Linux-Networking Digest #419, Volume #10 Mon, 8 Mar 99 01:13:43 EST
Contents:
Re: Linux as bridge (OSI Level 2) (Vidar Andresen)
Re: Bridge as switch (Vidar Andresen)
DHCP to DNS (Stephen Carville)
Re: NT4/Samba - Lost connectivity (Ken Braatz)
Re: Good dhcpcd FAQ? (brian moore)
Re: PPP not working with my ISDN TA (David Heinzinger)
Re: Help with external IDSN pls (David Heinzinger)
Re: Linux VPN / Tunnel solutions (Larry Williamson)
What does this mean? ("WF, Yee")
ISP callback (Patrick Lanphier)
Re: Linux as a router to replace school NT4 box? (Don Heffernan)
Re: How to stop LPRng from printing banners to a networked HP 8100N? (T'krin)
Re: samba prob (JoHn DoH)
Linux client/server? (Dan Chak)
Re: NT4/Samba - Lost connectivity (giangy)
IP masqueradeing (Michael James Weiskopff)
Recommendation for a good news viewer (smcewan)
where can i get an IMAP email server (Barry Schneider)
Re: For all you Nicrosoft lovers ("Bob Taylor")
telnet problem to linux box (Purnendu Sinha)
portforwarding installation problem ("Ovidiu Dressler")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Vidar Andresen)
Subject: Re: Linux as bridge (OSI Level 2)
Date: Mon, 08 Mar 1999 01:42:18 +0100
In article <7b9hg9$i94$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Peter Wichert) wrote:
>Hi out there,
>
>I'm looking for some information about using Linux as bridge between two
>ethernet-segments (without IP-based routing).
>
>I haven't seen anything about it in howtos and manuals, so please send me a
>note for any idea.
I tried to compile a couple of 'bridge's dating from late 1996. On a
2.0.36. And was not able to get i to compile.
But. I had Monkeylinux with a 2.0.30 kernel on a partition; rebooting;
compiling on it; rebooting; and then installing bridge on the 2.0.36;
did work.
Yours
Vidar Andresen
------------------------------
From: [EMAIL PROTECTED] (Vidar Andresen)
Subject: Re: Bridge as switch
Date: Mon, 08 Mar 1999 02:09:06 +0100
In article <[EMAIL PROTECTED]>,
Jon Hilton <[EMAIL PROTECTED]> wrote:
>Hi.
>
>I have a Redhat 5.2 box with a 4 port Ethernet card. All four interfaces
>work fine (if I enable them). I would like to configure the box to have
>one ip address, but use the other three interfaces as though they were a
>switching hub.
>
>I have tried using the experimental bridging code. I managed to link two
>subnets using two of the interfaces on my card, so I can make it work
>(sort of), but can't make much sense of the two HOWTO's in light of my
>requirement. I really don't need or want to bridge different subnets, I
>just want to switch traffic between other workstations on my subnet
>without having to route it.
>
>I tried setting all the interfaces to the IP address I want to show for
>my box and turning on bridging. My system would no longer respond to
>pings or valid requests at ports on that IP address on any of the
>interfaces.
I have only tried _separate_ IP addresses on three nic's. (used only
two, but.) And the bridge become *invisible*. Transparent. Seen
trough, but not seen. (Or was it dependent on which nic who was
activated last..)
An
/sbin/ifup eth0
Did make eth0 visible for for the machine connected to that interface.
An
/sbin/ifup eth1
Did make eth1 visible for for the machine connected to that interface.
The eth0 was by that lost again. Invisible.
But the bridge between the to machines connected trough the machine
running the bridge was undisturbed.
The machine running the bridge could kind of change focus and choose which
machine to talk to - to be seen by. It was also a nfs-server for the
machine linked til eth0. If i turned focus whith '/sbin/ifup eth1' the
machine vent invisible. Well.
>From my reading of the bridging stuff, it looks like it may be able to
>support what I want, but I just can't get it to work the way I would
>like.
