Linux-Networking Digest #490, Volume #10 Sun, 14 Mar 99 11:13:31 EST
Contents:
Re: No rlogin through a Linux Firewall? (Tobias Reckhard (jester))
Re: IP Masquerading and iPhone (Tobias Reckhard (jester))
Re: can't ping Linux --> win98 ("Eriksson")
Need to know what components in ifconfig means. ("Iskandar D")
ISDN4LINUX to Windows NT dialback box (King)
Help w/ traceroute problems using 2 NICs (Mike Chilcott)
Re: /usr/local/bin/perl ->/usr/bin/perl ([EMAIL PROTECTED])
Re: connecting 2 PCs w/ null modem cable (Denny Deng)
Sharing a CDROM ? (Chris Severn)
Re: How do I know? (Matt)
Re: 2 LAN Cards: delaying eth1 initialization (Denny Deng)
ipfwadm at startup problem (Erik Myllymaki)
Re: Problem with "Network Card" !!! (Denny Deng)
netatalk error ("Sebastian")
NDS & Linux ("Alvin")
Which distribution for remote access server? (Christian)
Re: SUSE6.0 @ Pcmcia modem ("Jos")
Re: 3c509 & ne2000 conflict ("��d�W")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Tobias Reckhard (jester))
Crossposted-To: comp.security.firewalls
Subject: Re: No rlogin through a Linux Firewall?
Date: Fri, 12 Mar 1999 06:55:01 GMT
On Thu, 11 Mar 1999 17:23:13 GMT, root@localhost. (Rodney van den
Oever) wrote:
>Habib Jalili <[EMAIL PROTECTED]> wrote:
>
>>It works fine with telnet and ftp from the linux A to internet. But
>>rloging from Linux A returns the saying error permission denied. Rlogin
>>from Linux A to LAN and rlogin from firewall (Linux B) to internet and
>>to LAN does work too.
>>I have tried it with -P all. No chance.
>
>The problem is that Masquerading is in fact port-translation. All
>traffic from the firewall leaves it with the IP-address of the
>external interface as source-address. Because the session still has to
>be unique, the source-port is changed to a value above 61000.
[snip]
>rlogin uses random source ports below 1024, so masquerading breaks
>this.
You are right about everything but the conclusion. the r services are
client-server protocols just like telnet (well, rsh opens up further
connections, it seems, but rlogin is basically the same as telnet,
protocol-wise). Telnet servers use TCP port 23, which is below 1024 as
well. But rlogin is even more insecure than telnet, which is probably
why it's been disabled.
Tobias
------------------------------
From: [EMAIL PROTECTED] (Tobias Reckhard (jester))
Subject: Re: IP Masquerading and iPhone
Date: Sun, 14 Mar 1999 10:06:51 GMT
[Rearranging the post for proper quoting]
On Tue, 9 Mar 1999 04:42:37 +1100, "A J Wilson"
<[EMAIL PROTECTED]> wrote:
>Tobias Reckhard (jester) wrote in message
><[EMAIL PROTECTED]>...
>>On Mon, 8 Mar 1999 05:54:56 +1100, "A J Wilson"
>><[EMAIL PROTECTED]> wrote:
>>
>>>ipautofw -A -r udp 22555 22555
>>
>>Isn't this statement missing the redirection target, i.e. information
>>about which host to forward UDP packets to port 22555 to? You need to
>
>To be honest, I have no idea if the statement is missing something. I got
>this statement from a HOW-TO document somewhere on the Internet.
>
>How exactly do you set up a control channel?
>From the ipautofw README:
"... Finally add the configuration commands to your /etc/rc.d/rc.inet1
or /etc/rc.d/rc.local. They should be in the following format:
ipautofw -A -r <proto> <low> <high> [-h <hiddenhost>] [-c <ctltype>
<ctlport>]
The <proto> parameter should be either tcp or udp, depending on the
type of packet that will be received (generally udp). <low> and <high>
specify the range of ports which should be forwarded to <hiddenhost>.
<ctltype> and <ctlport> are optional parameters to replace the -h
option to determine which host packets should be sent to. Whenever a
connection is opened to port <ctlport>, protocol <ctltype>, the IP
address of that host is saved and will receive packets on the
specified ports."
