Linux-Networking Digest #542, Volume #10 Thu, 18 Mar 99 17:13:53 EST
Contents:
Samba and WinNT client (attilio bernardi)
Re: does linux support sever-client features ("Lee Sharp")
Re: Linux server and multipile POP3 accounts (Mark)
Re: ECommerce on LINUX {CAW} ("Lee Sharp")
Re: Apache server setup on Redhat 5.2 (Christopher)
Re: mounting via samba ("David Travers")
Re: Fetchmail timeouts ("Leopold Toetsch")
Serving M$ fax clients (Jean-Serge Gagnon)
Re: Samba question ("Leopold Toetsch")
NFS and win98/linux ("Graham Wharton")
Re: ECommerce on LINUX {CAW} ([EMAIL PROTECTED])
Re: VNC (Kevin Martin)
Re: MARS_NWE - Configuration Problems (george m hoffman md)
Connect to linux server over internet? ("Alexander J. Perovich")
Re: What is the best Linux to install? ([EMAIL PROTECTED])
Re: Linux server and multipile POP3 accounts (ETX)
Re: Help with fetchmail. (ETX)
Re: ECommerce on LINUX {CAW} (ETX)
Re: Recommend Fast Ethernet Card ("Lee Sharp")
diald / dial-in problems (Hartmann Schaffer)
Re: setting: how to send mail behind firewall (Mark)
Re: ip_masq and :no free ports. (Tobias Reckhard)
Re: how do you install NIC driver in RH5.2? ("Nick Stefanisko")
Routing problem on a FireWall with a DMZ ??? (Erwann CORVELLEC)
----------------------------------------------------------------------------
From: attilio bernardi <[EMAIL PROTECTED]>
Subject: Samba and WinNT client
Date: Thu, 18 Mar 1999 21:05:11 +0100
Reply-To: [EMAIL PROTECTED]
I am a new Linux user .
I have installed the RedHat ver 5.1 and Samba ver 1.9.7.0 on a server
machine and I have the
following problem :
when I 'm logging by a win95 client I can free access to my home
directory .
The same thing I can't do if I 'm using a winNT 4.0 workstation.
I'm logging by the same account and password as under win95 but when i
try to open my home directory another window asks me to type my password
again.After and only after I can access to my home.
Is there any answer ?
Thank a lot
Bernardi Attilio
http://www.eei.it
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Subject: Re: does linux support sever-client features
Date: Thu, 18 Mar 1999 14:00:46 -0600
Erik Hensema wrote in message ...
|[EMAIL PROTECTED] ([EMAIL PROTECTED]) wrote:
|>Is it possible to have clients connected to server? if possible, what are
the
|>requirements? Can files be transferred between them?
|No, Linux is a standalone server, it completely doensn't support any
clients
|connected to the box.
|Obviously clueless...
And what? You didn't have a clue to spare?
Yes, clients can connect to Linux. You can share files with FTP, TFTP,
NFS, SMB, IPX, and Appletalk. You can share printers with LPR, LPD, SMB,
IPX and Appletalk. You need to get a book, as you don't have enough
background to even ask the right questions yet. I recommend "LINUX Network
Toolkit" by Paul G. Sery from IDG Books. It is a little out of date <Red
Hat 5.1...> but well written, just about everything still applies. It will
walk you through a basic install and Samba setup.
Another option is to grab one of the newer distributions <Project
Independence www.independence.seul.org or SuSE 6.0 www.suse.com > that have
much easier configuration programs and play with them.
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. *
Black holes are where God divided by zero. - I am speaking as an individual,
not as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
From: Mark <[EMAIL PROTECTED]>
Subject: Re: Linux server and multipile POP3 accounts
Date: Thu, 18 Mar 1999 15:05:04 -0500
Iztok Polanic wrote:
>
> In article <7cpat6$[EMAIL PROTECTED]>,
> "The Lone Scribe" <[EMAIL PROTECTED]> wrote:
> > Iztok Polanic wrote in message <7cp807$5nk$[EMAIL PROTECTED]>...
> > >We are running a local Linux server. We want also to be Linux our POP3
> > >server and would download all our emails (7 accounts). How should we do
> > this?
