Linux-Networking Digest #368, Volume #10 Wed, 3 Mar 99 17:13:38 EST
Contents:
Connecting two Linux-computers via serial line ... (CHristian Niss)
Re: Security (Erik Hensema)
Re: Using CISCO "dchp proxy-client" option with ISC dhcpd server? (Erik Hensema)
Re: firewall + ICQ (Haaino Beljaars)
need diald help ([EMAIL PROTECTED])
SMTP problem (nico)
Re: NDS and error Code (root)
thread is over, Re: The truth about the Pentium III chip and ID --- **boycott info**
("Cameron Spitzer")
Re: 3c590 problem... (The New Guy)
Re: Simple DNS setup question (Doug Goldstein)
Re: IP Masquerading: losing connections? ("Leo Stutzmann")
Re: How to telnet as root ("Ger Donners")
Netscape error (Linux Newbie)
Re: PPP can't use ISP's Name Server (Clifford Kite)
HELP: Debian Linux Bridging non-functional ("Gus Protopapas")
Re: Linux and Windows NT networks (Aris CRuz)
Re: ppp problems with rh 5.2 (Clifford Kite)
Re: pppd not 8-bit clean Please help! (Clifford Kite)
Re: Linux firewall software recommendation. (John Auld)
Re: IP Masqurading? Please Help ([EMAIL PROTECTED])
----------------------------------------------------------------------------
From: CHristian Niss <[EMAIL PROTECTED]>
Subject: Connecting two Linux-computers via serial line ...
Date: Wed, 03 Mar 1999 20:32:19 +0100
Hi,
I just got a new laptop-computer and want to transfer a bunch of
files from my old computer to the notebook ...
If I had another desktop computer I would take the old harddisk,
put it into the new computer and everything would be perfect.
But that doesn't work ;-) So I tried to install dip on both
computers and didnot succeed ...
And YES - I have read the NET3-HOWTO !!! And I didnot find any clue
how to install the slip-server ... My client connects and waits for
the loginpromt that doesn't appear ;-(((
So what could be the solution for my simple problem ????
Two Linux-machines ... one null-modem cable ... a lot of important
files on one computer and an empty harddisk on the second one waiting
to be feeded ...
TIA for your replies
CHristian
If the SLIP-connection works do I have to install a ftp-Server on
the SLIP-Server as well to transfer the files ??
--
====================================================================
CHRISTIAN NISS computer science student @ FAU Erlangen Nuremberg
eMail: [EMAIL PROTECTED]
http://www.topitmagic.de - DAS Online-Magazin fuer Zauberkuenstler
------------------------------
From: [EMAIL PROTECTED] (Erik Hensema)
Subject: Re: Security
Date: Wed, 3 Mar 1999 21:47:13 +0100
Reply-To: [EMAIL PROTECTED]
Robert L Montgomery wrote:
>Hi.
>I've got a static IP through a cable modem, so my Linux PC is
>always available. This morning I come down to find my computer
>shutdown, and after checking a few logfiles, I found that the system
>ran some system cron jobs at 7:01 AM, but then crashed sometime
>thereafter, even though I hadnt touched my computer since the
>night before.
Time to read the Firewall howto. Close every port you don't need, and log
every connection to them. Also, use kernel 2.2.2 for maximum security.
Hmmm, don't read the firewall howto, it doesn't know about ipchains.
Download ipchains, it comes with its own howto.
--
Erik Hensema ([EMAIL PROTECTED])
------------------------------
From: [EMAIL PROTECTED] (Erik Hensema)
Crossposted-To: comp.dcom.sys.cisco,alt.linux,alt.comp.linux.isp
Subject: Re: Using CISCO "dchp proxy-client" option with ISC dhcpd server?
Date: Wed, 3 Mar 1999 21:49:14 +0100
Reply-To: [EMAIL PROTECTED]
Sami Yousif wrote:
>
>Hmm... maybe it didnt go out correctly the first time.. here it is
>again:..
No, they're both wrong: mime encoded with a huge .sig... The best way not to
get an answer.
