Linux-Networking Digest #365, Volume #10 Wed, 3 Mar 99 11:13:37 EST
Contents:
Diald and cable modem? ("Ren� Fosdal")
Re: IP forwarding with port mapping (Greg Weeks)
X-Window, ipportfw and more than one comp behind firewall (Carsten Aulbert)
DHCP woth Static IP Fallback (Marc Plasschaert)
Re: dls faster in Windows!! (John)
Re: IP forwarding with port mapping (Rick Onanian)
IPCP: timout sending Config-Requests ([EMAIL PROTECTED])
Re: A problem with routing (Michael Vogwell)
Re: Linux Clusters? ("Alain Coetmeur")
Direct (Null) Serial TCP/IP (Robert Logan)
Re: Help Working under w95 but not under RH 5.2 Linux ("Timothy Chu")
Network Card ("R. Brooks")
----------------------------------------------------------------------------
From: "Ren� Fosdal" <[EMAIL PROTECTED]>
Subject: Diald and cable modem?
Date: Wed, 03 Mar 1999 14:37:44 +0100
Hi everyone,
I have tried for a long time to set up diald to go through my cable
modem. I know there is nothing to "dial" but I still need to open the
connection to my ISP. How do I do that? Well, I have to telnet to a
UNIX-machine provide username and password - works every time.
All computers of this ISP have static IP adresses (I'm on the
192.168.79.0 subnet) and so is the gateway I need to use. However, the
computer I have to telnet to is on the 192.168.30.0 subnet.
What I want is to have diald to use a script which telnets my ISP and do
the logon procedure BUT! when I need to close the connection this is
also done using telnet and diald registers this as TCP/IP packets and
will try to reopen the connection. How can I prevent this? Or more
accuratly: can I prevent this?
I really would like to do this open/close procedure automatically (I
have a few computers at home which is using my Linux box as gateway
using IP-masqaurading). It would be great if I did not have to use
manual open/close of the connection.
Any hints appreciated.
Sincerely
Rene Fosdal
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: IP forwarding with port mapping
Date: Wed, 3 Mar 1999 07:11:51 -0600
In article <[EMAIL PROTECTED]>,
Doug Goldstein <[EMAIL PROTECTED]> writes:
> Same here. I can't get mine to connect. Even people from outside can't connect.
> Just to be safe I'm covering everything. I have an FTP server running on
> 192.168.1.2 port 22. The machine 192.168.1.1 is my Linux box with IP Masq on it and
> ipportfw and all those tools.
>
> /usr/local/sbin/ipportfw -C
> /usr/local/sbin/ipportfw -A -u167.206.209.24/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -A -t167.206.209.24/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -A -u192.168.1.1/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -A -t192.168.1.1/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -L
> Prot Local Addr/Port > Remote Addr/Port
>
> UDP 167.206.209.24/22 > 192.168.1.2/22
>
> UDP 192.168.1.1/22 > 192.168.1.2/22
>
> TCP 167.206.209.24/22 > 192.168.1.2/22
>
> TCP 192.168.1.1/22 > 192.168.1.2/22
>
> And still everyone gets unable to connect to port 22. Same as Hans is getting.
> Anyone have any ideas why?
>
> Doug Goldstein
>
> Hans wrote:
>
>> Rick Onanian wrote:
>>
>> > Hans wrote:
>> > > It's almost working, to test it I tried a redirection from port 8080 to
>> > > port 80.
>> > > Without the ipportfw I get an "unable to connect", but nothing happens with
>> > > the redirection (I get a "making connection to ...:8080).
>> >
>> > You need to make sure that there's a service running on port 80 of the
>> > end IP address. Also, make sure you chose the right IP - the IP is as
>> > important as the port.
>> Here's what I did to test (I'm on the 192.168.0.1 computer):
>> ipportfw -C
>> lynx http://192.168.0.1:80 (work's fine)
>> ipportfw -A -t 192.168.0.1/8080 -R 192.168.0.1/80
>> lynx http://192.168.0.1:8080 (seems to hang).
>>
>> From the outside, http://195.96.x.y:80 (I have a dynamic IP address) works too,
>> but http://195.96.x.y:8080 results in an "can not connect".
>> Thanks for your time.
>
Here are my forwarding rules. I don't do ftp though. These work for
mail and news. Doesn't ftp use two ports? I was thinking it did, but I
don't have time to check right now. The $ipaddr is provided by dhcpcd.
