Linux-Networking Digest #629, Volume #10 Thu, 25 Mar 99 15:13:42 EST
Contents:
Re: Network design! (Simon Thornton)
Re: Linux + 2 Ethernet cards ("William R. Mattil")
more info on e-mail problems ("Gary S. Mackay")
RH5.2: 2 NICS, DHCP, LAN Problem (Rajendra Singh)
Re: What is the best Linux to install? (bill davidsen)
Re: Almost there with PPP, except. . . (Bill Unruh)
Re: Need unusual IP address translation (Job Eisses)
Re: 2 Token Ring-Cards ("Gary")
Re: two computer network, 100% packet loss ("William R. Mattil")
Re: ppp connection/modem strangeness (Jon-o Addleman)
Re: Linux as DHCPD and IP Masq'ing firewall? (Richard A Lough)
Re: X server and XDM ("Michael")
Re: What is the best Linux to install? (Graham Daniell)
Re: Linux, wins and dhcp-dhcpcd problem... ("Lee Sharp")
Re: gfc2206 Netsurf ethernet card problems ([EMAIL PROTECTED])
----------------------------------------------------------------------------
From: Simon Thornton <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: Network design!
Date: Thu, 25 Mar 1999 13:38:08 -0100
This is a cryptographically signed message in MIME format.
==============msB083069433AE0AE8E1BE8D8F
Content-Type: multipart/mixed; boundary="------------684B701B2911D5E3E528627A"
This is a multi-part message in MIME format.
==============684B701B2911D5E3E528627A
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Hi Kishore,
Kishore wrote:
> 1 NIC 3 NICs 3 NICs 1NIC
> src router1 router2 sync
> 15.15.15.4 15.15.15.1 15.15.16.1 15.15.16.4
> 15.15.15.2 15.15.16.2
> 130.89.67.56 15.15.15.3
You don't mention what subnets (masks) you are actually using. If you get
the subnet masks wrong, then you will not be able to locate devices
properly.
(If you understand IP networking, ignore the next paragraph and accept
my apology for preaching to the converted).
When a machine tries to reach a destination, it compares the destination
IP address with its subnet mask. If the src/dst are in the same subnet
then it will use the arp protocol to determine the MAC address of the
dst machine. If the src/dst are in different subnets and no explicit
route (static or dynamic) exists to the dst subnet, then the machine
will route the data to the default gateway (which should know how to
reach the dst machine, or know the next hop in the link).
Assuming that you use something like the following, it should work:
1 NIC 3 NICs 3 NICs 1NIC
src router1 router2 sync
15.15.15.4 15.15.15.1 15.15.16.1 15.15.16.4
/ 255.255.255.0 / 255.255.255.0 / 255.255.255.0 / 255.255.255.0
--- Net A --- --- Net B --- --- Net C ---
Devices in Net A can ping each other and router1
Devices in Net B can ping each other
Devices in Net C can ping each other and router2
The link between router1 and router2 (Net C) could either be a LAN or a
serial connection:
1 NIC 3 NICs 3 NICs 1NIC
src router1 router2 sync
Serial: 15.15.17.253 15.15.17.254
/ 255.255.255.252 / 255.255.255.252
or,
LAN: 15.15.17.1 15.15.17.2
/ 255.255.255.255 / 255.255.255.255
In the serial case, it is typical to use a 2 bit subnet (point-to-point)
so that you don't waste address space. Even if the connection is LAN
based (ethernet/tokenring?) and you only have the two routers on the
segment, you can use the 2 bit subnet.
You would then have to update the routing tables on the routers
(assuming you aren't using OSPF/RIP etc).
Router 1:
route -add net 15.15.16.0 netmask 255.255.255.0 15.15.17.254
Router 2:
route -add net 15.15.15.0 netmask 255.255.255.0 15.15.17.253
On the client machines, you must set the default gateway (route) to be
the nearest router. e.g.: For a machine in Net A, the gateway is
15.15.15.1, for a machine Net , the gateway 15.15.16.1
On a separate subject, if you are creating a private network, there are
3 address ranges defined by RFC 1597, for this use:
10.0.0.0 / 255.0.0.0 10.0.0.0 -> 10.255.255.255
172.16.0.0 / 255.224.0.0 172.16.0.0 -> 172.16.31.255
192.168.0.0 / 255.255.0.0 192.168.0.0 -> 192.168.255.255
It is better to use these if you do not have any public IP address
ranges.