--
Erik Hensema ([EMAIL PROTECTED])
------------------------------
From: Haaino Beljaars <[EMAIL PROTECTED]>
Subject: Re: firewall + ICQ
Date: Wed, 03 Mar 1999 09:05:41 +0100
Reply-To: [EMAIL PROTECTED]
Rick Onanian wrote:
> > I have my RH 5.2 system configured as a router to my NT machine. On that
> > machine I run ICQ. Which ports does ICQ use, because I forward
> > everything to my NT machine but that is not what I want. Can anybody
> > help me out? Are there some modules I can use, and if so how?
>
> If you're using IP Masquerading, there is a module for icq. Otherwise,
> I'm not sure..:(
Where can I find that module? And how do I install it?
--
Greetings from Haaino Beljaars
Home Page: HTTP://www.phys.uu.nl/~beljaars/
I am pro Open Source Software
------------------------------
From: [EMAIL PROTECTED]
Subject: need diald help
Date: Wed, 03 Mar 1999 07:50:13 GMT
Hi i was wondering if any could help with the diald package. I get the
following in /var/log/messages whenever it trys to connect.
edited-----
diald : running connect
conect : initializing modem
connect : dialing mysip's number
connect : chat: the date CONNECT 115200
connect : logging in
connect : starting com protocol
chat : failed
connect : prompt not received
diald : connect script failed
obviously my chat does not work, but i cannot figure out why. on my modem
lights i see the rd blinks afew times but my sd does nothing. i have no
problem connecting through redhat's netcfg or doing manually with minicom and
executing pppd manually. i'm fairly sure diald's config files are correct,
they are easy to fill out, just plug in my info. Any help would be greatly
appreciated.
Regards
Mike Burns
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: nico <[EMAIL PROTECTED]>
Subject: SMTP problem
Date: Wed, 03 Mar 1999 08:45:32 -0800
I've recently obtained a domain name.
I've a static ip adress and a linux with
a sendmail working.
The PC states behind a DNS on which our
domain is declared.
Before I obtained the domain name I've never
had a problem associated with sendmail.
Now when I test my new e-mail I'm receiving such message :
Remote-MTA: DNS; dns-name
Diagnostic-Code: SMTP; 551 <e-mail> ... we do not relay
Does it come from my sendmail configuration, or from an error
in the DNS domain name's declaration ?
Can anyone help me, thank's for advance.
nico
------------------------------
From: [EMAIL PROTECTED] (root)
Subject: Re: NDS and error Code
Date: 3 Mar 1999 21:55:35 +0100
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (vaclav vyvoda) writes:
> Hard to say, but it sounds like a corrupted object. You should run
> DSREPAIR on the NetWare server and also check the Novell Knowledgebase
> (http://support.novell.com) for more information related to the "-601" error
> code.
>
> Good luck,
>
> Vas
>
> On Bernhard Holleitner [EMAIL PROTECTED] wrote:
>: Hi,
>: when I try to login to a Novell 4.x server I get the "NDS error code
>: -601". Can anyone tell me what that means or how I can login ?
>: Thanks
>
>: Bernhard
>
------------------------------
From: "Cameron Spitzer" <[EMAIL PROTECTED]>
Crossposted-To:
comp.lang.perl.misc,comp.mail.sendmail,comp.os.linux.setup,comp.os.ms-windows.advocacy
Subject: thread is over, Re: The truth about the Pentium III chip and ID --- **boycott
info**
Date: 2 Mar 1999 20:00:53 GMT
What's this got to do with Linux?
In article <[EMAIL PROTECTED]>, posted in Newsgroups:
comp.lang.perl.misc,
comp.mail.sendmail,
comp.os.linux.networking,
comp.os.linux.setup, and
comp.os.ms-windows.advocacy
Bill Anderson <[EMAIL PROTECTED]> wrote:
>Bill Frisbee wrote:
>> John Kenyon <[EMAIL PROTECTED]> wrote in message
>> news:[EMAIL PROTECTED]...
