Linux-Networking Digest #446, Volume #10 Wed, 10 Mar 99 11:13:35 EST
Contents:
Help : proxyarp for firewall-1 on linux ([EMAIL PROTECTED])
Re: route add -net (Brian McCauley)
Re: modem lock - more info (M. Buchenrieder)
Re: How can I redirect TCP-Ports? ("Leopold Toetsch")
Re: D-Link DE 220 card for RH-5.2 ? ("Adrian Snyman")
Re: Total collision on RedHat machine (Jakob Kruse)
Which program to use scsi-tape drive? ("Ray")
Re: Linux as a router to replace school NT4 box? ("Andrew Dunlop")
Re: LCP: timeout sending Config-Requests (Brian McCauley)
Re: Which program to use scsi-tape drive? (Ralf Lange)
newbie Puzzled over Samba connection ("Ron S")
Re: How do I boot Monitor-less 486 without a login and then... ? (IanP)
Re: win98 configuration...help please ("Curtis Adams")
Re: Which program to use scsi-tape drive? (Andi Vontobel)
Speeding up the printer port... ("Paul Criswell")
Re: upgrading sendmail from 8.8.7 to 8.9.3 (J Rufinus)
pppd 2.3.5 dies sometimes on 2.2.x at startup (Rob Somerville)
Re: latest MS virus (Andy Harrison)
Can you tell the speed of your dialup connection?? ("Eriksson")
problem with routing (average)
Masquerading accounting (Jasper Veltman)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED]
Subject: Help : proxyarp for firewall-1 on linux
Date: Wed, 10 Mar 1999 12:02:40 GMT
We want to use some advanced/obscure feature of the CheckPoint's
"FIREWALL-1" program on a NT/4 machine : accessing an inside ftp server
by an external 'Pseudo-IP' address.
We defined a pseudo-host with a pseudo IP-Addr, and made all necessary
setup's in the firewall's config.
To let that pseudo-host known from our ISP-s router, we need to force its
IP address to the MAC-address of the firewall machine.
So we run an arp command on another machine (a Linux machine), which says :
"arp -s <pseudo-IP-addr> <Firewall-MAC-ADDR> pub"
("pub" stands for 'public')
Nothing happens : when the ISP's router asks (arp broadcast) :
"who-is <pseudo-IP>",
nobody answers.
We could get an AIX machine for a short time, and run the same command.
With the AIX machine, everything is all right : when the ISP's router asks
"Who_is <pseudo-IP>",
the AIX machine answers immediatly :
"<pseudo-IP> is_at <NT-MAC-addr>"
and the ISP's router gets its arp cache updated.
It looks like Linux being completely deaf in that case.
(Note that, regarding arp propagation, NT is also completly deaf and dumb)
Our Linux machine : 486/RedHAt 5.2
We have other solutions like subnetting, or static routes, but we would like
avoiding to bother our ISP each time we want to change something.
If Linux does not work for proxy arp propagation, we probably will steal
some AIX machine somewhere ...
Did anybody encounter the same problem ?
Thanks.
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Brian McCauley <[EMAIL PROTECTED]>
Subject: Re: route add -net
Date: 10 Mar 1999 08:43:12 +0000
Richard Remington <[EMAIL PROTECTED]> writes:
> I'm having trouble in my inexperience adding a route to my web server.
> We have 4 class C domains on our LAN. Some use a netmask of
> 255.255.255.0 and some use 255.255.248.0. If my machine is using
> 255.255.255.0 and I want to communicate with machines that are using
> 255.255.248.0, how do I do that? I've tried typing the command route add
> -net 205.143.169.0 netmask 255.255.248.0 gw 205.143.168.5 but I get a
> complaint back about the net address not matching the netmask.
That is correct. What your command means is:
"I use gateway located at 205.143.168.5 to reach any address that when
ANDed with 255.255.255.248.0 gives 205.143.169.0"
This is nonsensical as there can be no address that when anded with
255.255.248.0 can give 205.143.169.0. 248 is even and 169 is odd.
That is what the error message is telling you. I'm also guessing that
205.143.168.5 is really yourself and not a gateway at all.
You probably wanted to say:
route add -net 205.143.168.0 netmask 255.255.248.0 dev eth0
The use of "gw" with a the address of a local interface to denote a
local (i.e. non-gateway) route is a BSD-ism that is responsible for a
lot of confusion and so is, IMNSHO, best avoided.