> >
> > Use fetchmail, usually included. Type 'man fetchmail' for details.
> >
> >
> Hello !!!
>
> Can fetchmail encrypt password as fetchpop does? If not, then root can see
> your password!
um, root has to see the password, since that is who does the fetchmail
setup.
root setup account, root see everything. root be superuser. <g>
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Subject: Re: ECommerce on LINUX {CAW}
Date: Thu, 18 Mar 1999 14:04:30 -0600
[EMAIL PROTECTED] wrote in message
<7crejp$f7k$[EMAIL PROTECTED]>...
|In <7cpc64$[EMAIL PROTECTED]>, "The Lone Scribe"
<[EMAIL PROTECTED]> writes:
|>[EMAIL PROTECTED] wrote in message
|><7cogd3$1gc$[EMAIL PROTECTED]>...
|>>Ok gang, what do I need to have fired up to run an ecommerce server with
|>apache
|>>and Linux?
|>Hire someone who knows what they're doing and can program and set up (and
|>maintain) the site for you. There are no 'ecommerce is on now' packages
|>included in most linux distros to just fire up and start making money.
|Clearly a good point. However, this isn't an instant project. and I
always like
|to know a bit about what i'm doing, even if I hire somebody to do it.
Otherwise
|you never know if you are getting take.
|I probably should have phrased my question differntly.
|What I was looking for were sources/ references that would outline
|what it took to have an ECOMMERCE site using Linux/Apache.
|sorry for the confusion.
To start with, e-commerce is just a buzz word with no real meaning. I
think what you are talking about is a web site where you can query an
inventory and make orders. For that, you need three components; A web
server, a database, and a web front end for the database. I don't know of
any kits out now, but you may want to look at the stuff at the Locomotive
Project at www.locomotive.org as they seem to have stuff along that line.
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. *
Black holes are where God divided by zero. - I am speaking as an individual,
not as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
From: Christopher <[EMAIL PROTECTED]>
Crossposted-To: alt.linux,alt.os.linux
Subject: Re: Apache server setup on Redhat 5.2
Date: Thu, 18 Mar 1999 14:05:14 -0600
D J wrote:
>
> So......
> If I assign it a name, what will happen. (It wont find it in it's dns
> server will it?)
>
> On Tue, 16 Mar 1999 00:23:34 GMT, Mike Jackson
> <[EMAIL PROTECTED]> wrote:
>
> >Just install RH5.2, it'll install Apache by default, the only major problem is
> >when
> >you have a dynamic IP address, you'll have to change the Apache config file for
> >
> >the server name (assign a name, it tries to get the name from the dns). And
> >once
> >you've got RH installed, and Apache starts successfully, then just connect to
> >your
> >ISP and away you go.
> >
> >Grant Peters wrote:
Look for the config file httpd.conf in the file there will be lines like this:
# ServerName allows you to set a host name which is sent back to clients for
# your server if it's different than the one the program would get (i.e. use
# "www" instead of the host's real name).
#
# Note: You cannot just invent host names and hope they work. The name you
# define here must be a valid DNS name for your host. If you don't understand
# this, ask your network administrator.
ServerName www.mediaone.net <<--Change to www.gte.net Or whatever your ISP is.
#ServerName new.host.name
Now when I was using dialup and apache was run at bootup it would get an error that it
couldn't find a
host. And it would die. So I removed that (It was started in my "rc.M" file) and then
I would connect to
my ISP and then run Apache and it worked fine.
I'm sure you could automate it so you don't have to manualy run Apache after
connecting. I never got
around to that because I got a cable modem and it's always connected. One note it
seems to only look for
the host at startup. So if you disconnect it will stay running. If you never shut your
machine down you
won't have to rerun it. It will just sit there waiting for a request.
Apache will work fine with a dialup account. You will just have to play the IP# game
if you want anybody
to find your site. I have a friend who setup his system to automatically update his
home page on his
ISP's server with his current IP#. He never has to worry about his IP#. Now don't ask
me how he did it. I
haven't had time to scan his hack.
Good luck.
Chris
BTW. This refers to SLACKWARE. and MY experiences.