>> >George Bonser wrote:
>> >> Oh, give it a break. Every Sun SPARC or UltraSPARC machine ever built has
>> >You mean the host id, which is held in NVRAM, (which can be modified),
>> Bah... Sun knows EVERYTIME I turn my system on tracked by that host id which
>What Stalin and Hitler did was nothing new, either.
Obc.o.l.networking: Stalin and Hitler would have hated Linux and the
copyleft. And they would have hated networks. And when they were done
with the queers, the mentally ill, the communists, the union
organizers, the blacks, and the Jews, they would have come after the
code hackers.
Cameron
http://petra.greens.org/~cls/
------------------------------
From: The New Guy <[EMAIL PROTECTED]>
Subject: Re: 3c590 problem...
Date: Tue, 02 Mar 1999 19:37:07 GMT
shaefer wrote:
>
> Hi all,
>
> Sorry for this silly question, but I need to know if there is some way
> to switch a 3Com 3c590 Vortex from the 10Base2 interface to the 10BaseT
> interface?
The card EEPROM uses an autodetection to determine which port is being
used on the card.
> When I do the simple thing (place a 50-ohm terminator on the BNC plug and insert
> my cat-5 cable into the RJ45 plug), it doesn't work.
Try it without the terminator on the bnc plug. I think the card
defaults to the bnc or goes tri-state when it can't decide which port to
use, which i think it would be doing in this case.
If you have internet access, download the cards installation files off
of 3com's sight. The installation program comes with a util to change
the autodetect on the card to use a specific port as well as the cards
resources and right them to the EEPROM.
If I am in error here, would someone please correct me.
Hope this helps
The New Guy
------------------------------
From: Doug Goldstein <[EMAIL PROTECTED]>
Subject: Re: Simple DNS setup question
Date: Wed, 03 Mar 1999 21:33:45 GMT
One thing. Where's the in-addr.arpa file for 128.200.234.2? You also need to make
one for that. Otherwise looks fine to me. Though I use BIND 8.1.2
Doug Goldstein
Steve Shreeve wrote:
> I have a Linux box with an officially assigned DNS name. On this machine, I'd
> like to install it's own DNS server (bind/named) so that it can serve up
> authoritative data for other domains.
>
> I have read the DNS Howto's etc, but still have a few questions. First, I am
> running RedHat 5.1 on a PII-400 box and have installed bind without any
> problems. I understand that I need at least 4 files to get everything running
> properly. These are:
>
> /etc/named.boot
> /var/named/root.cache
> /var/named/localhost
> /var/named/ [zone file for other domain ] (in this case s2s.org)
>
> The name of my machine is: 'medweb.med.uci.edu' and the name of the domain I'd
> like to setup is 's2s.org'. I only have one IP address, but I want both
> medweb.med.uci.edu and s2s.org to point to 128.200.234.2. Here's what I have:
>
> ------------------------------------------------------------
>
> /etc/named.boot is:
> =====
> directory /var/named
> cache . root.cache
> primary s2s.org s2s.org
> primary 0.0.127.in-addr.arpa localhost
>
> /var/named/root.cache is:
> =====
> [ just a copy of the file at ftp://ftp.rs.internic.net/domain/named.root ]
>
> /var/named/localhost is:
> =====
> @ IN SOA medweb.med.uci.edu. shreeve.medweb.med.uci.edu. (
> 1998030316 ; Serial, today'sdate + version
> 10800 ; Refresh after 3 hours
> 3600 ; Retry after 1 hour
> 604800 ; Expire after 1 week
> 86400 ) ; Minimum TTL of 1 day
>
> NS medweb.med.uci.edu.
>
> 1 PTR localhost.
