Linux-Networking Digest #608, Volume #10 Tue, 23 Mar 99 22:13:50 EST
Contents:
Re: NT doesn't see (Raymond Doetjes)
Re: Win95 X-software suggestion (Bob Deep)
MOnitoring telnet (kwanlowe)
Re: NFS install... no portmap? ([EMAIL PROTECTED])
3Com 3C509B-TPO and linux kernel (EVANGELOS KOUTSAVDIS)
pppd - demand dialing question (Bob)
Re: Operation with parallel IP address blocks ("Alan Cheers")
Re: Redirect packets to web server (Greg Weeks)
Re: How do I stop netscape from popping up "Repost from data?" window when I press
reload???? ([EMAIL PROTECTED])
Re: Linux as a firewall!! (Greg Weeks)
Re: Telneting to Linux ("Nevermind")
Re: Netscape ftp, port numbers and ipfwadm ([EMAIL PROTECTED])
Re: ECommerce on LINUX {CAW} (Mac)
Re: modem connect speed problem (Andrew Comech)
Kingston NE110 driver for Readhat Linux ("Mark Emry")
National xDSL number? (bill davidsen)
Re: Modem Hang up after connection (Andrew Comech)
Re: Replacing NT Server 4 w/ Red Hat 5.2 ("Jeff Letendre")
passive DHCP or passive RARP ??? (Benedikt Hochstrasser)
Re: FTP from Windows machines to Linux (L J Bayuk)
Cant get that ppp link running (Olivier Hislaire)
Tape Backup software (Jack Cheng)
Re: setting up ppp (Rick Miller)
Re: ipportfw (Greg Weeks)
Re: Multiple Network Card Problem (Andr� Johansson)
Re: No rlogin through a Linux Firewall? (Rodney van den Oever)
Re: How can I redirect TCP-Ports? ("Duarte Cordeiro")
----------------------------------------------------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Subject: Re: NT doesn't see
Date: Wed, 10 Mar 1999 22:00:48 +0100
Try restarting the browser service from NT. This is a NT problem. (The
whole browser fucntionality of NT sucks big time).
Or just flat out shutting down and restarting the NT servers does the
trick also.
You do not need the browser function of NT, you can also enter net use
x: \\linuxbox\share and it will work to. Browsing is for "watjes"
Raymond
------------------------------
From: Bob Deep <[EMAIL PROTECTED]>
Crossposted-To:
alt.os.linux.slackware,comp.os.linux.x,comp.os.linux.setup,comp.os.linux.misc,linux.redhat.misc
Subject: Re: Win95 X-software suggestion
Date: Tue, 23 Mar 1999 08:19:39 -0600
Jon Slater wrote:
>
> I want to be able to run X on my Win95 box. I am connecting to a RedHat
> Linux 5.2 box.
>
> Any suggestions?
There is another package called hummingbird or something like that.
Kind of expensive, but nice.
SCO also sells an X Server (Xview I think), but it's junk. I unloaded
it as soon as they installed it at work. I just split my local hard
disk and ran linux instead. Nobody ever knew...
-= bob =-
------------------------------
From: kwanlowe <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.x
Subject: MOnitoring telnet
Date: Mon, 22 Mar 1999 19:33:53 -0500
John Hardin wrote:
>
> Andy Birkett wrote in message ...
> >Ah, that answers a question I was about to ask, I've been trying to
> >logon as root from a telnet session, but I kept failing. Why can't you
> >logon as root?
>
> For security reasons.
>
> It's a bad idea to let the world have access to a telnet daemon that
> permits root logins, as J. Random Cracker can then run a program to try to
> crack your root password remotely.
>
> If you don't permit root logins, then they have to guess a valid user name
> and password first, then work on cracking the root password from a local
> account.
A couple questions about Telnet:
How can I view what a person telnetting into my box is doing, similar to
what OS/2 does?
Any idea on how I would get an alert to popup whenever a telnet
connection is attempted and made? I tried make a little script that
monitored ps every few seconds and looked for the telnetd but was unable
to get it to work correctly...
Kwan
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: NFS install... no portmap?