Typical numbering schemes allocate router devices from the start of a subnet
upwards and workstations etc from the last address in the subnet
downwards.
e.g.: for 15.15.15.0 / 255.255.255.0, routers go from 15.15.15.1 upwards
and workstations from 15.15.15.254 downwards.
Hope this helps, let me know if you need anything further.
Rgds,
Simon Thornton
Network Manager
======================================================================
Tel: (+33)49294-6428 Amadeus Development Co.
Fax: (+33)49294-6428 155 Route Du Pin Montard
BBS: (+33)49312-2155 B.P 69
Internet : [EMAIL PROTECTED] 06902 Sophia Antipolis
Compuserve: 100015,3641 (or 101511,3643) CEDEX
Fidonet : 2:323/21 France
======================================================================
PGP Key (RSA): http://pgpkeys.mit.edu:11371/pks/lookup?op=get&search=0xDBA2E709
==============684B701B2911D5E3E528627A
Content-Type: text/x-vcard; charset=us-ascii; name="vcard.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Thornton, Simon
Content-Disposition: attachment; filename="vcard.vcf"
begin: vcard
fn: Simon Thornton
n: Thornton;Simon
org: Amadeus Development Company
adr: 485 Route du Pin Montard;;Boite Postal 69;Sophia
Antipolis;CEDEX;06902;France
email;internet: [EMAIL PROTECTED]
title: Network Communications Manager
tel;work: +33-49294-6428
tel;fax: +33-49294-7922
note;quoted-printable:PGP Key (RSA):
http://pgpkeys.mit.edu:11371/pks/lookup?op=3Dget&search=3D=
0xDBA2E709=0D=0A=
=0D=0A=
x-mozilla-cpt: ;0
x-mozilla-html: FALSE
version: 2.1
end: vcard
==============684B701B2911D5E3E528627A==
==============msB083069433AE0AE8E1BE8D8F
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature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==============msB083069433AE0AE8E1BE8D8F==
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: Linux + 2 Ethernet cards
Date: Thu, 25 Mar 1999 07:04:21 -0600
Tom Neilson wrote:
> [EMAIL PROTECTED] wrote:
> : In article <[EMAIL PROTECTED]>,
> : Raymond Doetjes <[EMAIL PROTECTED]> wrote:
> :> Read the Multi Homed howto. There you see how to add a eth1 as lilo
> :> parameters this does work.
> :>
> :> Raymond
> :>
>
> : I looked everywhere for this "Multi Homed howto," but couldn't find it. Does
> : anyone know where I can find this?
>
> : --Daniel
>
> : -----------== Posted via Deja News, The Discussion Network ==----------
> : http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
>
> Practical example:
>
> # LILO configuration file
> # generated by 'liloconfig'
> #
> # Start LILO global section
> append="eth0,0x210,9 eth1,0x6780,5"
> boot = /dev/hda
> vga = normal
> # End LILO global section
> # Linux bootable partition config begins
> image = /boot/zImage
> root = /dev/hda1
> label = linux
> read-only
> # Linux bootable partition config ends
>
>
This will only work if support for the NIC's is compiled directly into the kernel.
Not supported as modules. IIRC this is the most glaring error in the Multi0NIC
Howto.
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 399-4106 | and... in high heels.
------------------------------
Date: Thu, 25 Mar 1999 13:55:53 -0500
From: "Gary S. Mackay" <[EMAIL PROTECTED]>
Subject: more info on e-mail problems
Your server has unexpectedly terminated the connection. Possible causes
for this include server problems, network problems, or a long periods of
inactivity. Subject: "subject", Acount: 'Home account', Server:
'accnorwalk.com, Protocol: SMTP, Port: 25, Secure(SSL): No, Socker
Error: 10053, Error Number: 0x800CCC0F
--
Edison Information Technologies
P.O. Box 554
Milan, OH 44846-0554
419.499.7040
[EMAIL PROTECTED]
--
------------------------------
From: [EMAIL PROTECTED] (Rajendra Singh)
Subject: RH5.2: 2 NICS, DHCP, LAN Problem
Reply-To: [EMAIL PROTECTED]
Date: Thu, 25 Mar 1999 19:00:33 GMT
My machine has two NICs (3c900). The first (eth0) one is connected to a LAN
(one other machine, HP-UX) and the second (eth1) to a cable MODEM. I am using
DHCP on eth1. The problem I am having is that when the HP-UX machine is down
and I boot (Redhat 5.2 Linux 2.0.36), I get "failed" when it tries to use DHCP
for eth1. If the HP-UX machine is up, it succeeds.