>
> /var/named/s2s.org is:
> =====
> s2s.org. IN SOA ns.s2s.org. shreeve.s2s.org. (
> 1998030316 ; Serial, today'sdate + version
> 10800 ; Refresh after 3 hours
> 3600 ; Retry after 1 hour
> 604800 ; Expire after 1 week
> 86400 ) ; Minimum TTL of 1 day
>
> s2s.org. NS ns
> s2s.org. MX 10 mail
> s2s.org. A 128.200.234.2
>
> ns A 128.200.234.2
> mail A 128.200.234.2
> www A 128.200.234.2
> ftp A 128.200.234.2
>
> localhost A 127.0.0.1
>
> ------------------------------------------------------------
> Does this look okay? Are there any errors with this?
>
> Steve Shreeve
> UC Irvine
------------------------------
From: "Leo Stutzmann" <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading: losing connections?
Date: Tue, 02 Mar 1999 19:51:08 GMT
I have a similar problem, except my dhcp client doesn't renew, which sets my
eth1 to 0.0.0.0 and then of course everything stops working. This happens
every 2-3 days. A reboot corrects the problem. Doing ifdown eth1 and then
ifup eth1 always fails to get the ip address, even though the ifup script is
where I specify the hostname to use.
Leo
[EMAIL PROTECTED] wrote in message
<7bfha6$m1t$[EMAIL PROTECTED]>...
>I've set up Linux boxes with IP Masquerading to act as cable modem routers
>for small LANs before, and they've always worked fine. Recently, I set one
>
>...
>happening or how I go about debugging this? TIA...
>
>anger
>
>-----------== Posted via Deja News, The Discussion Network ==----------
>http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Ger Donners" <[EMAIL PROTECTED]>
Subject: Re: How to telnet as root
Date: Tue, 2 Mar 1999 20:52:23 +0100
edit /etc/ securetty
add the console you wan't to telnet as root from
John Thompson wrote in message <[EMAIL PROTECTED]>...
>Paul wrote:
>
>> Can anyone tell me how to allow root telnet access to a Linux box?
>> I've added .rhosts file to root's home directory but it seems to be
>> PAM authentication that is preventing it.
>
>For security reasons you don't want to telnet in directly as
>"root." Telnet in as an ordinary user and then "su -" to
>become root. If you omit the hyphen after su you will not
>get root's environment, so it's usually a good idea to use
>it. Otherwise paths and such may not be set properly to
>find the commands you need.
>
>--
>
>-John ([EMAIL PROTECTED])
------------------------------
From: [EMAIL PROTECTED] (Linux Newbie)
Subject: Netscape error
Date: Tue, 02 Mar 1999 20:10:33 GMT
I finally got ppp working but now I can't get Netscape's email
program to work. I can browse the net with it though. When I enter
my mail server in the incoming and outcoming server fields it says
"Host unknown". This is strange since I can enter the servers in
Kmail and it works fine. It's the same for my news server too. I
can't use the netscape reader because of this.
--
"Linux: The best things in life are free"
------------------------------
From: [EMAIL PROTECTED] (Clifford Kite)
Subject: Re: PPP can't use ISP's Name Server
Date: 3 Mar 1999 14:56:22 -0600
Mike Niemann ([EMAIL PROTECTED]) wrote:
: OK, I'm a newbie... although it has taken me about 4 installs, and a
: couple hundred boots to get this far.
: I finally can get connected to my ISP (via Minicom), and I start PPP
: with: pppd -d /dev/cua1 38400 defaultroute
Add the pppd options crtscts and "asyncmap 0". Check the speed of
/dev/cua1 with "setserial -a /dev/cua1", set it to 38400, if it's not
that already, with "stty 38400 < /dev/cua1".
: I can ping across my peer-to-peer lan, which uses the eth0 network
: card. When I ping to an internet address... I get no response (all
: lost packets).
Nameservers go in /etc/resolv.conf, "man 5 resolver".
: If I load Netscape, I can access an internet site with the IP address,
: but not the www.xxxx.com name. Oddly enough the site responds to
: Netscape although not to ping (perhaps that is normal).
Some sites won't respond, the uglies and SYN flooding have seen to that.
<snip>
: PS - I seem forced to use Minicom because my ISP is Netcom.... and my
: login starts with #... which isn't a cool character in Linux'ville.
: I'm sure there is some sort of escape character... just haven't found
: it yet.