Date: Wed, 10 Mar 1999 01:52:04 GMT
In article <[EMAIL PROTECTED]>,
Jeff <[EMAIL PROTECTED]> wrote:
> For some reason there is no file called "portmap" anywhere on my system.
>
> I'm running Redhat 5.1, and it's supposed to be in /usr/sbin, right?
> It's not there.
>
> How do I get everything I need to run an NFS server?
>
> Jeff Weiss
It's in /sbin.
If ever in doubt, try this command, as root:
cd /
find / -name portmapper
This'll show you where the sucker is hiding.
Best regards,
Dan.
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: EVANGELOS KOUTSAVDIS <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: 3Com 3C509B-TPO and linux kernel
Date: Tue, 23 Mar 1999 16:09:20 -0500
Hi, I just had a 3C509B-TPO card installed (which is a ISA card) I don't
know whether
I just have to turn the PnP feature off or rebuild the kernel or both.
If anybody had any experience with that card and wants to share it with
me I would appreciate that.
Thanks
------------------------------
From: [EMAIL PROTECTED] (Bob)
Subject: pppd - demand dialing question
Date: Tue, 23 Mar 1999 13:17:29 -0700
Hi All,
Running RedHat 5.2 kernel 2.0.36
Had some trouble compiling diald so I'm attempting to get pppd demand
dialing for my home network.
I downloaded the source upgrade, patched the source, built the pppd
stuff, recomiled the kernel. I am the proud owner of a demand dial
capable pppd.
I'm currently stuck on the proper pppd execution line.
My ppp0 dials fine from activating it via the Network Config in X so I
know that's right.But no luck on starting it for demand dial.
I would greatly appreciate some gentle nudging as to how to invoke pppd
to demand dial. Been around the man page, etc but have not found any
pseudo HOW-TOs or web pages to help explain this part of diald.
TIA,
Bob
------------------------------
From: "Alan Cheers" <[EMAIL PROTECTED]>
Subject: Re: Operation with parallel IP address blocks
Date: 23 Mar 1999 16:38:44 -0500
Not to worry. What you need to do is plan ahead. Reduce the Time To Live on
your DNS zones to like 30 minutes or so about a week before you make the
change. If all DNS servers follow the standards then the longest that your
DNS could be wrong is whatever you set for the TTL. I'm not great with
Linux so I can't provide you with a lot of details but you would need to
have IP alias support in your kernel.
The biggiest problem is that
> old DNS information may live on the net for days after the change over.
>
> Our ISP has suggested we configure all our boxes to respond to both
> addresses during the change over. Is this possible with linux (RedHat
5.0 -
> kernel 2.0.31 and RedHat 5.2 - kernel 2.0.36)? I have configured servers
to
> repond to multiple addresses before but this means configuring a NIC to
be
> on multiple subnets.
>
> I figured my first step was to change the firewall. This failed when
> running the second ifconfig command on each nic. The commands and output
> were:
>
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: Redirect packets to web server
Date: Tue, 23 Mar 1999 16:43:54 -0600
In article <7d7p2d$gqm$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] writes:
> Hi, hoping someone can help me,
>
> I've got a gateway running linux connected to an ADSL connection. I use an
> ipchain MASQ to allow my 192.169.x.x boxes to use the internet. One of these
> boxes is running linux with Apache. All of my internal boxes can bring up my
> web page by typing the IP address of the www server into a browser
> (192.168.0.2). I need Apache to service requests from the internet.
>
> I figured the best way to do this would be to create an INPUT ipchain on the
> gateway. So I tried this with the following command (with xx being my net
> ip):
>
> ipchains -A input -p tcp -s xx.xx.xx.xx 80 -j REDIRECT -d 192.168.0.2 80
>
> Didn't work. Outside addresses cannot make a connection with the www server.
> Beyond this, I tried a billion other things and every variation of each that I
> could come up with.
You are going to have to use a forwarding chain. Not having ever used
ipchains I'm not sure of the syntax. I use a 2.0.36 kernel with the
ipportfw patch. This patch is part of the 2.2 kernels. The command I
use is:
/usr/sbin/ipportfw -A -t $ipaddr/80 -R 192.168.1.5/80
I don't think it will be the same under IP chains though.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.misc
Subject: Re: How do I stop netscape from popping up "Repost from data?" window when I
press reload????