After the machine has booted (and DHCP has failed), if I login as "root" and do:
1) ifdown eth0
2) ifup eth1
Then it works.
What's going on here?!?!?!
I find this very peculiar because the first time I installed Linux, I didn't
have this problem. I had a system crash and reinstalled it. This is when the
problems started.
Any help is appreciated.
--
Mr. Rajendra Singh, B. Sc. ([EMAIL PROTECTED])
"What is understood need not be discussed." - Loren Adams
------------------------------
From: [EMAIL PROTECTED] (bill davidsen)
Crossposted-To: comp.os.linux,comp.os.linux.misc,comp.os.linux.setup
Subject: Re: What is the best Linux to install?
Date: 24 Mar 1999 23:00:00 GMT
In article <7d96i6$l81$[EMAIL PROTECTED]>,
John Meissen <[EMAIL PROTECTED]> wrote:
| RPM and YaST like to do things the way the developer, or package builder,
| thinks is best. That may or may not agree with my personal philosophy.
| I'm suffering with YaST now, even though it gets in my way more
| often than not, in order to try SuSE. Over the years I've developed
| a system that organizes things into core services, optional products,
| and stuff I add myself. And I like to localize the files so that
| products are as self-contained as possible within a single directory
| subtree. This makes it easier to backup, maintain, and track
| the stuff on the system.
I don't organize things that way at all, but I totally agree that RPM is
most useful to those who want (or need) to setup their system the way
the developer intended. And that's not a bad thing for a lot of people.
I do find that if I get packages which are from another source which
doesn't match the mindset, or which isn't installed in just the same
way, I sometimes confuse the hell out of the RPM installer and it gets
unhappy about dependencies. That is a bad thing.
| And if I want to remove/update a package now I have to go searching
| all over the system for files. If I rolled my own I could put
| support files, documentation files, config files, etc. all under
| /usr/local/<product>, and I'd know right where to find them.
A lot of stuff come in now with /opt/product or /opt/developer/bin
setup, but that's still better than having it in root. Root should be
what I need to run the system, nothing more.
| Sure, rpm is supposed to keep track of all that for me. But then
| there's yet another tool/interface I HAVE to learn and remember.
Well, if you're going to use the tool you ought to learn it. After
verifying that I could mess up RPM by diddling modified dates and the
like I just stopped using it. It doesn't seem to mix well with hand
admin, and I have no tolerance for using a GUI to add a line to a text
file. It's like tying knots wearing mittens.
| So far it hasn't done a better job, or made it easier for someone
| who knows what they're doing to do their job. It's just provided
| a point-and-click WIMP interface for those who DON'T know what
| they're doing yet.
That's where it comes in. And from first impression the mandrake release
make installation easier, so there's another place less expertise is
needed.
I use Slackware because I want to be able to add stuff where I want it,
and more to keep the clutter out of the root filesystem. I thought that
all the non-system things were supposed to go in /usr/local by FSS, but
people are sure crapping up /bin, /usr/bin, /sbin, /etc, etc.
I don't condemn RPM, but I think at some point the Slackware package
stuff is going to do more exactly what the user want if s/he hacks. One
of the rare cases where less *is* more.
--
bill davidsen <[EMAIL PROTECTED]> CTO, TMR Associates, Inc
What I find astonishing is not that my cat has started to sing, but that
he has taken up country-western. This morning he sang `Momma, don't let
your kittens grow up to be barn cats' in the shower, followed by a
pretty decent yodeling version of `Roundup time in Texas when the catnip
is in bloom.'
------------------------------
From: [EMAIL PROTECTED] (Bill Unruh)
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup,linux.redhat.misc
Subject: Re: Almost there with PPP, except. . .
Date: 24 Mar 1999 23:06:40 GMT
In <7dbm9k$rl6$[EMAIL PROTECTED]> "Ronald BAL" <[EMAIL PROTECTED]> writes:
>In that case you run pppd with the SUID-bit set. A hacker can cause a buffer
>overflow and get root access .
>Please read the message in comp.security.announce and the mentioned CERT
>reports.
I have searched dejanews for any mention of pppd in the
comp.security.announce and could not find anything. Could you pls be
more specific? How long agao was this?
------------------------------
Date: Wed, 24 Mar 1999 23:41:00 +0100
From: Job Eisses <[EMAIL PROTECTED]>
Subject: Re: Need unusual IP address translation
Chris Ott wrote:
>
> Here's an interesting problem.
