to log incoming UDP requests
separately from masqueraded UDP Requests?
Any help is appreciated.
-LP
================================================
$MYIP = firewall's public IP Address on eth0
$SECIP = a trusted host on the internet I want to telnet from.
10.1.1.1 = firewall's internal IP Address on eth1
10.1.1.2, 10.1.1.3 = other internal hosts.
===============================================
echo "Configuring Firewall."
ipchains -F input
ipchains -F output
ipchains -F forward
# Set Default Policies - Add REJECT Rules at the end to log all failed
packets. output rules are ignored - everything is done on input / forward.
ipchains -P input ACCEPT
ipchains -P output ACCEPT
ipchains -P forward ACCEPT
# Enable Loopback Interface
ipchains -A input -i lo -j ACCEPT
# Enable outgoing traffic from lhasa-ext (including masqed traffic).
ipchains -A input -s $MYIP -d 0/0 -i eth0 -j ACCEPT
# Enable incoming traffic from Secure Host to telnet. Log the SYN Packets.
ipchains -A input -s $SECIP -d $MYIP telnet -y -p tcp -i eth0 -j ACCEPT -l
ipchains -A input -s $SECIP -d $MYIP telnet -p tcp -i eth0 -j ACCEPT
# Enable Input from internal Hosts to any location (including lhasa-ext).
ipchains -A input -s 10.1.1.1 -d 0/0 -i eth1 -j ACCEPT
ipchains -A input -s 10.1.1.2 -d 0/0 -i eth1 -j ACCEPT
ipchains -A input -s 10.1.1.3 -d 0/0 -i eth1 -j ACCEPT
# Enable DHCP Traffic only on eth1 (Internal)
ipchains -A input -s 0/0 68 -d 255.255.255.255 67 -p udp -i eth1 -j ACCEPT
# Disable standard incoming ports (below 1024) and log SYN Requests. Log
all UDP Requests.
ipchains -A input -s 0/0 -d $MYIP 0:1023 -y -p tcp -j REJECT -l
ipchains -A input -s 0/0 -d $MYIP 0:1023 -p tcp -j REJECT
ipchains -A input -s 0/0 -d $MYIP 0:1023 -p udp -j REJECT -l
# Allow incoming access from other ports (Required for MASQ) except SYN.
ipchains -A input -s 0/0 -d $MYIP 1024:65535 -y -p tcp -j REJECT -l
ipchains -A input -s 0/0 -d $MYIP 1024:65535 -p tcp -j ACCEPT
ipchains -A input -s 0/0 -d $MYIP 1024:65535 -p udp -j ACCEPT
ipchains -A input -s 0/0 -d $MYIP -p icmp -j ACCEPT
24.# Enable Masqing for Internal Hosts. Since the input is only allowed on
eth1, we do not restrict it here.
ipchains -A forward -s 10.1.1.1 -d 0/0 -j MASQ
ipchains -A forward -s 10.1.1.2 -d 0/0 -j MASQ
ipchains -A forward -s 10.1.1.3 -d 0/0 -j MASQ
# Log All other network Requests.
# The following should be caught by these rules:
# 1) Any protocol other than tcp, udp, and icmp coming in from eth0. GRE
should appear here.
# 2) Any access from eth1 other than 10.1.1.1, .2, or .3 (SHOULD be
impossible!)
# There should NEVER be a failed 'forward' chain - if so, then I've
mis-calculated.
ipchains -A input -j REJECT -l
ipchains -A forward -j REJECT -l
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