Date: Tue, 23 Mar 1999 22:35:10 GMT
Using JavaScript, how do I get the page to re-execute exactly as pressing the
reload button on a page? I have tried location.reload, history.back(), and
history.go() - none of which give the result I'm looking for, which is the
exact replication of clicking the reload button... Any ideas?
In article <7c8mn4$3rl$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] wrote:
> In article <7c81kq$ccs$[EMAIL PROTECTED]>,
> [EMAIL PROTECTED] (sasani) wrote:
> >
> >
> > WHen I press reload, Netscape gives me this window saying "Repost from
data?".
> > How do I tell Netscape that I don't want this window to pop up?
> >
> > Thanks.
> >
> > Si
> >
> >
>
> This message appears when you are "refreshing" a cgi script. You will not be
> able to "get rid" of that message. Basically you have requested that the
> script be run again by reloading the page. Therefor the script is asking you
> if you want the same data to be shown again. Hope this clears things up for
> you.
>
> Mike
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: Linux as a firewall!!
Date: Tue, 23 Mar 1999 16:49:24 -0600
In article <[EMAIL PROTECTED]>,
"Chad Osgood" <[EMAIL PROTECTED]> writes:
> I've got a couple of questions, I hope someone has the answers, or ideas at
> least :-).
>
> I've got DSL installation in about a month. I want to have my 4
> workstations, behind a firewall, and still have a DMZ (Demilitarized zone).
> I know I can setup the Linux box as a multihomed system with 2 network
> adapters, but can I put in 3? 1 for access to the Intranet, one for the
> DMZ, and one for DSL? Here's a simple layout of what I'm trying to
> accomplish...
>
> [Internet (DSL)]
> |
> |
> [Firewall (Linux)] ---- [DMZ]
> |
> |
> [Intranet]
>
> Make any sense? I know all about ipfwadm, so I'm really just curious as to
> how to implement the network. Without the DMZ, I can clearly see how a
> multihomed system with 2 network adapters would work, but how can I add the
> DMZ? I will only have 2 systems on that segment, but it needs to be
> completely free of the policies on the firewall. If any of this needs
> clarification, please let me know. I greatly greatly appreciate any
> response...
To do a true DMZ you'll need more than 1 IP address from your ISP. Do
you have them? If so the DMZ traffic is routed and not Masq'd. The
firewall becomes a simple packet filter then.
If you only have one IP then you'll need to masq the DMZ also. This
will require explicit port forwarding on the firewall.
Oh, and three network adapters isn't any more difficult than two.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
Date: Tue, 23 Mar 1999 16:35:34 -0500
From: "Nevermind" <oneway.com>
Subject: Re: Telneting to Linux
I have the linux server defined within my hosts file on my PC, not on the
server. My telnet connection appears in no time at all. I don't think it's
quite as necessary as having your Linux /etc/hosts file having your pc
information.
Adam Wilkins wrote in message <[EMAIL PROTECTED]>...
>I have my Win95 machine and Linux machine directly connected on the same
>ethernet segment at my home. They are both on the same subnet. When
>telneting from my Win95 machine to my Linux machine it takes almost a
>whole 60 seconds to get a login prompt to appear. Any suggestions?
>
>Adam Wilkins
>Dallas, TX
>
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Netscape ftp, port numbers and ipfwadm
Date: Wed, 24 Mar 1999 01:52:16 GMT
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Tobias Reckhard) wrote:
> On Tue, 16 Mar 1999 16:33:06 -0000, "Duarte Cordeiro"
> <[EMAIL PROTECTED]> wrote:
>
> >david koski wrote in message <[EMAIL PROTECTED]>...
> >>When attempting to ftp with Netscape 4.04 (RH 5.1 server and ppp
> >>connection to ISP) I cannot get through my firewall. I noticed that the
> >>port numbers reported on the status line of Netscape are 1025..65535
> >>(high). I can however ftp at the prompt. The same thing is true on the
> >>Windoze and OS/2 clients Netscape. Ftp programs work on the clients
> >>too, but not Netscape's ftp. What gives?
> >
> >hehe... a strange think indeed...