You need to tell ipautofw which host is supposed to get those UDP
packets that are being sent to port 22555. You can either do this
statically, by using the -h option, defining one host which will, from
then on, receive all UDP packets to port 22555 on the gateway. If you
use the -c option, ipautofw assigns the redirection target
dynamically, though I don't know how long the configuration lasts
(since it works by creating an entry in the masquerading table, it'll
probably last as long as defined by the masquerading timeout, usually
15 minutes).
Tobias / jester
------------------------------
From: "Eriksson" <[EMAIL PROTECTED]>
Subject: Re: can't ping Linux --> win98
Date: Sun, 14 Mar 1999 11:58:14 +0100
>I suggest you try pinging between the w98 boxes to check cable and
>terminators.
Nothing wrong there. The cable is working. And the NIC is also working
>ping from a dos box and do it by number to prevent dns or lookup problems
I always use the numbers from a DOS window. I get timeouts all the time.
>you may also want to try to ping from win98-? linux
Tried that to. Doesn't work. Same problem..
More suggestions?
Looks like Linus T has put a curse on me.
/Martin
------------------------------
From: "Iskandar D" <[EMAIL PROTECTED]>
Subject: Need to know what components in ifconfig means.
Date: Sun, 14 Mar 1999 17:41:18 +0800
hi there,
i ran ifconfig on a system and it displayed:
lo Link encap:Local Loopback
inet addr:127.0.0.1 Bcast:127.255.255.255 Mask:255.0.0.0
UP BROADCAST LOOPBACK RUNNING MTU:3584 Metric:1
RX packets:2 errors:0 dropped:0 overruns:0 frame:0
TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
collisions:0
eth0 Link encap:Ethernet HWaddr 00:10:5A:60:89:1D
inet addr:132.182.114.108 Bcast:132.182.115.255
Mask:255.255.252.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:8286 errors:0 dropped:0 overruns:1 frame:0
TX packets:3463 errors:0 dropped:0 overruns:0 carrier:0
collisions:0
Interrupt:10 Base address:0x1000
Q: What does these components means?
i hope you guys can assist me on this. Thanks.
Iskandar
[EMAIL PROTECTED]
Kindly email me the reply.
------------------------------
From: King <[EMAIL PROTECTED]>
Subject: ISDN4LINUX to Windows NT dialback box
Date: 14 Mar 1999 11:31:41 GMT
Hi,
Is got my linux kernel 2.2.3 system running with the ISDN4Linux pack. The
hisax driver and the utils package works fine.
I just want to connect to an Windows NT box who gives me a dialback.
Has anybody done this and give me some hint (config files) to do this?
Regards King
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
From: [EMAIL PROTECTED] (Mike Chilcott)
Subject: Help w/ traceroute problems using 2 NICs
Date: Sun, 14 Mar 1999 14:09:37 GMT
Hello Group,
I installed Linux RedHat 5.2 to my machine. It has 2 NICs, one for
connecting to my cablemodem(eth1) and the other for my internal
network(eth0).
The only way for me to run a traceroute is to pass it the nic ie:
traceroute microsoft.com -i eth1
otherwise, it tries to use eth0
What can I do to fix it? What file needs to be modified and how?
All help is appreciated.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: /usr/local/bin/perl ->/usr/bin/perl
Date: Sun, 14 Mar 1999 11:39:43 GMT
In article <[EMAIL PROTECTED]>,
Frank Sweetser <[EMAIL PROTECTED]> wrote:
> since perl comes out of the box on practically every linux
> install
..and herein lies the root of the confusion. Linux is not, as much as we
would like it to be, the end-all be-all standard for UNIX. Perl4 is
*sometimes* installed in /usr/bin on non-Linux UNIX installs, but Perl5
installs itself in /usr/local/bin by default. That is mostly because it is
not "old" enough to have earned the "right" to be in /usr/bin, as I've heard
most sysadmins justify it.
Personally, I think Perl5 is important enough to be installed on any system,
and thus deserves to be in /usr/bin. However, pick up any book on PERL, look
at any example code written by Larry Wall himself, or take a look at the vast
majority of 'standard' PERL scripts, and you will find that having perl in
/usr/local/bin is a much safer bet than /usr/bin.
I guess I shouldn't have said that I have "no idea" why Linux sticks perl in
/usr/bin, because I know damn well why it's put there and I happen to agree
(and, if you really wanted to stick with the "seniority" method of placing
binaries, PERL is older than Linux, so sticking it in /bin shouldn't really
even be taboo). That still doesn't change the fact that, outside the Linux
community, perl5 in /usr/bin is wrong, and if you depend on it you *will*
find your scripts breaking.