Of course better still would be not to specify the wrong netmask on
any machines in the first place.
--
\\ ( ) No male bovine | Email: [EMAIL PROTECTED]
. _\\__[oo faeces from | Phones: +44 121 471 3789 (home)
.__/ \\ /\@ /~) /~[ /\/[ | +44 121 627 2173 (voice) 2175 (fax)
. l___\\ /~~) /~~[ / [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
# ll l\\ ~~~~ ~ ~ ~ ~ | http://www.wcl.bham.ac.uk/~bam/
###LL LL\\ (Brian McCauley) |
------------------------------
From: [EMAIL PROTECTED] (M. Buchenrieder)
Subject: Re: modem lock - more info
Date: Wed, 10 Mar 1999 09:21:38 GMT
Josh Folcik <[EMAIL PROTECTED]> writes:
>well, what do ya know, i'm having a similar problem with MY modem,
>(archtek smartlink 2834A (that's 28.8)) it wont reconnect after it has
>improperly been disconnected (like a bad dialin, or if someone picks up
>the phone and it disconnects, i have to restart the computer to get it to
>work again.
[...]
There's no way to get an internal modem back into life if it got stuck
in an unresponsive status. That's why you'd better be using external modems.
Michael
--
Michael Buchenrieder * [EMAIL PROTECTED] * http://www.muc.de/~mibu
Lumber Cartel Unit #456 (TINLC) & Official Netscum
Note: If you want me to send you email, don't munge your address.
------------------------------
From: "Leopold Toetsch" <[EMAIL PROTECTED]>
Subject: Re: How can I redirect TCP-Ports?
Date: Wed, 10 Mar 1999 11:03:34 +0100
Juergen Bachsteffel wrote in message <7c41el$nba$[EMAIL PROTECTED]>...
>Hi!
>
>I installed a Linux-box with 'squid' (HTTP-FTP-proxy).
>Now my users get access to internet for these to proctocols.
>The Linux box connects to my ISP using a CISCO-router and
>eyeryone is happy.
>
>-->>But for incoming and outgoing email I have to redirect port 25(smtp)
> and 110(pop3).
>
No - not redirection will be the answer but masquerading
ipfwadm -F -a masquerade -W $EXTERNAL_INTERFACE -S $LOCALNET
or the ipchains equivalent if on 2.2.x kernels.
Read the Masquerade Mini HOWTO
For an example of serving a SoHo-Network www,mail,news... look at
http://www.toetsch.at/de/tips/index.html?linux/99/07.htm
(in German)
leo
------------------------------
From: "Adrian Snyman" <[EMAIL PROTECTED]>
Subject: Re: D-Link DE 220 card for RH-5.2 ?
Date: Wed, 10 Mar 1999 15:00:37 +0200
The DE 220 is an ISA card ...
Try the NE2000 clone & specify the IRQ/INT. in the append statement in LILO
...
Regards,
ADRIAN
Matt Templeton wrote in message <[EMAIL PROTECTED]>...
>Nguyen-Dai Quy wrote:
>
>> Hi,
>> Is this possible to configure DE 220 card for network with RH-5.2 ?
>> If yes, how ?
>> Thanks veru much.
>> _______________________________________________________
>> Nguyen-Dai Quy
>> LTAS - ULG
>
>Try the driver ne or ne2k-pci. Run netconf, basic host information,
>Adaptor 1, Kernel module
>
------------------------------
From: Jakob Kruse <[EMAIL PROTECTED]>
Subject: Re: Total collision on RedHat machine
Date: Wed, 10 Mar 1999 09:59:01 +0100
Problem is now solved.
Solution: Don't use WDC network cards. Use SMC Ultra instead, and the
problem disappears!
Jakob Kruse
Jakob Kruse wrote:
> I have a very serious problem with a Linux box: It is unable to transmit
> even a single IP packet. ifconfig shows all packets fail due to
> collision - ALL of them!
>
> I have reinstalled RedHat 5.2 from scratch (ruling out configuration
> errors). I have tried different network cards with no change at all in
> the situation. I have tried connecting it to a hub via 10BaseT and Coax,
> tried direct connection to other computer via Coax. Even tried different
> cables, all of which work in other setups.
>
> The result stays exactly the same: all TX packets fail after 16
> consecutive collisions.
>
> I'm going insane here. WHAT DO I DO WRONG?