#establish incoming fowarding rules
/usr/sbin/ipportfw -C
/usr/sbin/ipportfw -A -t $ipaddr/80 -R 192.168.1.5/80
/usr/sbin/ipportfw -A -t $ipaddr/25 -R 192.168.1.2/25
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: Carsten Aulbert <[EMAIL PROTECTED]>
Subject: X-Window, ipportfw and more than one comp behind firewall
Date: Wed, 03 Mar 1999 15:11:07 +0100
Hi,
I just set up ipportfw for redirecting the display through a firewall
into an internal network. But unfortunately it only works for one
computer. I used something like:
ipportfw -C
ipportfw -A -t$External_ip/6000 -R$Internal_ip_no_1/6000
...
ipportfw -A -t$External_ip/6019 -R$Internal_ip_no_1/6019
and
ipportfw -A -t$External_ip/7000 -R$Internal_ip_no_2/6000
...
ipportfw -A -t$External_ip/7019 -R$Internal_ip_no_2/6019
but unfortunately I don't know whether
1st this could work at all
2nd how to set the correct DISPLAY in the outside world (since
DISPLAY=$External_ip:0 works _ONLY_ for the first computer and something
like DISPLAY=$External_ip:7000 -which is probably totally wrong - does
not work at all).
Perhaps you have some suggestions for me
thanx in advance
Carsten Aulbert
[EMAIL PROTECTED]
------------------------------
From: Marc Plasschaert <[EMAIL PROTECTED]>
Subject: DHCP woth Static IP Fallback
Date: Wed, 03 Mar 1999 14:13:54 +0100
How can I configure my network setup to assign a static IP address to
eth0 after a DHCP lookup failure?
Regards,
Marc
------------------------------
From: John <{news}@i-zone.demon.co.uk>
Subject: Re: dls faster in Windows!!
Date: Wed, 3 Mar 1999 02:32:42 +0000
Reply-To: John <{news-reply}@i-zone.demon.co.uk>
In article <7bdfg0$s7k$[EMAIL PROTECTED]>, [EMAIL PROTECTED]
writes
>Hi,
>
>I've been using linux (RH 5.2) for a couple of months now, and I love it. I've
>been able to, with help from the linux community, find a solution to all of
>the newbie problems associated with making linux comfortable to work with --
>except one.
>
>My download speeds are terrible when compared to Windows. In fact, my Windows
>PC delivers better performance with a 33.6k than my RH box delivers with a
>56k. (The RH box also ran windows and achieved very good dl speeds). Before
>you flame me please understand that I'm not blaming this on Linux, but on my
>inability to make it work at it's peak. I have read a number of FAQs/manuals,
>lurked in several newsgroups, searched dejanews, etc. without finding a
>satisfactory solution.
>
>Here is some sys. info:
>Red Hat 5.2, kernel 2.36
>Dialer: kppp (tried minicom & chat too)
>Modem: Best Data 56k V.90 external on ttyS1
>ppp-2.3.5-1
>
>setserial reports:
>/dev/ttyS1, UART: 16550A, Port: 0x02f8, IRQ: 3, Flags: spd_vhi
>
>Here is what I've tried so far:
>Changing mtu/mru settings (currently 576)
>Using setserial to set spd_vhi
>Using irqtune to make irq 3 priority 1
>Passing these args to pppd:
> mtu 576
> lcp-max-configure 60
> asyncmap 0
> netmask 255.255.255.0
>...and I tried some other stuff I can't immediately remember.
>
>For all my efforts, the speed is only a touch better than when I began. If you
>have any ideas, I would be grateful for them.
>
>Thanks for your help and patience,
>Dave D
>
>-----------== Posted via Deja News, The Discussion Network ==----------
>http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
What is your port speed set to? At a guess, it would default to 38,400.
You need to ramp it up to 115,200 to allow it to achieve k56flex speeds
and reap benefits of hardware data compression.
John
Reply-to is broken. Please use news-reply (at) i-zone
dot demon dot co dot uk if you wish to reply via email.
You have spammers to thank for this. Sorry.
------------------------------
From: Rick Onanian <[EMAIL PROTECTED]>
Subject: Re: IP forwarding with port mapping
Date: Wed, 03 Mar 1999 09:40:12 -0500
Doug Goldstein wrote:
>
> Same here. I can't get mine to connect. Even people from outside can't connect.