I agree
> My company does a lot of remote support. What we're doing now is
> using PC Anywhere or a terminal emulator (depending on the remote
> OS) to connect to a computer at our clients' sites. There are
> several problems with this approach, however. One is that it only
> allows us to connect to the machine with the modem. It would be
> nice if we could connect to any machine on their network. Another
> problem is that only one person from here can get to that machine
> at a time. People are always getting busy signals when they're
> trying to do work for clients. Both of these problems could be
> eliminated if we and our clients were connected via TCP/IP,
> i.e. a Linux box at each end, running PPP.
>
> Here's the problem: All of our clients are using the 192.168.1.x
> network. (And, of course, we are, too). So - what I'd like to be
> able to do is have each of our clients' networks look like a
> different address, as far as our network is concerned. (I'd love
> to be able to tell them to change their addresses, but you know
> how those network administrators can be. :-)
>
> For example, let's say I decide to assign IP 192.168.2.x to a
> client and if I telnet to 192.168.2.57, I'd like that to get
> translated to 192.168.*1*.57 at the remote end. It's easy to set
> up the routing on the communications server to get the IP
> packets to the remote Linux box, but once they get there, the
> IP header will need to be rewritten, or something, so the packets
> get to the correct machine. At the same time, the IP packets
> returned to our network from 192.168.1.57 will need to be
> modified, in transit. Of course, our network will need to appear
> to have a different adress from the client's side, as well.
>
> Now, I'm sure this is possible, since IP Masquerading does
> something similar and it works quite well. However, I looked
> into the "ipfwadm" documentation and it doesn't appear to be
> quite powerful enough to do what I need.
>
> Does anyone know a way to do this? Is there a better way to
> accomplish the same thing?
>
> It would be nice if we could do this over the Internet, too,
> using VPN software, but I'm sure that's a completely different
> ball of wax.
I am working with a Firewall-1 machine that can translate
address ranges, while ipfwadm in the 2.0.x kernels translates
all "inside" addresses to the single outgoing firewall address.
Both are easy to setup if connections from inside to outside must
be translated, but if you have to reach any number of hosts from
the outside and translate all those - that is much more difficult.
If your own setup can be organized so that each of your machines connect
to one customer lan at a time only, then you could keep the
192.168.1 on each customer, use as local ip address eg. 192.168.254.x
and translate this to 192.168.1.y on the connection to the customer.
PCAnywhere would still be a problem though.
IPv6 might solve this in one go. -job
------------------------------
From: "Gary" <[EMAIL PROTECTED]>
Subject: Re: 2 Token Ring-Cards
Date: Wed, 24 Mar 99 23:04:32 GMT
Reply-To: [EMAIL PROTECTED]
I suppose the question really is, does Linux support source-route bridging,
which is what you seem to want to do. You also need an internal "bridge
number" to pass data across in a token ring environment.
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: two computer network, 100% packet loss
Date: Thu, 25 Mar 1999 07:31:23 -0600
Christopher wrote:
> Hello, I am trying to setup a mini network with two computers. I have
> read the instructions from NET-3 and ORA's TCP/IP but I still can't
> get the computers talking. I am using two DEC ethernet cards (DE200,
> and DE205) that appear to be working with out conflicts. They
> attached with thin net cable which is terminated at both ends.
>
> I used ifconfig on the first and set the address to eth0 to 172.16.1.3
> with netmask 255.255.0.0. The other computer is eth0 172.16.1.2.
>
> On the first machine route -n gives
> Dest Gateway Genmask Flags ... Iface
> 172.16.1.2 0.0.0.0 255.255.255.255 UH eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U lo
>
> On the other:
> Dest Gateway Genmask Flags ... Iface
> 172.16.1.3 0.0.0.0 255.255.255.255 UH eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U lo
>
> When I ping from either machine with
> ping 172.16.1.2 or ping 172.16.1.3
> I get the following message:
> PING 172.16.1.2 : 56 data bytes
>
> After ctrl-c
> --- 172.16.1.2 ping statistics ---
> 7 packets transmitted, 0 packets recieved, 100% packet loss
>
> Both machines give the same messages.
>
> Please give me some ideas as to what could be causing the problem.
> Thanks.
It could be that these cards are trying to use the TP port on the NIC's
instead of the BNC connector ? If they have both connectors on the NIC
this is where I would check first.
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 399-4106 | and... in high heels.