>
> "arp -a" shows (after a couple of minutes) that the machine doesn't know
> the address of anything.
> "route" shows correct basic route setup (local network and default
> route) after a couple of minutes.
> "ifconfig" shows all RX packets on eth0 received ok, and all TX packets
> failed.
>
> More accurate information can be given on request.
>
> PLEASE HELP!
>
> Sincerely
> Jakob Kruse
> [EMAIL PROTECTED]
------------------------------
From: "Ray" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.help,comp.os.linux.misc
Subject: Which program to use scsi-tape drive?
Date: Wed, 10 Mar 1999 13:17:17 GMT
Which program to use scsi-tape drive? The program taper is, what i see, only
for Floppy-Streamer.
???
Regards
The Ray
Where i work http://www.ultrasonic.at
------------------------------
From: "Andrew Dunlop" <[EMAIL PROTECTED]>
Subject: Re: Linux as a router to replace school NT4 box?
Date: Wed, 10 Mar 1999 11:28:39 -0000
Stefano has now emailed me the disk at it's time to play setup. In some
respects I wish I had more fully considered the Linux option before I set up
a MS based, email, proxy, and web server.
The prospect of managing and maintaining a Linux box seemed a little
daunting for a school, but I guess the reliability would have meant that it
would not have been such a problem once it is all set up.
Andy.
------------------------------
From: Brian McCauley <[EMAIL PROTECTED]>
Subject: Re: LCP: timeout sending Config-Requests
Date: 10 Mar 1999 08:45:28 +0000
Julian Bordas <[EMAIL PROTECTED]> writes:
> This is a multi-part message in MIME format.
> --------------323F50C61121B70C74E45A26
Please do not post in MIME - it is rude.
> The subject line says it all.
Yes it says "I can't be bothered to use dejanews".
If you had, you'd have learnt that "LCP: timeout sending
Config-Requests" actually means "the two parties of this PPP
connection were unable to agree on a mutually acceptable set of link
configuration parameters - for details see debug log of the failed
negotiation".
--
\\ ( ) No male bovine | Email: [EMAIL PROTECTED]
. _\\__[oo faeces from | Phones: +44 121 471 3789 (home)
.__/ \\ /\@ /~) /~[ /\/[ | +44 121 627 2173 (voice) 2175 (fax)
. l___\\ /~~) /~~[ / [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
# ll l\\ ~~~~ ~ ~ ~ ~ | http://www.wcl.bham.ac.uk/~bam/
###LL LL\\ (Brian McCauley) |
------------------------------
From: Ralf Lange <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.help,comp.os.linux.misc
Subject: Re: Which program to use scsi-tape drive?
Date: Wed, 10 Mar 1999 14:22:37 +0100
tar,dump,restore,dd
------------------------------
From: "Ron S" <[EMAIL PROTECTED]>
Subject: newbie Puzzled over Samba connection
Date: Tue, 9 Mar 1999 22:26:00 -0800
I set up a redhat 5.2 with samba server to connect to a win98 system.
Everything worked fine..until today...not sure what I goofed up.
I can ping from the linux to the win98 using ip address or name of the win98
system. I can ping the linux system from win98 only using the ip address of
the linux, cant ping it by name(I used to be able to ping it by name from
the win98 system, the linux system can ping itself by ip address or name) ,
it gives 'host unknown'
In network neighborhood the linux system is shown by name as an icon, but I
cant access it, I get
'not accessible'
The computer or share could not be found. Make sure you typed it correctly,
and try again.
the Lmhosts.sam file on the win98 machine looks ok.
I can print from the linux system to the printer on my win98 system. It
seems somewhere the ip address isn't converted to the name of the linux
samba server. Does anyone recognize the problem?
TIA
------------------------------
From: IanP <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: Re: How do I boot Monitor-less 486 without a login and then... ?
Date: Wed, 10 Mar 1999 13:32:52 +1000
Peck R. Wood wrote:
> IanP wrote:
> >
> > I have a shiny new PII with two hard disks, the first with windows 98
> > and the second with Redhat 5.1. networking (soon) with my faithful old
> > 486. I want the 486 to boot without asking for a login and password,
> > being monitorless.