Try enclosing the expected login in single quotes (') or just look for
ogin rather than all of the prompt. Using pppd with a chat script beats
minicom hands down.
--
Clifford Kite <[EMAIL PROTECTED]> Not a guru. (tm)
/* 97.3% of all statistics are made up. */
------------------------------
From: "Gus Protopapas" <[EMAIL PROTECTED]>
Subject: HELP: Debian Linux Bridging non-functional
Date: Wed, 3 Mar 1999 13:01:38 -0500
Reply-To: "Gus Protopapas" <[EMAIL PROTECTED]>
I have followed the mini-"how-to" in regards to bridging with Debian Linux
2.0.34 kernel (also tried 2.0.36). Both cards are configured properly and
have no conflicts. Computers on either side of the bridge can not
communicate with eachother and my problem is that it won't pass anything
between either of the two segments. Computers in their own segments can see
eachother fine.
If anyone has any insight as to why this communication won't happen, it
would be much appreciated.
Regards,
Gus Protopapas
[EMAIL PROTECTED]
------------------------------
From: Aris CRuz <[EMAIL PROTECTED]>
Subject: Re: Linux and Windows NT networks
Date: 3 Mar 1999 21:31:49 GMT
Take a quick look at the how-to,
http://sunsite.auc.dk/ldp/HOWTO/SMB-HOWTO.html, and see what you get out
of it. If this is not enough, do a search on www.google.com, many unix
links.
Cameron Huff wrote:
> At the company I work at, we would like to deploy some Linux servers as
a test.
> Can we setup the Linux box so that it acts like a Backup Domain
Controller for
> a NT Network?
>
> Any help on this would be apreciated
>
> Cameron Huff
>
>
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
From: [EMAIL PROTECTED] (Clifford Kite)
Subject: Re: ppp problems with rh 5.2
Date: 3 Mar 1999 14:35:17 -0600
Mats Ekelund ([EMAIL PROTECTED]) wrote:
: Trying to connect to my ISP (telia Sweden) via ISDN and a Zyxel omni.net
: ISDN I get the following log:
: Mar 1 20:40:21 foo pppd[398]: pppd 2.3.5 started by root, uid 0
: Mar 1 20:40:23 foo pppd[398]: Serial connection established.
: Mar 1 20:40:24 foo pppd[398]: Using interface ppp0
: Mar 1 20:40:24 foo pppd[398]: Connect: ppp0 <--> /dev/cua1
: Mar 1 20:40:24 foo pppd[398]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
: <magic 0x6a7db57b> <pcomp> <accomp>]
: Mar 1 20:40:26 foo pppd[398]: rcvd [LCP ConfReq id=0x30 <asyncmap 0x0>
: <auth pap> <magic 0x4e9e2cf7>]
: Mar 1 20:40:26 foo pppd[398]: sent [LCP ConfAck id=0x30 <asyncmap 0x0>
: <auth pap> <magic 0x4e9e2cf7>]
: Mar 1 20:40:27 foo pppd[398]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
: <magic 0x6a7db57b> <pcomp> <accomp>]
Lots more of the same...
You are sending and responding to the ISP's requests. The ISP is sending
but doesn't understand what is gets - if it gets anything. It may be
a flow control problem, a speed problem, or something else that would
scramble your messages to the ISP.
The /dev/ttySx for the modem should be initially set to 38400, check it
with setserial -a /dev/ttySx and set it with "stty 38400 < /dev/ttySx"
After being used successfully the speed reported by setserial will
be 115200.
The boot-up setserial command needs to have the "spd_vhi" option set.
Also check that the UART specification agrees with the UART used by
the modem.
Check the modem settings for hardware flow control.
: pppd is started with:
: exec /usr/sbin/pppd debug lock modem crtscts /dev/cua1 115200 \
: asyncmap 0 escape FF kdebug 0 $LOCAL_IP:$REMOTE_IP \
: noipdefault netmask $NETMASK defaultroute connect $DIALER_SCRIPT
: where $LOCAL_IP is 0.0.0.0, $REMOTE_IP is 0.0.0.0 and $NETMASK is
: 255.255.255.0
The "escape FF" can cause communication problems and is generally useless.