------------------------------
From: "David Travers" <[EMAIL PROTECTED]>
Subject: Re: mounting via samba
Date: Wed, 17 Mar 1999 21:28:49 -0000
Under Network Neighbourhood can you see the linux machine. ?
Did you enable plain text passwords in the Windows98 registry ?
Can you ping the Win98 -> Linux and Linux -> Win98 ?
Have you configured /etc/smb.conf with the proper settings e.g share and
security settings. ?
You may wish to post your smb.conf file to me and I'll have a look.
benjamin j snyder wrote in message <7colok$24p$[EMAIL PROTECTED]>...
>There's a computer on my lan (running Win98) with a Jazz and Zip drive on
it.
>I want to access the drives via samba from my linux box. I know I need to
>smbmount, but for some reason I've not been able to get it to work, even
after
>referring to the man page. Any input or other how-to locations would be
>greatly appreciated.
>
>FYI...
>We're using 192.168.x.x IP's and the drives are shared as Jazz and Zip on
the
>machine that hosts them.
>
>Thanks in advance.
>--
>Ben Snyder
------------------------------
From: "Leopold Toetsch" <[EMAIL PROTECTED]>
Subject: Re: Fetchmail timeouts
Date: Thu, 18 Mar 1999 17:48:40 +0100
=cut
>fetchmail: POP3< +OK
>reading message 1 of 1 (3352 bytes)
>fetchmail: timeout after -1073742792 seconds waiting for listener to
respond.
>fetchmail: client/server synchronization error while fetching from
>pop3.demon.co.uk
What local MDA do you have running?
(from man fetchmail:)
As each message is retrieved fetchmail normally delivers
it via SMTP to port 25 on the machine it is running on
(localhost) ....
I run sendmail, no problems.
leo
------------------------------
From: Jean-Serge Gagnon <[EMAIL PROTECTED]>
Subject: Serving M$ fax clients
Date: Thu, 18 Mar 1999 15:48:55 -0500
Can Linux serve Windows 9x fax clients?
What we'd like to do is run a fax server on the Linux box that a Windows
client can use as a network fax destination.
We've looked at the rfax package (has a perl server and perl client for
Linux) but that would require a windows app creation (forcing the user
to add some software on his/her Win9x machine and we all know how that
works well :-) )
On the same thread, has anybody wrote a printer driver for Windows that
is a front end to a remote network session? Maybe to connect to a telnet
port and type arbitrary text...
Thanks
------------------------------
From: "Leopold Toetsch" <[EMAIL PROTECTED]>
Subject: Re: Samba question
Date: Thu, 18 Mar 1999 15:31:27 +0100
$author wrote in message <$msg_id>...
[cut]
>... using the smbclient.
>I can not access the Server from any
>workstation or client. I get a message stating that the user is not
>authorised to log on to the Linux server...
>
[/cut]
[autorespond]
if ($msg=~/NT|98|95|\swin/i &&
$msg=~/samba|smb/i &&
$msg=~/den(ied|y)|authori[sz]|not?\s+acces/i) {
$count{'smb'}++;
$answer="e_cut($msg,'smb');
$answer.= <<EOM;
1) Did you setup passwords (smbpasswd)
2) /etc/smb.conf:
encrypt passwords = yes
or no if you turned off encrypted authorization in NT/98
for Win 95 it depends on version
s. also /doc/.../samba/textdocs/WinNT.txt
s. also /doc/.../samba/textdocs/Win95.txt
and Samba-HOWTO, man samba, man smb.conf, man smbpasswd
EOM
}
elsif ($subject =~ /(howto|can\s?not).*?telnet.*?root/) {
$count{'telnet'}++;
$answer=<<EOM;
login as normal user then change to root by:
prompt> su -
This is for security reasons.