>
>Any ideas?
Try to do use all four interfaces in the bridge, an do a
/sbin/ifup eth?
will make your machine visible in the direction you need to connect.
I hope..
(the bridging+ipfwadm howto have better solutions.)
Yours
Vidar Andresen
------------------------------
From: Stephen Carville <[EMAIL PROTECTED]>
Subject: DHCP to DNS
Date: Sun, 07 Mar 1999 20:20:11 -0800
A couple of weeks ago a couple of persons here expressed an interest in my
DHCP to DNS scripts. I now have some reliably working perl code. It
requires BIND 8 and the nsupdate program (part of the BIND * package). It
has only been tested with dhcpd 2.0. Needless to say, the code is very
beta.
So far, none of the attempts I've seen to integrate DHCP and DNS have taken
advantage of the dynamic update capabilities of BIND 8 so I wrote some
scripts that do. If anyone is interested, please drop me a line. I don't
have a web page to distribute this with yet so you will have to be able to
receive binary attachments.
--
Stephen Carville
[EMAIL PROTECTED]
====================================================
Management: The art of hiring intelligent, skilled individuals and then
ignoring their advice.
------------------------------
From: Ken Braatz <[EMAIL PROTECTED]>
Subject: Re: NT4/Samba - Lost connectivity
Date: Mon, 08 Mar 1999 04:16:01 +0000
David Polete wrote:
<snip>
>
> yeah, that's a problem [with SP3] that M$ themselves documented (with
> patch)
> on their website. incidentally, as soon as they realized they were
> publishing
> the fix to a problem they intentionally created, they removed any
> reference to
> the fix. i wonder what their motivation was? could it be they don't
> want
> samba to work?
>
> at any rate, i read an article at:
> http://www.vcnet.com/bms/
> that specifically mentioned NT4 and SP3 and how samba was broken.
> unfortunately,
> they're heavily weighted towards the anti-M$ theme. while they do have
> some
> insights as to 'what got broken, when, and by whom', they don't seem to
> have any
> references to the cure, at least last time i looked.
>
> they did say the NT4/SP3 fix required a registry tweak on the NT box to
> get it
> to cooperate with samba. again, they didn't say what the tweak was.
> with a
> little research you might find someone who nabbed the fix (before M$
> deleted it)
> and is making the info available. remember - 'the truth is out there'.
> ;-)
>
> good luck,
> dp
--
Many thanks! I checked out the URL you listed and found the article #
for the fix. From there I checked an old copy of Technet (June 98) and
lo and behold:
PSS ID Number: Q166730
Article last modified on 03-30-1998
4.0
winnt
======================================================================
==========================================================================
The information in this article applies to:
- Microsoft Windows NT Workstation version 4.0
- Microsoft Windows NT Server version 4.0
==========================================================================
SYMPTOMS
========
After upgrading your Windows NT 4.0 computer to Service Pack 3 (SP3),
you
are unable to connect to certain non-Microsoft Server Message Block
(SMB)
servers and you may receive the following error message:
System error 1240 has occurred.
The account is not authorized to login from this station.
CAUSE
=====
Some non-Microsoft SMB servers only support unencrypted (plain text)
password exchanges during authentication.
The SMB client redirector in Windows NT 4.0 Service Pack 3 handles
unencrypted passwords differently than previous versions of Windows NT.
Beginning with Windows NT 4.0 Service Pack 3, the SMB redirector does
not
send an unencrypted password during authentication to an SMB server
unless
you add a specific registry entry.
In previous versions, the client would automatically negotiate downward
to
unencrypted (plain text) authentication if requested from the server.
RESOLUTION
==========
Check with the vendor of the SMB server product to see if there is a way
to
support encrypted password authentication, or if there is a newer
version
of the product that adds this support.