>
> Once you set up the networking to where you boot the 486 and access it
> from win98 the way you want, you can unplug the monitor, keyboard and
> mouse. You can set up whatever services you want on the 486, samba,
> apache, etc. and they will all run without you having to login. Once
> you can telnet to the box, you can even reboot it remotely and wait for
> it to come back up so you can telnet in. There are some programs that
> require the console (monitor, keyboard, etc.) but there are equivalent
> programs that don't for most of them.
>
> The purpose being that I want to telnet (or if there
> > is something better...?) from Windows on the PII to a minimal Linux
> > installtion on the 486 which will have the PII's Linux partitions
> > mounted on it allowing me to use the programs on the PII.
>
> Not sure what you mean here. If you can mount the partitions using nfs
> (is there nfs for win98?), you still wouldn't be able to use programs
> for linux under win98. This would be no problem (not as much of a
> problem) when you boot up the redhat partition on the PII.
There is a read only ext2 driver for win98 but it maps partitions to drive
letters as you would expect. I can telnet to the 486, and samba just needs a
couple of tweaks. I want to know if there is a way, while running
win98(PII), with telnet session to Linux(486), to mount the linux
partitions(PII) on the 486, and thus have all linux partitions available under
a linux(486) telnet session on the PII; to actually be able to execute
programs on the PII Linux partition from the 486 telnet session under win98.
Phew!
Ian P.
[EMAIL PROTECTED]
[EMAIL PROTECTED]
------------------------------
From: "Curtis Adams" <[EMAIL PROTECTED]>
Subject: Re: win98 configuration...help please
Date: Wed, 10 Mar 1999 08:37:54 -0500
Windows 95 OSR2, Windows 98 and Windows NT 4 use encrypted passwords.
You must read Encryption.txt included in Samba distribution documentation.
In
that file you'll find step-by-step instructions to setup encrypted passwords
logons. Or you can use plain text passwords. Read Win95.txt for more info.
These files are located in...
usr\doc\samba-x.x.x\docs\textdocs
(where x.x.x is your version of Samba, 2.0.3 on my machine)
Curtis
Jnb27 wrote in message <[EMAIL PROTECTED]>...
>i use redhat 5.1 and i'm having problem connecting my win98 client to the
>linuxbox
>i can see the linux box from my network nieghborhood but once i click on
it, it
>will ask for a password.
>
>i tried the same user name from my win95 and it works, i can see the shared
>directories..no problem
>
>can someone help me please...
>
>regards
>
>joey g.
------------------------------
From: Andi Vontobel <"andi.vontobel(RxExMxOxVxE)"@gmx.net>
Crossposted-To: comp.os.linux.help,comp.os.linux.misc
Subject: Re: Which program to use scsi-tape drive?
Date: Wed, 10 Mar 1999 15:10:15 +0100
Ralf Lange wrote:
>
> tar,dump,restore,dd
mt
--
-------------------------:WARNING:----------------------------
By sending me unsolicited commercial/political/religious/MailPush
E-mail message/s (known also as "spam"), you irrevocably agree to
pay me $500.-(plus any legal expenses incurred by my trying to
collect the amount due) per unsolicited commercial/political/
religious/MailPush E-mail message - for the service of receiving it.
------------------------------
From: "Paul Criswell" <[EMAIL PROTECTED]>
Subject: Speeding up the printer port...
Date: Wed, 10 Mar 1999 09:39:51 -0500
I have been trying to speed up my printer port. My problem is that I have a
relativley fast laser printer (10ppm). Everytime I print a job, the printer
powers-up, prints a page, and powers-down for about 1 second or so. It
seems like the computer is not sending data to the printer fast enough.
Normally the speed wouldn't bother me, but I am sure that some of you know,
the starting and stop of laser printers isn't a very good thing (it will
help shorten the drum). I have tried using tunelp /dev/lp1 -t 0, but that
doesn't help much. I have a PII - 400 and this occurs even when no one is
logged on, so I don't think computer speed is an issue. Thanks.
- Paul Criswell
------------------------------
From: [EMAIL PROTECTED] (J Rufinus)
Crossposted-To: comp.os.linux.setup,comp.os.linux.misc,comp.mail.sendmail
Subject: Re: upgrading sendmail from 8.8.7 to 8.9.3
Date: Wed, 10 Mar 1999 12:49:27 GMT
In article <[EMAIL PROTECTED]>, John Mark Emery <[EMAIL PROTECTED]>
wrote:
>file from a file within ../cf/cf. This file has a .mc file extention.