s. also: info su
s. also: Security-HOWTO-4.html#ss4.2
EOM
}
[/autorespond]
if ($answer) {
$answer .= "\nHope this helps\nleo";
&reply_group($answer;-)
&dostat;
}
[statistics]
print "Answer\tCount\n", map {"$_\t$count{$_}\n" } keys %count;
[/statistics]
Answer Count
samba 12
telnet 35
------------------------------
From: "Graham Wharton" <[EMAIL PROTECTED]>
Subject: NFS and win98/linux
Date: Thu, 18 Mar 1999 19:42:53 -0000
I have just a quick question regarding my setup
I have two directories exported on my linux box using nfsd and am able to
connect to them locally and also from a BeOS machine on the network. Both
mount fine
I am trying to connect using Intergraph's DiskAccess software from Windows
98 and keep on getting refused error messages when it tries to check my UID
and GID
/var/log/messages gives me this recurring error
Mar 18 20:39:45 linux portmap[1549]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Mar 18 20:39:59 linux portmap[1550]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Mar 18 20:40:04 linux portmap[1551]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Mar 18 20:40:10 linux portmap[1552]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Mar 18 20:40:19 linux portmap[1553]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Mar 18 20:40:29 linux portmap[1554]: connect from 192.168.0.3 to
callit(ypserv): request not forwarded
Has anybody any ideas on what is happening, and where i can look to try and
sort it out
Your time is appreciated
--
Graham Wharton
[EMAIL PROTECTED]
=========================================
Main Home Page
http://www.dotdot.force9.co.uk
Discussion Board
http://cgi.dotdot.force9.co.uk/cgi-bin/entercgi.pl?discus/messages/board-top
ics.html
E-Mailing files as attatchments with sendmail (MIME)
proper text counter and access logger
Dynamic generation of HTML
=========================================
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: ECommerce on LINUX {CAW}
Date: 18 Mar 1999 20:52:55 GMT
Reply-To: [EMAIL PROTECTED]
In <i%cI2.357$R22.30127@insync>, "Lee Sharp" <[EMAIL PROTECTED]> writes:
>[EMAIL PROTECTED] wrote in message
><7crejp$f7k$[EMAIL PROTECTED]>...
>|In <7cpc64$[EMAIL PROTECTED]>, "The Lone Scribe"
><[EMAIL PROTECTED]> writes:
>|>[EMAIL PROTECTED] wrote in message
>|><7cogd3$1gc$[EMAIL PROTECTED]>...
>
>|>>Ok gang, what do I need to have fired up to run an ecommerce server with
>|>apache
>|>>and Linux?
>
>|>Hire someone who knows what they're doing and can program and set up (and
>|>maintain) the site for you. There are no 'ecommerce is on now' packages
>|>included in most linux distros to just fire up and start making money.
>
>|Clearly a good point. However, this isn't an instant project. and I
>always like
>|to know a bit about what i'm doing, even if I hire somebody to do it.
>Otherwise
>|you never know if you are getting take.
>
>|I probably should have phrased my question differntly.
>
>|What I was looking for were sources/ references that would outline
>|what it took to have an ECOMMERCE site using Linux/Apache.
>|sorry for the confusion.
>
> To start with, e-commerce is just a buzz word with no real meaning. I
>think what you are talking about is a web site where you can query an
>inventory and make orders. For that, you need three components; A web
>server, a database, and a web front end for the database. I don't know of
>any kits out now, but you may want to look at the stuff at the Locomotive
>Project at www.locomotive.org as they seem to have stuff along that line.
>
> Lee
>
>From my perspective E-commerce has lots of meanings as opposed to probably
ONE real meaning. At least what comes to my mind when i here about E commerce.
at any rate thanks for the tip I'll hop over there and check it out.
Chris
>--
>SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
>necessary to sacrifice a young goat to your SCSI chain now and then. *
>Black holes are where God divided by zero. - I am speaking as an individual,
>not as a representative of any company, organization or other entity. I am
>solely responsible for my words.
>
>
>
>
------------------------------
From: [EMAIL PROTECTED] (Kevin Martin)
Subject: Re: VNC
Date: Thu, 18 Mar 1999 17:58:26 GMT
In article <7cq9of$1f9$[EMAIL PROTECTED]>, it says Iztok Polanic
<[EMAIL PROTECTED]> wrote:
>
>> Using VNC on Windows to view the Linux box, it works quite well -- as good
>> as the free X I was using, or better. Yes, even running Netscape on the
>> Linux box from a window on Win98 (I needed to download some stuff directly
>> to the Linux box).