Alternatively, to enable unencrypted (plain text) passwords for the SMB
client on Windows NT 4.0 Service Pack 3 and newer systems, modify the
registry in the following way:
WARNING: Enabling this will allow unencrypted (plain text) passwords to
be
sent across the network when authenticating to an SMB server that
requests
this option. This can lessen the overall security of an environment and
should only be done after careful consideration of the consequences of
plain text passwords in your specific environment.
WARNING: Using the registry editor incorrectly can cause serious,
system-
wide problems that may require you to reinstall Windows NT. Microsoft
cannot guarantee that any problems resulting from the use of the
registry
editor can be solved. Use this tool at your own risk.
1. Run Registry Editor (Regedt32.exe).
2. From the HKEY_LOCAL_MACHINE subtree, go to the following key:
\SYSTEM\CurrentControlSet\Services\Rdr\Parameters
3. Click Add Value on the Edit menu.
4. Add the following:
Value Name: EnablePlainTextPassword
Data Type: REG_DWORD
Data: 1
5. Click OK and then quit Registry Editor.
6. Shut down and restart Windows NT.
To enable unencrypted (plain text) passwords in an automated setup,
modify
the registry in the following way:
WARNING: Using the registry editor incorrectly can cause serious,
system-
wide problems that may require you to reinstall Windows NT. Microsoft
cannot guarantee that any problems resulting from the use of the
registry
editor can be solved. Use this tool at your own risk.
Add the following line to the Product.Add.Reg section of the Update.inf
file:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdr\Parameters,
"EnablePlainTextPassword", 0x10001, 1
Additional query words: 4.00 VAX
======================================================================
Keywords : NTSrvWkst kbnetwork kbbuglist kbfixlist
Version : 4.0
Platform : winnt
Issue type : kbreadme
Solution Type : kbservicepack
=============================================================================
Copyright Microsoft Corporation 1998.
You know, I used to like MS. Now all I can say is - What a bunch of
assholes... I hope the DOJ nails them to a cross.
Ken Braatz
The "-x" in my address is a spam killer. Remove it to respond via email.
------------------------------
From: [EMAIL PROTECTED] (brian moore)
Crossposted-To: alt.os.linux.slackware,comp.os.linux.misc
Subject: Re: Good dhcpcd FAQ?
Date: 8 Mar 1999 04:23:51 GMT
On Mon, 08 Mar 1999 01:18:40 GMT,
A.G. <[EMAIL PROTECTED]> wrote:
> Could anyone point me in the direction of the subj.?
(from memory)
http://metalab.unc.edu/pub/Linux/docs/HOWTO/mini/DHCP
--
Brian Moore | "The Zen nature of a spammer resembles
Sysadmin, C/Perl Hacker | a cockroach, except that the cockroach
Usenet Vandal | is higher up on the evolutionary chain."
Netscum, Bane of Elves. Peter Olson, Delphi Postmaster
------------------------------
From: David Heinzinger <[EMAIL PROTECTED]>
Subject: Re: PPP not working with my ISDN TA
Date: Mon, 08 Mar 1999 04:26:30 +0000
give my config a try,
http://www.cl.ais.net/mrroper1/aislinux.html
--
Dave.
------------------------------
From: David Heinzinger <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware,comp.os.linux.setup,alt.os.linux
Subject: Re: Help with external IDSN pls
Date: Mon, 08 Mar 1999 04:28:06 +0000
http://www.cl.ais.net/mrroper1/aislinux.html
try ppp option of asyncmap 0
it did the trick fir me.
--
Dave.
------------------------------
From: Larry Williamson <[EMAIL PROTECTED]>
Subject: Re: Linux VPN / Tunnel solutions
Date: 07 Mar 1999 20:44:29 -0500
"Tom Hishon" <[EMAIL PROTECTED]> writes:
> I have recently been tasked with connecting 2 IP networks (for branch
> offices ) across the
> internet for a local non-profit organization. Because of the nature of the
> company, they
> dont have a lot of money to spend on proprietary/hardware solutions to this
> problem.