> >Ftp has two working models: passive and non-passive (someone called it
> >active)
> >I never know the order but:
> >- One uses port 20 to connect and port 21 to send data (ftp-data)
>
> That's normal FTP, but port 21 (server side) is used by the control
> connection and 20 for data transfer. The data connection here is
> initiated by the server.
>
> >- The other uses port 20 to connect and port > 1024 to send data.
>
> Again, it's port 21 on the server for the control connection. But
> you're right, a high port is used for data transfer. However, this
> connection is initiated by the client.
>
> >Don't know why, but ie or netscape, both use this later model, so the only
> >way for you to let the data pass is to open incoming connections to ports
> >>1024, I think...
>
> Nope, it's the other way around. You need to allow outbound
> initiations and transmissions, i.e. TCP packets with the SYN and ACK
> bits set, but only need to allow packets with the ACK bit set back in,
> going to and coming from the high port range for passive FTP's data
> connection. This is actually more firewall-friendly than normal. The
> normal FTP requires the masquerading module to make it work, because
> that intercepts the PORT statement on the control connection, with
> which the client tells the server which port on it (client) to connect
> to for data transfer.
>
> In ipfwadm syntax, passive FTP data can be enabled with the following
> lines. Replace the shell variables according to your configuration:
>
> ipfwadm -I -a accept -P tcp -S $INSIDE 1024:65535 -D 0/0 1024:65535 \
> -W $IN_IFACE
> ipfwadm -F -a accept -P tcp -S $INSIDE 1024:65535 -D 0/0 1024:65535 \
> -W $OUT_IFACE -m
> ipfwadm -O -a accept -P tcp -S $OUTIFIP 61000:65096 \
> -D 0/0 1024:65535 -W $OUT_IFACE
>
> ipfwadm -I -a accept -P tcp -S 0/0 1024:65535 \
> -D $OUTIFIP 61000:65535 -W $OUT_IFACE -k
> ipfwadm -O -a accept -P tcp -S 0/0 1024:65535 -D $INSIDE 1024:65535 \
> -W $IN_IFACE -k
>
> >PS: If you find another way to resolve this, please tell me how :)
>
> Always glad to help. :)
>
> Tobias
>
I do not wish to pass any more through my firewall than necessary. Since I
can already ftp in "normal" non-passive mode I just need to get Netscape to
use that mode. References to Netscape and ftp that I have found say that it
*defaults* to passive mode. That is my problem. A *default* implies that it
can be switched to something else, i.e. non-passive "normal" mode, no? How
can *that* be done?
regards,
david
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Mac <[EMAIL PROTECTED]>
Subject: Re: ECommerce on LINUX {CAW}
Date: Tue, 23 Mar 1999 22:50:18 GMT
ETX wrote:
> On 18 Mar 1999 17:54:01 GMT, [EMAIL PROTECTED] wrote:
> >What I was looking for were sources/ references that would outline
> >what it took to have an ECOMMERCE site using Linux/Apache.
> >sorry for the confusion.
Webtechniques journal had a recent paper issue on Ecommerce and
algorithms for e-commerce/packages etc.
www.webtechniques.com might have it on their web site archived from
their 'hard copy' that goes to paid subscribers.
Might be of service try it out.
Mac
------------------------------
From: [EMAIL PROTECTED] (Andrew Comech)
Subject: Re: modem connect speed problem
Date: 23 Mar 1999 18:34:16 -0500
In article <7d696n$ih$[EMAIL PROTECTED]>, Jan Eric Fernl�f wrote:
>Hi!
>
>When I try to connect at any higher speed then 19.2 all I get is trash..
>I've tried minicom aswell with the same effect.
>I'm using a USRobotics Sporstster Voice 33.6 fax modem that worked fine
>under win95.
>Running Redhat5.2 and kernal 2.2.3.
>Tha modem is using ttys1.
>
>What could be causing this?
>
Hi, who knows... What about the hardware flow control?
Are you sure your INIT string turns RTS/CTS on?
Get the list of AT commands from the manufacturer's web site.
And look up the INIT string which windows use.
Also, V.34 protocol is rather susceptible to the line noise, but
this basically results in 26400bps rates.