-Bill Clark
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Denny Deng <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux
Subject: Re: connecting 2 PCs w/ null modem cable
Date: Sun, 14 Mar 1999 12:01:00 GMT
Hi! Scozz:
You seem very knowledgeable about network!
Can you help me to let my Linux to recognize my 3com 509 network so that
I can access my @home.
There is no eth0 if I do "ifconfig".
Thanks a lot!
scozz wrote:
>
> Greetings,
>
> I've connected my win95 machine and my Linux box w/ a null modem cable.
> I run Tera term on the win95 machine and it talks directly to COM2.
>
> On the Linux box I ran minicom and set the serial device to /dev/ttyS1.
>
> When I entered characters on the one side they would show up on the
> other side 20-30 seconds later.
>
> Isn't this supposed to be almost instantaneous?
>
> I also got the similar results when I would cat a file to /dev/ttyS1
>
> Same thing with this C program:
>
> #include <stdio.h>
> #include <unistd.h>
> #include <string.h>
>
> int main()
> {
> char str[200];
> FILE *modem;
>
> modem = fopen("/dev/ttyS1", "r");
>
> while(!feof(modem))
> {
> fgets(str,200,modem);
> printf("%s",str);
> }
> exit(0);
> }
>
> Any suggestions?
>
> thanks
>
> scozz
--
===================================
Denny Deng <[EMAIL PROTECTED]>
Director, Business Development
World Xiangqi League.
<http://www.xiangqi.com>
70,000 members worldwide.
ICQ #: 3360715
Phone +1.510.710.3433. (Voicemail to pager)
Fax +1.510.351.5551. (24 hours, 7 days)
�����������������ݵĵ˵�����
����һ�����룺
�������й��������������ÿһ�����䶼������
������ȫ������й�����Э�ᣬ�ܹ����һ����ͬ�����ˣ�
���������ܹ�ͨ�����ʵ������磬�ٴκ������ڸ���ʱ����λ�����У������Э�����ѣ��д����գ�
------------------------------
From: Chris Severn <[EMAIL PROTECTED]>
Subject: Sharing a CDROM ?
Date: Sun, 14 Mar 1999 22:26:55 +0800
Reply-To: [EMAIL PROTECTED]
Hi.
What I want to do is change my company's server stuff to a linux box. I
want to connect two printers to it so I can print from the other Windows
machines to them, and I also want to give it a shareable CDROM drive,
because very few of the other machines have them (and the ones that do
belong to people who don't want other people coming in and sticking
their
own CDROMs in the drive to share across the network.)
The only problem I see with this is that I know when using a CDROM
locally
under linux, you have to mount it first. This makes it a little bit of
a
pain in the neck to use as sharable across the network. I was wondering
if
it is possible to use the CDROM like you would if it was a windows
server -
ie. Just plonk the CD in the server's drive and then go back to your
own
computer and start using the shared drive.
Can you do this ? I know there's mtools for a floppy which means you
don't
have to mount it, but I'm not sure if it works for a CDROM, and even if
it
does if it's possible to use it with samba ?
Thanks.
Chris Severn.
--
Delete the 'x's to remove the spamblock.
Except spammers, for whom my email address is abuse@localhost
------------------------------
From: Matt <[EMAIL PROTECTED]>
Crossposted-To: linux.redhat.ppp
Subject: Re: How do I know?
Date: 14 Mar 1999 12:07:51 GMT
Mark Andal wrote:
>
> Okay,
>
> When I log on to my ISP (worldnet)
> How do I know exactly what speed I am connecting at?
> If I use KPPP it says 115200?
I too am using worldnet and am looking for the same answer...
what init string are you using for your modem? ATZ? if so,
try at&f1 in KPPP that always gave me my correct connect speed, course I
am using a USR so it may be different for you, if it is a 56k modem, I
would suggest going to www.56k.com and looking for an init string...
currently to connect I am using the script that is found on www.WURD.com
for connecting to att.
If I find something I will let you know....
> Also I'm using a Zoom 2948 (External modems work best)
> Does anyone have a great AT setup line i should use?
>
> Thanks,
> Mark Andal
------------------------------
From: Denny Deng <[EMAIL PROTECTED]>
Subject: Re: 2 LAN Cards: delaying eth1 initialization
Date: Sun, 14 Mar 1999 12:11:33 GMT
Hi! Michael:
There is no "eth0" if I do "ifconfig". I tried to access my 3com 509 for
@home server.