I have only a little experience with tunnelv
(http://www.worldvisions.ca/tunnelv) but I have found it to work well.
------------------------------
From: "WF, Yee" <[EMAIL PROTECTED]>
Subject: What does this mean?
Date: Mon, 08 Mar 1999 04:42:59 GMT
Greetings everyone,
I installed RedHat 5.2 and turned on IP masquerading
successful. I checked my /var/messages file and I saw a ton
of the following messages. This looks suspicious. Can anyone
enlighten me as to what it means?. Thanks in advance.
Mar 7 14:26:03 portmap[1516]: connect from 24.1.yyy.xxx to
callit(ypserv): request from unauthorized host
Mar 7 14:26:07 portmap[1517]: connect from 24.1.yyy.xxx to
callit(ypserv): request from unauthorized host
Mar 7 14:26:15 portmap[1518]: connect from 24.1.yyy.xxx to
callit(ypserv): request from unauthorized host
Mar 7 14:26:19 portmap[1519]: connect from 24.1.yyy.xxx to
callit(ypserv): request from unauthorized host
------------------------------
From: Patrick Lanphier <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: ISP callback
Date: Mon, 08 Mar 1999 04:43:12 +0000
I would like to be able to call a computer with my computer or over a voice phone and
request that
it dial it's ISP, do any of you know of an easy way of accomplishing this task?
Patrick Lanphier
Advanced Information Technologies
The Pennsylvania State University
------------------------------
From: [EMAIL PROTECTED] (Don Heffernan)
Subject: Re: Linux as a router to replace school NT4 box?
Date: Mon, 08 Mar 1999 01:44:55 GMT
On Sat, 6 Mar 1999 23:15:43 -0000, "Andy"
<[EMAIL PROTECTED]> wrote:
>> Hi Andy,
>>
>>I have installed a Linux router connecting two subnets with about 20 and
>100
>>nodes. The hardware is an old '486/66 with no hardisk, no monitor, and no
>>keyboard. It works very fine. On this router I have also configured IPX
>>routing, firewalling and masquerading services. The entire Linux software
>is
>>located on a single bootable floppy disk. I found all needed informations
>on
>>the commonly available HOWTOs.
>>
>>Ciao
>>Stefano
>>
>Any possibility of being posted the floppy?, please.
>
>and to think I was concerned that the 100MB hard drives in our old 386/486's
>would be too small!
>Regards,
>Andy
Sounds like a good deal to me. You can test out a commercial version
of this approach from http://www.sharethenet.com/. It worked well for
me, but I just tested it out to see if it would work. I'm still
trying to figure Linux out well emough to do IPMasq along with a bunch
of other stuff.
Don
------------------------------
From: T'krin <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Re: How to stop LPRng from printing banners to a networked HP 8100N?
Date: Mon, 08 Mar 1999 01:51:25 +0000
Reply-To: [EMAIL PROTECTED]
That was definately the trick. Thank you!!!
[EMAIL PROTECTED] wrote:
> In comp.os.linux.networking Dan Hill <[EMAIL PROTECTED]> wrote:
> > I am trying to suppress the banner page when printing to an HP 8100N
> > laser printer via a jetdirect card. I am using LPRng on a RedHat 5.2
> > fully updated box. I have used the options available within
> > /etc/printcap and via the lpr command. I can not get it to stop.
>
> I had the same problem. You will also need to telnet in to the JetDirect
> card and turn off the banner pages that it generates itself. HP has the
> JetDirect generated banner pages turned on by default.
>
> --
> Charles Rutledge | Liberty is a tenuous gift. Hard to win, easy
> [EMAIL PROTECTED] | to give away, and no will protect it for you.
Dan
------------------------------
From: JoHn DoH <[EMAIL PROTECTED]>
Subject: Re: samba prob
Date: Tue, 02 Mar 1999 01:01:50 GMT
Sorry for the inclearity (I originally posted to my usual slackware ng
but they did not know how to fix the problem). Now there was an
interesting revelation. If I typed say '\\blah' almost imediately a
dialog box saying it is not that pops up BUT if I type '\\CV974194-a'
(my linux box) it hangs for about ten seconds then says name not found.