>
>You just run netscape &? Because If I do it like this then netscape says that
>it can't open linux:2. Do you know maybe how I can fix this?
That's exactly what I just did, and it worked fine. Make sure you're in the
right session, though -- I'm usually in "howie:1", but just for grins I
started up another vncserver and so I had to log in to "howie:2" -- but it
still worked just as well. Probably helps if you have a window manager
running, but other than that I don't know what else to tell you.
------------------------------
From: george m hoffman md <[EMAIL PROTECTED]>
Subject: Re: MARS_NWE - Configuration Problems
Date: Thu, 18 Mar 1999 12:50:14 -0600
i think you should make sure that mars and your ipx network are using
the same frame type. do this:
before starting mars:
'ifconfig'
should report the ipx_interfaces that your network is running.
'slist'
should list you other netware servers.
then start mars with 'nwserv'
it takes a couple minutes to regather routing info.
'ifconfig' should show the same thing as before
'slist' should show your mars server.
A problem may occur if the mars server is using a frame type not
supported in the preexisting netware server/router enviroment.,\
section 3 should be:
3 auto 1
section 4 should be:
4 0x0 eth0 auto 1
let me know
see also http://www.combtx.com/linux/ldp/HOWTO/IPX-HOWTO.html
--
George M Hoffman MD
Anesthesiology & Critical Care
Medical College of Wisconsin
Children's Hospital of Wisconsin
414-266-3388 (voice)
414-266-3563 (fax)
<[EMAIL PROTECTED]>
------------------------------
From: "Alexander J. Perovich" <[EMAIL PROTECTED]>
Subject: Connect to linux server over internet?
Date: Thu, 18 Mar 1999 12:30:37 -0700
Just got a Linux server, but not near by where I can work with it. How can
I connect using Win98 to the server and use Xwindows to manipulate the
server?
You can e-mail me at [EMAIL PROTECTED]
Any information would be greatly appreciated.
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To:
alt.os.linux,comp.os.linux,comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.redhat,alt.os.linux.slackware
Subject: Re: What is the best Linux to install?
Date: Thu, 18 Mar 1999 23:34:17 GMT
POSTED & MAILED:
>I use a subscription option too - it keeps things under control. Linux
>is advancing to rapidly (overall a good thing) to try to surf the
>upgrade wave.
I just bought Suse 6..... matter of fact just got
it in mail today. <G>
This will be my first experience with it and I
will be installing it on a 486/66 with 40 megs ram
and 1.6 gig drive.
Anyway..... what is the subscription option and
why should I get it?
------------------------------
From: [EMAIL PROTECTED] (ETX)
Subject: Re: Linux server and multipile POP3 accounts
Date: Thu, 18 Mar 1999 21:37:08 GMT
On Thu, 18 Mar 1999 11:12:08 GMT, Iztok Polanic
<[EMAIL PROTECTED]> wrote:
>Can fetchmail encrypt password as fetchpop does? If not, then root can see
>your password!
Nope, but why are you so worried about what root can do?
------------------------------
From: [EMAIL PROTECTED] (ETX)
Subject: Re: Help with fetchmail.
Date: Thu, 18 Mar 1999 21:37:08 GMT
On Thu, 18 Mar 1999 14:44:43 +0200, "Andrew Higgs" <[EMAIL PROTECTED]>
wrote:
>I have fetchmail retrieving mail from a mail box. This is working fine, but
>I would like it to split up the aliases. What would be the easiest way to do
>this?
Type 'man procmail' and 'man procmailrc' to find out how.
------------------------------
From: [EMAIL PROTECTED] (ETX)
Subject: Re: ECommerce on LINUX {CAW}
Date: Thu, 18 Mar 1999 21:37:09 GMT
On 18 Mar 1999 17:54:01 GMT, [EMAIL PROTECTED] wrote:
>What I was looking for were sources/ references that would outline
>what it took to have an ECOMMERCE site using Linux/Apache.
>sorry for the confusion.
I found some good ecommerce books at my local bookstore in the
Computer/Internet section. You can also find many at amazon.com or
barnesandnoble.com as well. I found these books to be more helpful
than trying to dig up the info on the web.