(This does not hurt to measure the noise level: after you connect from
minicom, enter +++ then at%q [you'll see the noise level] and then
ato to resume the session; maybe this is different for Robotics modems...)
If the noise level is higher than 005 or something then you may expect
lower connection speeds with V.34.
If you feel like getting a V.90 modem for about $50, see
http://www.math.sunysb.edu/~comech/tools/CheapBox.html#modem
Best,
Andrew
------------------------------
From: "Mark Emry" <[EMAIL PROTECTED]>
Subject: Kingston NE110 driver for Readhat Linux
Date: Wed, 24 Mar 1999 17:23:31 -0800
anybody know of drivers for the Kingston KNE110 ehternet card? last I tried
was KNE40's and the auto-detected just fine, but would prefer to use 100bt
if at all possible.
Mark
------------------------------
From: [EMAIL PROTECTED] (bill davidsen)
Subject: National xDSL number?
Date: 23 Mar 1999 22:12:51 GMT
Is there some national number to find out about xDSL in an area? I think
my local telco pays customer reps by the call, so they can handle the
greatest number of calls in an hour by saying "we don't do that" over
and over.
I found 1-800-GET-ISDN a while ago (the customer rep asked "ISDN? Is
that another name for touch-tone?") and I need to talk to someone who at
least knows what I'm asking!
--
bill davidsen <[EMAIL PROTECTED]> CTO, TMR Associates, Inc
Politicians and diapers have one thing in common. They should both be
changed regularly and for the same reason.
--Ted Symons(?)
------------------------------
From: [EMAIL PROTECTED] (Andrew Comech)
Subject: Re: Modem Hang up after connection
Date: 23 Mar 1999 18:38:17 -0500
In article <7csg93$3fo$[EMAIL PROTECTED]>, mung wrote:
>I try to connect Isp with my Slackware linux. My modem is automatically hang
>up after starting "Established Serial Connection......".
>My modem is Rockwell compatible V90.
>
Does your INIT string enable the "fall-back"? If the modem would like
to reduce the communication rate because the line is too noisy, but
it is not allowed to, it just drops the connection.
Got the list of AT commands?.
Cheers,
Andrew
------------------------------
From: "Jeff Letendre" <[EMAIL PROTECTED]>
Subject: Re: Replacing NT Server 4 w/ Red Hat 5.2
Date: Thu, 11 Mar 1999 10:45:41 -0500
Ok, here's what my present goals are for this Linux machine:
1) Validate user names and passwords
2) Successfully implement the Samba daemon to:
2.a) Create general shares for valid user accounts
2.b) Create shares for private accounting type stuff (a group share)
3) Set-up Apache - I "should" be able to figure out this one...
4) Perform IP masguerading (basically use the machine as a gateway to my
ISP)
5) DNS (both forward & reverse PTR entries)
============================================================================
I am currently trying to log into the machine using "Client for Microsoft
Networks"
I am using both TCP/IP and NetBEUI. My machine will log me into itself
because of the *.pwl file, but it will not log me into the Linux machine.
I have set-up Samba but I don't think it's correct. I can't see it in my
network neighborhood from the 95/98 machines.
Thanks again for your assistance,
Jeff Letendre
http://home.ici.net/~sj
------------------------------
From: [EMAIL PROTECTED] (Benedikt Hochstrasser)
Crossposted-To: comp.protocols.tcp-ip
Subject: passive DHCP or passive RARP ???
Date: Tue, 23 Mar 1999 22:01:45 GMT
Reply-To: [EMAIL PROTECTED]
Hello,
you might have seen these Axis (no affiliation whatsoever) boxes. To assign
them an IP address, all you need to do is to ARP -S its MAC address against
the desired IP address (arp -s youripaddress yourmacaddress), ping the box
once and furter configure it via telnet or web browser.
Technically I have no problem understanding the process: the ARP -S command
tells the host to send packets for the given IP address to the adapter with
the indicated MAC address. The box in turn will receive these packets
(destination MAC address is his) and discovers the destination IP address and
therefore sez 'must be me' and assigns itself this IP address. Cool.
Now: how do you do this with a Linux or FreeBSD client? Is there some suitable
code snippet around or do I miss something very trivial?