> Just to be safe I'm covering everything. I have an FTP server running on
> 192.168.1.2 port 22. The machine 192.168.1.1 is my Linux box with IP Masq on it and
> ipportfw and all those tools.
>
> /usr/local/sbin/ipportfw -C
/Begin good
> /usr/local/sbin/ipportfw -A -u167.206.209.24/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -A -t167.206.209.24/22 -R 192.168.1.2/22
End good/
/Begin useless and possibly detrimental
> /usr/local/sbin/ipportfw -A -u192.168.1.1/22 -R 192.168.1.2/22
> /usr/local/sbin/ipportfw -A -t192.168.1.1/22 -R 192.168.1.2/22
End useless and possibly detrimental/
> /usr/local/sbin/ipportfw -L
> Prot Local Addr/Port > Remote Addr/Port
>
> UDP 167.206.209.24/22 > 192.168.1.2/22
>
> UDP 192.168.1.1/22 > 192.168.1.2/22
>
> TCP 167.206.209.24/22 > 192.168.1.2/22
>
> TCP 192.168.1.1/22 > 192.168.1.2/22
>
> And still everyone gets unable to connect to port 22. Same as Hans is getting.
> Anyone have any ideas why?
I wouldn't use 22. You'd be better off using some insanely high port,
such as 4300 or something. Also, having forwarding rules for the 192.168
addresses could be causing a problem.
> Doug Goldstein
--
rick - a guy in search of raw (ISO) cd images of SuSE and Slackware
===============
My opinions don't exist, and as such, are not anyone elses. I do not
represent anyone, not even myself, and especially not my employer.
---
Looking for a 1968 Camaro SS convertible, black interior,
beat-up rustbucket that is in need lots of restoration and TLC.
---
Reply to me at either thc <at sign here> psynet <dot> net or
rick <at sign> mail <dot> artmold <dot> com
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.protocols.ppp,linux.redhat.ppp
Subject: IPCP: timout sending Config-Requests
Date: Wed, 03 Mar 1999 02:42:57 GMT
Hi everybody !
Until the last month, I was running kernel 2.0.36 and pppd 2.2.0f-5 in my
computer and everything works fine. The only strange thing was the message:
Connect: ppp0 <--> /dev/cua2
->>> Unknown protocol (0x802b) received <<<- !!!!!!!!!
and, after this:
local IP address XXX.XXX.XXX.XXX
remote IP address XXX.XXX.XXX.XXX
and then, everything starts to work, (ping, telnet, internet connections, etc,
etc, etc).
This month, I upgrade my kernel to 2.2.2 and pppd to 2.3.5 in my computer
and, using the same connection script:
pppd connect 'chat -v "" ATDPXXXXXXX CONNECT "" ogin: usertest sword: *******
User: network' /dev/cua2 115200 debug modem crtscts defaultroute
I couldn't connect. My modem is a USRobotics Courrier X2 V.Everything 56K and
the another guy is a USRobotics NetServer talk just PPP protocol and without
any kind of compression method enabled. The only obs is the fact that I
expect my IP from it. All the messages showed in file /var/log/messages when
I'm trying to connect with new pppd (2.3.5) and the new kernel (2.2.2) are:
Feb 19 08:15:29 localhost kernel: CSLIP: code copyright 1989 Regents of the
University of California Feb 19 08:15:29 localhost kernel: PPP: version 2.2.0
(dynamic channel allocation) Feb 19 08:15:29 localhost kernel: PPP Dynamic
channel allocation code copyright 1995 Caldera, Inc. Feb 19 08:15:29
localhost kernel: PPP line discipline registered. Feb 19 08:15:29 localhost
kernel: registered device ppp0 Feb 19 08:15:29 localhost pppd[524]: pppd
2.3.5 started by root, uid 0 Feb 19 08:15:30 localhost chat[525]: send
(ATDPXXXXXXX^M) Feb 19 08:15:31 localhost chat[525]: expect (CONNECT) Feb 19
08:15:31 localhost chat[525]: Feb 19 08:16:06 localhost chat[525]:
ATDPXXXXXXX^M^M Feb 19 08:16:06 localhost chat[525]: CONNECT Feb 19 08:16:06
localhost chat[525]: -- got it Feb 19 08:16:06 localhost chat[525]: send
(^M) Feb 19 08:16:06 localhost chat[525]: expect (ogin:) Feb 19 08:16:06
localhost chat[525]: 26400/ARQ/V34/LAPM/V42BIS^M Feb 19 08:16:06 localhost
chat[525]: ^M Feb 19 08:16:06 localhost chat[525]: Welcome to USRobotics^M