I installed Red Hat 5.0.
Can you help me?
M. Buchenrieder wrote:
>
> "Wilson Lam" <[EMAIL PROTECTED]> writes:
>
> [...]
>
> >But after rebuilding the kernel and even I pass parms while
> >booting or add a append a line such as:
> >append="ether=10,0x300,eth1 ether=11,0x320,eth0"
>
> >The system issue a messages:
> >Delaying eth1 initialization
>
> [...]
>
> The eth1 NIC is causing a resource conflict. Most probably
> IRQ 11 is already in use by another device. Check /proc/interrupts .
>
> Michael
> --
> Michael Buchenrieder * [EMAIL PROTECTED] * http://www.muc.de/~mibu
> Lumber Cartel Unit #456 (TINLC) & Official Netscum
> Note: If you want me to send you email, don't munge your address.
--
===================================
Denny Deng <[EMAIL PROTECTED]>
Director, Business Development
World Xiangqi League.
<http://www.xiangqi.com>
70,000 members worldwide.
ICQ #: 3360715
Phone +1.510.710.3433. (Voicemail to pager)
Fax +1.510.351.5551. (24 hours, 7 days)
�����������������ݵĵ˵�����
����һ�����룺
�������й��������������ÿһ�����䶼������
������ȫ������й�����Э�ᣬ�ܹ����һ����ͬ�����ˣ�
���������ܹ�ͨ�����ʵ������磬�ٴκ������ڸ���ʱ����λ�����У������Э�����ѣ��д����գ�
------------------------------
From: [EMAIL PROTECTED] (Erik Myllymaki)
Subject: ipfwadm at startup problem
Date: Sun, 14 Mar 1999 08:19:12 GMT
I can call:
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.0.0/24 -D 0.0.0.0/0
from the command line after my linux box is running and start
ip-forwarding. However, if I add these lines to my rc.local (RedHat 5.1)
file, including absolute path for ipfwadm (/sbin/ipfwadm -F ...), it will
not start. What am I doing wrong?
Thanks for any help.
--
erik myllymaki
[EMAIL PROTECTED]
------------------------------
From: Denny Deng <[EMAIL PROTECTED]>
Subject: Re: Problem with "Network Card" !!!
Date: Sun, 14 Mar 1999 12:21:40 GMT
Hi! Randy:
My Redhat 5.0 doesn't recognize my 3com 509.
I must use my 3 com to access @home.
there is no eth0 when I do "ifconfig"
Thanks in advance!
Randy McLin wrote:
>
> Don't know if this helps, but maybe you can try the Linux hardware
> compatibility guide
>
> http://metalab.unc.edu/LDP/HOWTO/Hardware-HOWTO.html
>
> to see if you're card is supported. I run a 3COM 3C905 on about 7 machines
> and have had no problems.
>
> There may be other howtos to help you configure your specific card.
>
> I've got other links at http://www.emuse.net that might help to. That's a
> portal site I compiled to help me in my day-to-day Linux work.
>
> Good luck,
>
> Randy
>
> Adrian wrote in message <[EMAIL PROTECTED]>...
> >
> >hello,
> >
> >we are a bunch of beginners in redhat linux. we had installed linux 5.2
> >
> >however during installation, our network card model SMC 9432 could not
> >be detected.
> >
> >after our installation, we want to try to configure our hardware
> >devices.
> >
> >being new to Linux, we have no idea how to go about
> >doing this and using Linux command. Please advice.
> >
> >regards
> >shenon <[EMAIL PROTECTED]>
> >
> >
> >
--
===================================
Denny Deng <[EMAIL PROTECTED]>
Director, Business Development
World Xiangqi League.
<http://www.xiangqi.com>
70,000 members worldwide.