(BTW: I got halfway there, my Linux box would answering the Ping (kinda NAK,
because via ifconfig eth0 I saw the # of packets being sent and received), but
I couldn't convince it to change the IP address).
Why would I want to do this that way instead of bootp or RARP? - Because bo'
need a suitable daemon sitting at the other end of the cable...
May the bytes be with you, Ben
Regards, Ben ([EMAIL PROTECTED])
------------------------------
From: [EMAIL PROTECTED] (L J Bayuk)
Subject: Re: FTP from Windows machines to Linux
Date: 23 Mar 1999 23:06:56 GMT
[EMAIL PROTECTED] wrote:
>Strange scenario...I've got two linux (RH 5.2) boxes on a small home
>network. I can ftp between them with
>no problem...however if I attempt to ftp to either of them from either an NT
>box or a Win98 workstation,
>the process appears to be hung, but if I let it sit for 3-5 minutes, the
>connection is finally made and I can
>log in.
> This occurrs whether ftp using name or ip so I doubt resolution is the
>problem...any thoughts?
Possibly reverse resolution is the problem. On Linux, do you
have DNS servers in /etc/resolv.conf? Try putting the Win98
PC's IP address and name into the Linux server's /etc/hosts file,
and make /etc/host.conf say "order hosts,bind" instead of bind (DNS)
first. If this fixes it, the problem was the Linux server trying
to use a (probably unreachable) DNS server to reverse-resolve the
Win98's IP address.
------------------------------
From: [EMAIL PROTECTED] (Olivier Hislaire)
Subject: Cant get that ppp link running
Date: Thu, 11 Mar 1999 16:06:53 GMT
Reply-To: [EMAIL PROTECTED]
Hi there,
last year I made a ppp link between two linux hosts, in no time. Now,
I just wanna do the same think and I can't. Could anybody help ?
Originator runs kernel 2.0.34, the other one 2.0.0. Both use ppp
2.2.0. When I call:
- either pppd exists with a message 'serial line is looped back'
after it gets logged through chat. I've checked for existing default
routes, put lcp-max-configure to 50, and so on. No change.
- either it works (mostly when I use an external modem on the calling
side instead of an internal card), but I have around 50% packet loss
when pinging from one side to the other, plus the HDD LED of the
answering machine that gets crazy ...
Don't know what to try else ... any idea ?
Olivier.
------------------------------
From: Jack Cheng <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.misc,comp.os.linux.setup,hk.comp.os.linux,tw.bbs.comp.linux
Subject: Tape Backup software
Date: Wed, 24 Mar 1999 09:38:17 +0800
Hello,
I'm looking for a very easy & good DAT tape backup software.
Any idea?
Regard
Jack Cheng
------------------------------
From: Rick Miller <[EMAIL PROTECTED]>
Subject: Re: setting up ppp
Date: Tue, 23 Mar 1999 17:41:38 -0500
This is a multi-part message in MIME format.
==============BA75DE00BE4E494D0976620F
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I suggest reading the PPP HOWTO
[EMAIL PROTECTED] wrote:
> How exactly do you go about setting up PPP networking?
> Thanks
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
==============BA75DE00BE4E494D0976620F
Content-Type: text/x-vcard; charset=us-ascii;
name="vmiller.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Rick Miller
Content-Disposition: attachment;
filename="vmiller.vcf"
begin:vcard
n:Miller;Vincent
x-mozilla-html:FALSE
org:The MITRE Corporation;R107 - End User Computing
adr:;;;;;;
version:2.1
email;internet:[EMAIL PROTECTED]
title:Help Desk Specialist
fn:Rick Miller
end:vcard
==============BA75DE00BE4E494D0976620F==
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: ipportfw
Date: Tue, 23 Mar 1999 16:59:11 -0600
In article <7d8v2n$357$[EMAIL PROTECTED]>,
"Chris" <[EMAIL PROTECTED]> writes:
> I am trying to get ipportfw to work on an OpenLinux 2.0.35 box.
>
> I've followed all of the instructions and everything seems to configure fine
> in the kernel and compile fine.
>
> My masquerading works, and I can view my ipportfw table of entries, but the
> actual port redirection does not seem to be taking place.
>
> Any help at all would be appreciated.