Something is up and I think it is due to my smb.conf file maybe? I do
not know.
-DoH
PS - thanks for the quote compliment, I go to a public high school so
this type of philosophy comes to me quite naturally.
Eugene Strulyov wrote:
>
> Try this:
> on win95 start->run, type \\machine_name (the name you assigned to samba
> box). Sometimes samba doesn't show up in the Network Neighbourhood. At one
> point my samba box didn't show up there (but everything worked), now it
> does and I still have no idea what was causing the problem.
>
--
JoHn 'DoH' KeLm
http://www.johndoh.cjb.net
"People are too stupid to realize they are" - DoH
------------------------------
From: Dan Chak <[EMAIL PROTECTED]>
Subject: Linux client/server?
Date: Mon, 08 Mar 1999 00:13:56 +0000
I'd like to have a bunch of linux machines that all have the exact same
environment for users who log in. ie, if a program is on one, it's on
all of them, but I don't want to have to make the same configuration
changes to each one every time I make a change. I was thinking of just
exporting /usr/local and /home on one machine with NFS and mounting them
on all the other machines, but this doesn't seem to do the trick, mostly
because a lot of RPM's install themselves outside of /usr/local, and
also because it's painfully slow.
so basically, I'm wondering what the best way to accomplish this is:
- Is the NFS idea best? (It seems really slow!) If so, how much should
I be mounting NFS (what's the minimum that actually has to be loading
from the local machine??)
- Should I run X sessions to the server machine? This has the effect I
want, but it puts a heavy load on the server and the client PC's CPUs go
almost unused.
Anybody know a good way to set this all up?
-Dan
--
__________________________________________________________________
"Begin at the beginning," the King said, gravely, "and go on
till you come to the end: then stop." -Lewis Carroll
==================================================================
------------------------------
From: giangy <[EMAIL PROTECTED]>
Subject: Re: NT4/Samba - Lost connectivity
Date: Mon, 08 Mar 1999 01:25:35 +0100
The point is from service pack 3 on they disabled
plain text password
you can do to things... put encripted passwords on samba
or enable plain passwords
take nojunkmail out to write to me
------------------------------
From: Michael James Weiskopff <[EMAIL PROTECTED]>
Subject: IP masqueradeing
Date: Sun, 07 Mar 1999 21:14:02 -0500
Reply-To: [EMAIL PROTECTED]
Well first of all I am new to linux. Second of all I acatually got IP
masqueradeing set up and worked out thanks to a few people on use net
news. Now the problem, I am running Red Hat Linux 5.2 on a 100 Base T
intranet with an outside connection to the internet useing PPP. I have
been able to use alot of the "Internet Programs" that my lan members
use. For instance MIRC, ICQ, Excite PAL, AOL Instant Messanger, HTTP,
FTP, Telnet, ETC....... Any way. I have Norton utilities 3.0, or
something like that, and it has a built in "live update" program were it
downloads updates of the internet. Now when it tries to connect to
nortons FTP server it doesn't make the connection. Now this tells me
this. Norton is not useing port 21 as the traditional FTP port.
Instead it is useing some other port that IP masqueradeing dosn't
support. But remember this is just a guess. WHat I want to know is how
to fix this situation. Since my guess is that it is useing an
unsupported port, how do I find this port, and how do I add support to
IP masqueradeing for that port. I know that IP masqueradeing is still
experimental, but knowling linux, for the past 2 months that I have
actually played with it, I kow there has to be an explanation, and an
answer. So if anybody has an answer, PLEASE tell me. Thanks in
advanced.
Mike Weiskopff
------------------------------
From: smcewan <[EMAIL PROTECTED]>
Subject: Recommendation for a good news viewer
Date: Sun, 07 Mar 1999 20:33:14 -0600
This is what I am looking for. My last message was a bit unclear.