Feb 19 08:16:06 localhost chat[525]: The Intelligent Choice in Information
Access^M Feb 19 08:16:11 localhost chat[525]: login: Feb 19 08:16:11
localhost chat[525]: -- got it Feb 19 08:16:11 localhost chat[525]: send
(usertest^M) Feb 19 08:16:11 localhost chat[525]: expect (sword:) Feb 19
08:16:11 localhost chat[525]: usertest^M Feb 19 08:16:11 localhost
chat[525]: Password: Feb 19 08:16:11 localhost chat[525]: -- got it Feb 19
08:16:11 localhost chat[525]: send (*******^M) Feb 19 08:16:11 localhost
chat[525]: expect (User:) Feb 19 08:16:11 localhost chat[525]: ^M Feb 19
08:16:11 localhost chat[525]: Login/Network User: Feb 19 08:16:11 localhost
chat[525]: -- got it Feb 19 08:16:11 localhost chat[525]: send (network^M)
Feb 19 08:16:11 localhost pppd[524]: Serial connection established. Feb 19
08:16:12 localhost pppd[524]: Using interface ppp0 Feb 19 08:16:12 localhost
pppd[524]: Connect: ppp0 <--> /dev/cua2 Feb 19 08:16:45 localhost pppd[524]:
IPCP: timeout sending Config-Requests Feb 19 08:16:46 localhost pppd[524]:
Hangup (SIGHUP) Feb 19 08:16:46 localhost pppd[524]: Modem hangup Feb 19
08:16:46 localhost pppd[524]: Connection terminated. Feb 19 08:16:47
localhost pppd[524]: Exit. Feb 19 08:18:29 localhost kernel: PPP: ppp line
discipline successfully unregistered
I don't know if this is important, but in my kernel I don't enabled IPX or
AppleTalk protocols and I configured ppp built in my kernel. The distribution
used is RedHat 5.2.
ANY kind of help will be VERY, VERY, VERY appreciate !
Claudio Cuqui <[EMAIL PROTECTED]>
System Analyst - TELETRIM COMPANY
Sao Paulo - Brazil
Voice: +55 11 534-0806
+55 11 9916-2061
FAX: +55 11 5506-9182
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Michael Vogwell <[EMAIL PROTECTED]>
Subject: Re: A problem with routing
Date: Wed, 03 Mar 1999 15:17:38 +0000
==============0E76261B76AE9B67CB510707
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Jeffrey J. Monahan wrote:
> I have a small network at home it consists of 1 NT 4.0 Server, 1 Linux
> Slakware box, and an insignificant WFW 311. Now the problem is I have an
> ISDN line on the NT box and a modem on the Linux box. The ISDN I use for
> work and the modem is to my ISP for personnal stuff. On the Linux box I can
> only see the local machines and the internet through my ISP unless I use the
> proxy server on the NT box then I can browse the Internet through the ISDN.
> But I would like to be able to telnet to a HP 9000 at work but I can't .
>
> I'm not sure where the actual problem lies, I'm assuming it's on the NT box
> not able to route the telnet session through the proxy. But I'm not sure.
> Any help would be a great help.
>
> Thank you
> Jeff
I am not an expert neither have I set up a proxy, just read through the Linux
Firewall FAQ's but from what I remember
there are two types of proxy server you can configure, one will permit packets
betwean known machines, a bit like a router
the other more common blocks such access. Anyway check out the Linux FAQ and
Firewall-HOW-TO in your linux
distribution.
--
Mike Vogwell mailto:[EMAIL PROTECTED]
Ericsson http://sdc.ericsson.se/
Swindon Design Centre Tel.No. +44 1793 494521
Fax.No. +44 1793 490151
==============0E76261B76AE9B67CB510707
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
Jeffrey J. Monahan wrote:
<BLOCKQUOTE TYPE=CITE>I have a small network at home it consists of 1 NT
4.0 Server, 1 Linux
<BR>Slakware box, and an insignificant WFW 311. Now the problem is
I have an
<BR>ISDN line on the NT box and a modem on the Linux box. The ISDN
I use for
<BR>work and the modem is to my ISP for personnal stuff. On the Linux
box I can
<BR>only see the local machines and the internet through my ISP unless
I use the
<BR>proxy server on the NT box then I can browse the Internet through the
ISDN.