Are you trying to test from inside the firewall or outside. You will
not be able to see it from inside. ipportfw works through the IP Masq
table and if there is no IP masq then the packet doesn't get
forwarded. Packets from inside don't need to be masq'd to reach the
inside so the packet doesn't get forwarded back inside.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: [EMAIL PROTECTED] (Andr� Johansson)
Subject: Re: Multiple Network Card Problem
Date: Sun, 21 Mar 1999 23:48:41 GMT
On Tue, 9 Mar 1999 09:57:48 -0500, "Pascal Deschenes"
<[EMAIL PROTECTED]> wrote:
>Hi,
>Read on ethernet-HOWTO. There is a section explaining how to configure 2
>ethernet card.
>
>
>
>Ty Lamb wrote in message ...
>>I have a 486 Intel dx4-100. I have two network cards in it. Redhat 5.1
>>and a 8 gig hard drive.
>>
>>The problem is that my machine doesn't recognize the second network
>>card. Both have different irq's and network addresses. Does anyone
>>know of a fact that would point me on how to have the second network
>>card show up? I've found several that show me how to configure it after
>>it is there (ie through ifconfig using net0 and net1) but none show me
>>how to get net0 and net1 to show up.
Even better, read the mini-howto on multiple ethernet cards.
http://cesdis.gsfc.nasa.gov/linux/misc/multicard.html
I appended the line (in /etc/conf.modules)
alias eth1 via-rhine
where via-rhine is my driver.
Good luck.
--
Andr� Johansson
[EMAIL PROTECTED]
------------------------------
From: root@localhost. (Rodney van den Oever)
Crossposted-To: comp.security.firewalls
Subject: Re: No rlogin through a Linux Firewall?
Date: Thu, 11 Mar 1999 17:23:13 GMT
Habib Jalili <[EMAIL PROTECTED]> wrote:
>It works fine with telnet and ftp from the linux A to internet. But
>rloging from Linux A returns the saying error permission denied. Rlogin
>from Linux A to LAN and rlogin from firewall (Linux B) to internet and
>to LAN does work too.
>I have tried it with -P all. No chance.
The problem is that Masquerading is in fact port-translation. All
traffic from the firewall leaves it with the IP-address of the
external interface as source-address. Because the session still has to
be unique, the source-port is changed to a value above 61000.
/*
* Linux ports don't normally get allocated above 32K.
* I used an extra 4K port-space
*/
#define PORT_MASQ_BEGIN 61000
#define PORT_MASQ_END (PORT_MASQ_BEGIN+4096)
rlogin uses random source ports below 1024, so masquerading breaks
this.
You will have to use a proxy.
Rodney van den Oever / [EMAIL PROTECTED]
'Very funny, Scotty. Now beam down my clothes.' - Michael Finken
------------------------------
From: "Duarte Cordeiro" <[EMAIL PROTECTED]>
Subject: Re: How can I redirect TCP-Ports?
Date: Wed, 10 Mar 1999 10:34:12 -0000
Juergen Bachsteffel wrote in message <7c41el$nba$[EMAIL PROTECTED]>...
>Hi!
>
>I installed a Linux-box with 'squid' (HTTP-FTP-proxy).
>Now my users get access to internet for these to proctocols.
>The Linux box connects to my ISP using a CISCO-router and
>eyeryone is happy.
>
>-->>But for incoming and outgoing email I have to redirect port 25(smtp)
> and 110(pop3).
>
>The users should connect to the Linux-box on a specfic port (it can
>also be 25 or 110) and all connections should redirected to port 25
>and 110 on the mailserver of my ISP.
I can think of 3 ways of doing this:
1 - ip port forward.
2 - ssh
3 - rinetd.
1 - (From the make xconfig help): Port forwarding is an addition to IP
masquerading which allow some forwarding of packets from outside to inside a
firewall on given ports.[...]
2 - One someone told me (and you can find out in the man page) a way to
attach a port on the local machine to another port running on another
machine.
3 - This daemon is easy to use. You just say in the configuration file:
my_machine 25 ISP_mail_server 25
my_machine 110 isp_mail_server 110
and everyone that connects to your machine on these two ports will be
talking to the isp server.
Hope it helps,
Duarte Cordeiro
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