If you do want to do some web research, try Selena Sol's website. The
URL escapes me now but you can find it by typing in his name at any
web search engine prompt to get there. He has a few decent perl-based
packages that can easily be tailored for ecommerce.
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: Recommend Fast Ethernet Card
Date: Thu, 18 Mar 1999 15:39:50 -0600
Jon Slater wrote in message <[EMAIL PROTECTED]>...
|Can anyone recommend a fast PCI Ethernet card for Linux?
I have heard the Intel PCI cards are the easiest to configure. <Less
variety than the 3com> I have heard the DEC chipsets are the fastest with
the lowest CPU load. I know from experience than the TLAN chips Compaq used
in many DeskPro x000 systems suck green cheese! ISA cards often have PnP
issues... In your position, however, I would get the most recognized brand
of PCI card the local computer store had on sale. :-)
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. *
Black holes are where God divided by zero. - I am speaking as an individual,
not as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
From: [EMAIL PROTECTED] (Hartmann Schaffer)
Subject: diald / dial-in problems
Crossposted-To: linux.debian.user
Date: Thu, 18 Mar 1999 21:44:34 GMT
I have my connection to my ISP set up and working fine using diald. I am
now trying to set up an direct additional connection to a friend such that
either of us can connect to the other. I use the following setup
1. On bootup I start two diald processes, one (A) for connecting to my ISP,
the other (B) to my friend's home network.
2. I configure A to act as the default route, B to act as the route to net
192.168.3.0 (the IP addresses of my friend's network)
3. I have started an mgetty process on the serial port with the modem.
As shell I have specified the dialin script that is part of the diald
distribution. Basically it connects to the proper diald process through
the pipe and issues a connect request
Dialling in to a shell account works fine, but establishing a ppp
connection in the way described above fails. It seems that diald or ppp
fail to get hold of the modem. When I checked out an attempt from the
other end, it appeared as if the connecting ppp process only received echos
of what it sent, which leads me to believe that the dialin script never
released control of the serial line. I couldn't find any useful message in
the logfiles, and I have no idea how to get around this problem (it seems
that pretty much all available documentation (at least what I have found)
deals with dialing out, hardly anything with accepting dial ins, and those
usually quite sketchy). Does anybody have any suggestion?
Hartmann Schaffer
PS. Please cc replies to [EMAIL PROTECTED]
------------------------------
From: Mark <[EMAIL PROTECTED]>
Subject: Re: setting: how to send mail behind firewall
Date: Thu, 18 Mar 1999 15:24:50 -0500
I had to tell sendmail to let mail from my internal boxes get out.
Otherwise, mailfwding was turned off. (a good idea actually)
You can allow relay by ip, machinename, or destination.
check your /etc/mail directory
Wilson Lam wrote:
>
> Hi,
> I am using redhat 5.2 (linux 2.0.36) and rinetd to setup a firewall
> and ip port forward.
> The email server is also a linux box in the private network.
>
> The situation is that:
> I can receive mail from the outside world.
> I can send mail out to outside within the email server.
> But I cannot send mail from a PC within the private network via
> the email server. The mail returned with error from the destination
> server:
> ======================
> Delivery has failed on the enclosed message for the following
> reasons reported either by the mail delivery system on the mail
> relay host or by the local TCP/IP transport module:
>
> 551 <[EMAIL PROTECTED]>... we do not relay
> ======================
>
> My /etc/rinetd.conf is:
> 0.0.0.0 25 192.168.1.8 25
> 0.0.0.0 80 192.168.1.8 80
>
> Where 192.168.1.8 is the email server.
>
> Is there anything that I am missing to set?
> Any suggestion is much appreciated!
>
> Wilson Lam
------------------------------
From: [EMAIL PROTECTED] (Tobias Reckhard)
Subject: Re: ip_masq and :no free ports.
Date: Thu, 18 Mar 1999 19:27:19 GMT
On Tue, 16 Mar 1999 19:28:16 GMT, [EMAIL PROTECTED] (kEy m�SteR) wrote:
>We have recently began getting the following message
>
>"ip_masq_new(proto=tcp) :no free ports.