>I find all of the ".mc" files, I'm still not quite sure what to do with
>the m4 utility...basically, I'm confused.
m4 is usually used to generate .cf file from .mc file.
What you should do is to rewrite the .mc file according to
your needs and use m4 to make the new sendmail.cf file.
>Should I worry about this? Does this mean sendmail.cf should be in /etc
>or /etc/mail?
As far as I know, it's still in /etc
------------------------------
From: Rob Somerville <[EMAIL PROTECTED]>
Subject: pppd 2.3.5 dies sometimes on 2.2.x at startup
Date: Wed, 10 Mar 1999 15:17:30 GMT
about 40 % of time pppd dies just after connect made. anyone with any
ideas ?
I believe this also occasionaly happened on 2.0.36. I get message
"pppd really did die".
please also respond to email address, thanks
--
robert somerville
[EMAIL PROTECTED]
[EMAIL PROTECTED]
------------------------------
From: Andy Harrison <[EMAIL PROTECTED]>
Crossposted-To:
linux.debian.user,dc.org.linux-users,alt.linux,alt.os.linux,comp.os.linux.setup
Subject: Re: latest MS virus
Date: Wed, 10 Mar 1999 08:59:40 -0500
<SNIP>
> Smith discovered that Excel and Word
> applications fingerprint files with an
> identifying number. That number is used
> by the hardware that connects a PC to a
> local area network. The 32-digit numbers
> were designed long ago by developers of
> networking hardware to identify individual
> machines.
</SNIP>
Sounds an aweful lot like Intel's new PSN crap. The thing I don't get,
though, is that not everyone has a network card, PPP adapter, <choke>
AOL adapter, etc... So there is *not* an adapter address from which to
get the number inside every machine. That and the article says to get
the number from within winipcfg in the adapter address field, which is
obviously NOT a 32-digit number (it's not even a 32-*bit* number, it's
48-bit, so it's not like it's a typo or something).
--
.==,_
.===,_`\ Andy Harrison
.====,_ ` \ .====,__
--- .==-,`~. \ `:`.__, __
--- `~~=-. \ /^^^ / / __ _ _ _ _ __ __
--- `~~=. \ / / /__ / / / \// //_// \ \/ /
`~. \ / /____/ /_/ /_/\/ /___/ /_/\_\
~. \____./ ...for IQs GREATER than 98...
`.=====
___.--~~~--.__
___\.--~~~ ~~~---.._|/ (remove the obvious
~~~" / to e-mail me...)
--
------------------------------
From: "Eriksson" <[EMAIL PROTECTED]>
Subject: Can you tell the speed of your dialup connection??
Date: Wed, 10 Mar 1999 14:50:57 +0100
How?
I'm using ordinary PPP.
Thanx!
/Martin
------------------------------
From: average <[EMAIL PROTECTED]>
Subject: problem with routing
Date: Thu, 11 Mar 1999 23:20:36 +0800
i have a two machine network linux & win95 on twisted pair through a
hp 28684a hub
the problem i have is both machines can ping them selves (nic &
localhost) but cannot ping each other. at this point in time i haven't
set up anything to do with samba.
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
zeus.tulku.net * 255.255.255.255 UH 1500 0 0
eth0
192.168.1.0 * 255.255.255.0 U 1500 0 0
eth0
127.0.0.0 * 255.0.0.0 U 3584 0 0
lo
default gyver.tulku.net 0.0.0.0 UG 1500 0 0
eth0
the hub works (it was used by a friend) i have changed the cables, all
the lights that
should be on are on and flashing (data lights on the cards, the hub etc)
any help
baz
------------------------------
From: [EMAIL PROTECTED] (Jasper Veltman)
Subject: Masquerading accounting
Date: Wed, 10 Mar 1999 13:56:58 GMT
I've set up masquerading for quite a large backend network, everything
is working fine. To keep track of usage I've created several
accounting rules for every active host (not dynamic, too bad).
Here are examples of such rules:
/sbin/ipfwadm -A -a -b -W eth1 -D 10.9.0.0/16 (count all traffic on
backend)
/sbin/ipfwadm -A -a -b -W eth1 -D 10.9.2.19 (count all traffic of
specific host)
This seems to work, but this also counts all www&ftp traffic from our
gateway (info, anonFTP), regular pings to see if everything's working
etc.
Is it possible to count only the traffic that actually passes the
gateway?
Jasper
jasper {at} enschede {dot} com
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