ICQ #: 3360715
Phone +1.510.710.3433. (Voicemail to pager)
Fax +1.510.351.5551. (24 hours, 7 days)
�����������������ݵĵ˵�����
����һ�����룺
�������й��������������ÿһ�����䶼������
������ȫ������й�����Э�ᣬ�ܹ����һ����ͬ�����ˣ�
���������ܹ�ͨ�����ʵ������磬�ٴκ������ڸ���ʱ����λ�����У������Э�����ѣ��д����գ�
------------------------------
Date: Sun, 14 Mar 1999 13:23:06 +0200
From: "Sebastian" <[EMAIL PROTECTED]>
Subject: netatalk error
Hi,
after installing Netatalk with SUSE 5.3 I treid to start but Linux said:
"starting appletal daemons:socket:Invalid argument
socket:Invalid argument
atalkd:can�t get interface, exiting
atalkd nbprgstrpapd is already running, or the lock file is stable.
afpd"
What does it mean? I�ve no idea to solve the problem
Thanks
Sebastian
------------------------------
From: "Alvin" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: NDS & Linux
Date: Sun, 14 Mar 1999 23:33:54 +0800
Is there some kind of NDS system for linux??
------------------------------
From: [EMAIL PROTECTED] (Christian)
Subject: Which distribution for remote access server?
Date: Sun, 14 Mar 1999 08:13:25 GMT
I want to setup a database server, which has to be accessible through
direct modem/isdn connection. The database is going to be used via
client's webbrowsers, so there has got to be a webserver running, too.
Which Linux distribution would be best for this job?
Can you point me to how-tos on the net, which can help me with this
task?
Anybody got experience with this?
Christian
------------------------------
From: "Jos" <[EMAIL PROTECTED]>
Crossposted-To:
alt.os.linux.dial-up,alt.comp.tkdesk,comp.os.linux,de.alt.comp.kde,nl.comp.os.linux,rainbow.mailing-lists.linux.vger.ppp
Subject: Re: SUSE6.0 @ Pcmcia modem
Date: Sun, 14 Mar 1999 17:02:47 +0100
very funny
================
erg grappig
===============
sehr witzig
Het modem werkt intussen, maar ik weet nog niet hoe de ppp
verbinding moet. Bij xs4all hebben geven ze een set files
(ppp-on) etc met instellingen, die heb ik overgenomen. Maar
wat je daarna moet doen om de verbinding daadwerkelijk tot
stand te brengen weet ik nog niet. (pppd?)
Groenten
Jos Zwanenburg wrote in message <[EMAIL PROTECTED]>...
>No, i do not know.
>
>---------------------
>
>Nee, ik weet het niet
>
>---------------------
>
>Nein, ich weiBe nicht...
>Jos wrote:
>
>> Machine: Mynote 810 notebook
>> CPU: Amd k6-II/300Mhz
>> 96Mb / 4Gig hdd
>> OS: SuSE 6.0 Linux, KDE Enviroment
>>
>> -------------------------
>>
>> Hi!
>>
>> I have just installed SuSE Linux on my notebook.
>> I'd like to know if it's possible to use a pcmcia modem
>> under linux. Does anybody know how to do this?
>>
>> regards,
>>
>> Jos van Riswick
>> [EMAIL PROTECTED]
>>
>> -----------------------------
>>
>> Hallo!
>>
>> Ik heb net SuSE Linux op m'n notebook geinstalleerd.
>> Ik zou willen weten of het mogelijk is een pcmcia modem
>> te gebruiken onder linux. Weet iemand hoe dat moet?
>>
>> groenten,
>>
>> Jos van Riswick
>> [EMAIL PROTECTED]
>>
>> -------------------------------
>>
>> Hallo!
>>
>> Ich habe gerade SuSE Linux auf meinem Notebook Pc
>> installiert. Ich moechte jetzt wissen ob man ein Pcmcia Modem
>> benutzen kann mit Linux. Weiss jemand wie dass
>> funktioniert?
>>
>> Gruetzili,
>>
>> Jos van Riswick
>> [EMAIL PROTECTED]
>
------------------------------
From: "��d�W" <[EMAIL PROTECTED]>
Subject: Re: 3c509 & ne2000 conflict
Date: Sun, 14 Mar 1999 21:16:15 +0800
Thank you for your correction.
I have been succeed in ran lilo now.
But, I still cannot config my Lan card(3com 509 ISA).
On starting the Linux box, it still reports:
modprode: Can't locate module eth1
eth1: unknown interface
I wonder whether what I wrongly did ???
Would anyone please give me some information as reference such as HOW-TO,
etc ?
mike upham ���g��峹 <7cefo9$865$[EMAIL PROTECTED]>...
>My apologies,
>
>The line should be:
>
>append="ether=15,0x270,eth0 ether=10,0x300,eth1"
>
>I forgot the equals sign.
>
>
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