Thanks. Please mail me at ===>[EMAIL PROTECTED]
Sean
------------------------------
From: Barry Schneider <[EMAIL PROTECTED]>
Subject: where can i get an IMAP email server
Date: Sun, 07 Mar 1999 21:53:28 -0800
Can I use LINUX as an IMAP email server? What is the best IMAP server
for linux? please provide url.
Thanks in advance
--
Barry Schneider
mailto:[EMAIL PROTECTED]
LongView International
1875 S Grant Street, Suite 770
San Mateo, CA 94402
www.lvi.com.
(650) 524-1900
(650) 524-1901 FAX
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] ("Bob Taylor")
Subject: Re: For all you Nicrosoft lovers
Crossposted-To: alt.os.linux,comp.os.linux.hardware,comp.os.linux.setup
Date: Mon, 08 Mar 1999 06:00:24 GMT
In article <7bvbmj$[EMAIL PROTECTED]>,
childsplay <"childsplay"@planetquake.com (no Spam)> writes:
> This is very disturbing
>
> http://www.mercurycenter.com/breaking/docs/041815.htm
If you believe Microsofts answer/excuses, then you also believe in Santa
Claus and the Tooth Fairy!
--
+---------------------------------------------------------------+
| Bob Taylor Email: [EMAIL PROTECTED] |
|---------------------------------------------------------------|
| Like the ad says, at 300 dpi you can tell she's wearing a |
| swimsuit. At 600 dpi you can tell it's wet. At 1200 dpi you |
| can tell it's painted on. I suppose at 2400 dpi you can tell |
| if the paint is giving her a rash. (So says Joshua R. Poulson)|
+---------------------------------------------------------------+
------------------------------
From: Purnendu Sinha <[EMAIL PROTECTED]>
Subject: telnet problem to linux box
Date: Mon, 08 Mar 1999 05:43:14 GMT
This is a multi-part message in MIME format.
==============12668BB4273C3FAA4C290CC1
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Hi,
I am new to linux. I have set up a network( with ip masqueradeing) to
work between a Linux box and a Windows 95 Box. Now I can surf the net
from both the machines with only one internet connection. However, I
cannot telnet from the windows box to linux box. Though I get the login
prompt, I cannot login even with the correct user id and password.
I know I must be doing something wrong. Could anyone please let me know
what I am doing wrong ?
Thanks a lot.
Purnendu
==============12668BB4273C3FAA4C290CC1
Content-Type: text/x-vcard; charset=us-ascii; name="vcard.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Purnendu Sinha
Content-Disposition: attachment; filename="vcard.vcf"
begin: vcard
fn: Purnendu Sinha
n: Sinha;Purnendu
email;internet: [EMAIL PROTECTED]
x-mozilla-cpt: ;0
x-mozilla-html: FALSE
version: 2.1
end: vcard
==============12668BB4273C3FAA4C290CC1==
------------------------------
From: "Ovidiu Dressler" <[EMAIL PROTECTED]>
Subject: portforwarding installation problem
Date: Mon, 8 Mar 1999 05:53:27 +0200
I watched with interest the discussion about portforwarding because I'm
interested in the following problem. I have a linux machine which is running
IP_masquerading for a small LAN formed by win98-95 machines. Someone wants
me to enable portforwarding for one of his computers running PC-Anywhere.
PC-Anywhere has 2 pre-assigned ports (5361-5362) so theoretically it should
work.
I recently upgraded my kernel to 2.2.1 and I downloaded and installed the
patch for portforwarding.
Unfortunately I'm not an expert : ( and something doesn't work).
I'm getting a message of: "protocol not available" when I'm trying to start
the portforwarding.
I don't know what I did wrong cause I followed the instructions from the
readme files.
Does anybody help me ? (maybe repeating precisely the steps I should have
followed) ?
Thank You,
Ovidiu D.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