<BR>But I would like to be able to telnet to a HP 9000 at work but I can't
.
<P>I'm not sure where the actual problem lies, I'm assuming it's on the
NT box
<BR>not able to route the telnet session through the proxy. But I'm
not sure.
<BR>Any help would be a great help.
<P>Thank you
<BR>Jeff</BLOCKQUOTE>
I am not an expert neither have I set up a proxy, just read through the
Linux Firewall FAQ's but from what I remember
<BR>there are two types of proxy server you can configure, one will permit
packets betwean known machines, a bit like a router
<BR>the other more common blocks such access. Anyway check out the Linux
FAQ and Firewall-HOW-TO in your linux
<BR>distribution.
<PRE>--
Mike Vogwell <A
HREF="mailto:[EMAIL PROTECTED]">mailto:[EMAIL PROTECTED]</A>
Ericsson
<A HREF="http://sdc.ericsson.se/">http://sdc.ericsson.se/</A>
Swindon Design Centre Tel.No. +44 1793 494521
Fax.No. +44 1793 490151</PRE>
</HTML>
==============0E76261B76AE9B67CB510707==
------------------------------
From: "Alain Coetmeur" <[EMAIL PROTECTED]>
Subject: Re: Linux Clusters?
Date: Wed, 3 Mar 1999 16:05:32 +0100
[EMAIL PROTECTED] a �crit dans le message
<7bhbme$8iu$[EMAIL PROTECTED]>...
> Is it possible to setup linux servers in fault tolerant clusters -- I think
>that's the term I want, meaning two or more servers that mirror each other and
>have the same dns name and ip address, so if one dies, nothing stops?
nothin stop... hard to implment...
often ther are glitches...
but rettry should work...
> This obviously goes far beyond rdist, nis, etc.
I think this must be done service by service.
for DNS, NIS it's natural
for web you can use a reverse proxy and
some may propose fault tolerance
for NFS, linux box with automount (amd)
can mount readonly as fault tolerant
for samba the DFS from the NT client can
use failover server... maybe is there even
a DFS on Linux...
if you tell us which service you want to
make fault tolerant...
moreover is you want one server to take back
the data (the disk!) of another dead server
you must share disk on SCSI...
I think ther was such a project on linux...
------------------------------
From: Robert Logan <[EMAIL PROTECTED]>
Subject: Direct (Null) Serial TCP/IP
Date: Sun, 28 Feb 1999 15:56:19 +0000
I want to sit in my garden with my laptop and connect to the
net from inside the house. My main Linux box can sit and do
the dialup and masquerading, but I cant work out how!
Do I need some kind of getty/SLIP thing, or is it much simpler.
Im using Linux on the laptp inicdentally. A serial cable is
the only practical option I have for the connection to my housebound
Linux PC. My laptop doesnt have a network card facility ....
Hints anyone?
bert
------------------------------
From: "Timothy Chu" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: Help Working under w95 but not under RH 5.2 Linux
Date: 3 Mar 1999 02:50:30 GMT
In comp.os.linux.networking Rajat & Papia Goon <[EMAIL PROTECTED]> wrote:
: note : my card is also ne2000 compatible. Shall I try to load ne2k-pci.o
: module with IRQ 8 and base address
: 0xe800. I haven't try this option.
: Thank you in advance,
Yes, I'd try that. That's what I'm using for my network card, and it
isn't a lot of trouble to re-compile the module. You didn't mention if
you've tested out this card under anohther operating system to make sure
the IRQ and base address is correct.
--
,,*,,,,,______/|___,i__/~~, ,. ,.' To reply remove the 's' in my
o \` / ` email address [EMAIL PROTECTED]
o / ))) --_\ Vancouver, British Columbia
<tim>< ~~~\|----~~\ \ http://www.ugrad.cs.ubc.ca/spider/v8k1
------------------------------
From: "R. Brooks" <[EMAIL PROTECTED]>
Subject: Network Card
Date: Wed, 03 Mar 1999 10:53:13 -0500
I just recently installed a Red Hat 5.1 and it did not detect
my Mycrodyne 16bit 10/100 NE card.
I now have linux installed but need to get that card working.
Can someone point me the way to add it.
Thanks
Randall Brooks
--
_____________________________________________
Randall Brooks
[EMAIL PROTECTED]
http://www.glendinningprods.com
Senior Engineer
GMP (843) 399-6146 FAX (843) 399-5005
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