>
>The message then continuously repeats.
>
>any help would be appreciated thank you
I suspect that IP masquerading has run out of TCP ports to map
connections to. It uses the ports from 61000 to 65096 normally and
should you have more than 4096 connections (or less, if the protocols
used require several ports simultaneously) across the masq'ing
gateway, that space will run out. You could try recompiling the kernel
after modifying the corresponding #define in
/usr/src/linux/include/net/ip_masq.h. The line says:
#define PORT_MASQ_BEGIN 61000
I'm not sure how low you could go, but I'd try doubling the number of
ports, so I'd set the define to 56904. I don't know how masquerading
works exactly, though, so I can't say if that'll cause any problems,
but I wouldn't expect it. :)
Tobias
------------------------------
From: "Nick Stefanisko" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,alt.os.linux
Subject: Re: how do you install NIC driver in RH5.2?
Date: Thu, 18 Mar 1999 13:36:51 -0800
More specifically
linuxconf
Config|Networking|Basic host information|This host basic
configuration|Adaptor 1
fill in the blanks.
Dylan > wrote in message <36f12a87$0$9442@pascal>...
>Linuxconf !
>
>Dunn One wrote in message <7cr5ts$[EMAIL PROTECTED]>...
>>I finished the installation of Linux. I skipped the part about installing
>>the NIC. How do I go back and install the module for the card without
>>reinstalling? I have an SMC ezcard 10 (PCI) and I've been informed to use
>>the NE 2000 module. How do I do this? Please help. Thanks....
>>
>>
>
>
------------------------------
From: Erwann CORVELLEC <[EMAIL PROTECTED]>
Subject: Routing problem on a FireWall with a DMZ ???
Date: Thu, 18 Mar 1999 22:45:42 +0100
I have a problem with my routing table (as it seems to me) on the following DMZ
firewall:
WWW server
|61.xxx.yyy.225
(eth0) |
61.xxx.yyy.254 61.xxx.yyy.253 |61.xxx.yyy.253 (eth1)
ISP Router ------------------------------ FireWall Linux 2.2.3
|192.168.1.1 (eth2)
|
Private network
- Here is the configuration script:
/bin/ifconfig lo 127.0.0.1
/bin/ifconfig eth0 61.xxx.yyy.253 broadcast 61.xxx.yyy.255 netmask 255.255.255.224 up
/bin/ifconfig eth1 61.xxx.yyy.253 broadcast 61.xxx.yyy.255 netmask 255.255.255.224 up
/bin/ifconfig eth2 192.168.1.1 netmask 255.255.255.0 up
route add -net 127.0.0.0 lo
route add -host 61.xxx.yyy.225 eth1
route add default gw 61.xxx.yyy.254 eth0
- The hosts file:
127.0.0.1 localhost
61.xxx.yyy.254 gateway
61.xxx.yyy.253 firewall
61.xxx.yyy.225 www
61.xxx.yyy.225 ns
- The networks file:
localnet 61.xxx.yyy.224
loopback 127.0.0.0
registeredomain.com 61.xxx.yyy.224
private 192.168.1.0
- The resolv.conf file:
domain registeredomain.com
search registeredomain.com
nameserver 61.xxx.yyy.225
- On the WWW server `route -n` gives:
Destination Gateway Genmask Flags Metric Ref Use Iface
61.xxx.yyy.224 0.0.0.0 255.255.255.224 U 0 0 11 eth0
127.0.0.1 0.0.0.0 255.0.0.0 U 0 0 4 lo
0.0.0.0 61.xxx.yyy.253 0.0.0.0 UG 1 0 5 eth0
Now, if I `ping 61.xxx.yyy.254` from the FireWall I have responses.
If I `ping 61.xxx.yyy.253` from the WWW server I have responses.
But if I `ping 61.xxx.yyy.254` from the WWW server then no responses come up... :(
I tried to change the address of eth1 to 61.xxx.yyy.252 but it doesn't help...
So it seems to me that I am doing something wrong in the routing table, am I ???
Thank you VERY much for your help.. :)
ECO.
~~~~
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