I'd drop it. The netmask should be left to pppd to set, although it's not
connected with your problem.
--
Clifford Kite <[EMAIL PROTECTED]> Not a guru. (tm)
/* Speak softly and carry a +6 two-handed sword. */
------------------------------
From: [EMAIL PROTECTED] (Clifford Kite)
Subject: Re: pppd not 8-bit clean Please help!
Date: 3 Mar 1999 15:03:00 -0600
[EMAIL PROTECTED] wrote:
: My connect script get's me logged onto my ISP, and then hands things
: over to pppd which hangs up.
: The /var/log/messages has the following in it:
: 11:10:09 lingate pppd[368]: Connect: ppp0 <--> /dev/ttyS2
: 11:10:39 lingate pppd[368]: LCP: timeout sending Config-Requests
: 11:10:39 lingate pppd[368]: Connection terminated.
: 11:10:39 lingate pppd[368]: Receive serial link is not 8-bit clean:
: 11:10:39 lingate pppd[368]: Problem: all had bit 7 set to 0
: 11:10:39 lingate pppd[368]: Hangup (SIGHUP)
: 11:10:39 lingate pppd[368]: Exit
Check your chat script for errors. Make sure you script what the ISP
needs. Replace any <CONNECT ''> with <CONNECT \d\c> or <CONNECT \\d\\c>
depending on where the script is located. The '' or "" sends an extra
carriage return that confuses some ISPs. "man pppd" for the meaning
of \d and \c. The PPP-HOWTO has a whole section on "not 8 bit clean",
but nothing about the CONNECT bit above.
--
Clifford Kite <[EMAIL PROTECTED]> Not a guru. (tm)
/* The wealth of a nation is created by the productive labor of its
* citizens. */
------------------------------
From: (John Auld)
Subject: Re: Linux firewall software recommendation.
Date: Wed, 03 Mar 1999 21:36:43 GMT
On Tue, 2 Mar 1999 15:15:09 +1100, "Glenn Mathison"
<[EMAIL PROTECTED]> wrote:
>Hi,
>
>I am setting up a linux server that I want to put a firewall onto. Could
>anyone please suggest a good firewall package that I could use?
>
>Thanks in advance...
>
>Glenn
>
See the URL below for a list of what's available.
http://sites.inka.de/sites/lina/freefire-l/tools.html
I use the built in firewall features of Linux with ipfwadm, but it is
worth looking at the alternatives.
John Auld
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.setup,comp.ps.linux.hardware,alt.os.linux
Subject: Re: IP Masqurading? Please Help
Date: Wed, 03 Mar 1999 19:24:30 GMT
On Tue, 02 Mar 1999 14:21:03 -0600, childsplay
<[EMAIL PROTECTED]> wrote:
sounds to me like the routeing table isn't set up corectly.
>I really hope someone can help me cause IP Masqurading is apparently
>what i need to do.
>I was looking at the mini HOWTO on IPMasqurading, but it talks about
>compiling the
>kernal :( I have RedHat 5.2 with the 2.0.36 kernal. Can someone tell me
>what i'm supposed to do?
>Please. I'm still very new and i wanna get both of my pcs connected to
>the net with the one connection
>But the linux box will not let me use the eth0 and the ppp0 at the same
>time. If i have the eth0 active the
>ppp0 will not work, and if the ppp0 is active the eth0 will not work. I
>am setting up everything
>thru Xwindows cause i'm still fuzzy on all the command line stuff. All
>the HOWTO's i read are based
>off all the command line things which i dunno. Any way if anyone could
>assist me with setting up
>my 2 pcs to get connected to the net. Thank you very much in advanced.
>
>--
>Charles "childsplay" VanDyke
>[EMAIL PROTECTED]
>ICQ# 14539920 ============
>]TeamGameSpy[ ============
>http://www.gamespy.com ===
>
>
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