------------------------------
From: [EMAIL PROTECTED] (Jon-o Addleman)
Subject: Re: ppp connection/modem strangeness
Date: Wed, 24 Mar 1999 23:05:54 GMT
If you want to do things manually, simply follow the directions in the
ppp-howto - it's not all that complicated, and tells you exactly what
to do. If you go this route, make sure that you make a chat script
that does exactly what you've been doing manually.
It seems to me that most of these ppp setup programs REALLY suck. They
don't seem to work well for anyone! I have had a lot of success with
pppconfig though, which comes with Debian (and maybe other distros).
It's very nice because it just makes standard scripts that are easy to
customize if you want to change the way it's doing things after.
--
Jon-o Addleman
------------------------------
From: Richard A Lough <[EMAIL PROTECTED]>
Crossposted-To: dna.support,ni.chat
Subject: Re: Linux as DHCPD and IP Masq'ing firewall?
Date: Wed, 24 Mar 1999 23:16:56 +0000
Reply-To: [EMAIL PROTECTED]
Richard A Lough wrote:
>
> Simon McCartney wrote:
> Hi Simon
>
SNIP
> I will get back to you on the routing
>
> HTH
>
> Richard A Lough
I decided that posting my network file would be the simplest
way of sorting this.
#! /bin/sh
ifconfig lo 127.0.0.1
route add -net 127.0.0.0
IPADDR=192.168.1.1
NETMASK=255.255.255.0
NETWORK=192.168.1.0
BROADCAST=192.168.1.255
#GATEWAY=192.168.1.1
ifconfig eth0 ${IPADDR} netmask ${NETMASK} broadcast ${BROADCAST}
route add -net ${NETWORK}
route add default gw ${GATEWAY} metric 1
ipfwadm -F -a m -S 192.168.1.0/24 -D 0.0.0.0/0
insmod ip_masq_quake
insmod ip_masq_ftp
If you look in NET3-HOWTO you will see that the route add -net
command above can be achieved by a route add -host command, which
is probably what you intended.
Do you really nedd a DHCP server? Is it necessary for 5-6 machines?
HTH
Richard A Lough
------------------------------
From: "Michael" <&&[EMAIL PROTECTED]>
Subject: Re: X server and XDM
Date: Thu, 25 Mar 1999 12:01:10 -0700
I have found additionally that when I start xdm or xdm -nodaemon (not sure
what that does), it actually starts TWO xdm processes -- one is fixed, and
the other one continutally dies and restarts, each time getting a new PID.
I think this is why the disk is contintually accessed... What's causing
this? I don't recall this happening a week ago.
thanks
ms
Michael <&&[EMAIL PROTECTED]> wrote in message
<0svK2.5138$[EMAIL PROTECTED]>...
>I wasn't sure what newsgroup to post this to...
>
>when I have xdm running on my rh5.1 machine, it reads/writes the hard drive
>every few seconds, even when there are no x server connections to it. This
>is really annoying, as it prevents me from sleeping, not to mention is
>probably "bad" for the hard drive. Any suggestions?
>
>thanks
>ms
>
>
------------------------------
From: Graham Daniell <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux,comp.os.linux.misc,comp.os.linux.setup
Subject: Re: What is the best Linux to install?
Date: Thu, 25 Mar 1999 21:17:58 +0800
RedHat - the boxed set - by far the easiest to install. And comes with
several Linux books on CD ROM. If your PC supports it you can boot into
Linux from the CD
Graham Daniell
(A beginner)
Joe Keane wrote:
>
> In article <7d6822$6u1$[EMAIL PROTECTED]>
> Rufus V. Smith <[EMAIL PROTECTED]> writes:
> >What's the best tasting fruit: Apples, Pears, Oranges, or Bananas?
>
> Pears.
>
> >If it's not in the FAQ's, it should be added.
>
> --
> Joe Keane, amateur mathematician
--
Graham Daniell
Perth, Western Australia
[EMAIL PROTECTED]
========================================================
Check out our Intranet shareware at
http://www.wt.com.au/~gdaniell/phonelist
========================================================
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Subject: Re: Linux, wins and dhcp-dhcpcd problem...
Date: Thu, 25 Mar 1999 13:12:37 -0600
Francois-Xavier Joos wrote in message <[EMAIL PROTECTED]>...
|I am working to install a red hat 5.2 linux box in a "full windows"
|network with nt servers. Linux get an ip address with dhcpcd but the
|computer name is not mapped to its ip address in wins: I can access
|linux box only with its ip address but not with its name...
|If I put, by hand, name and ip address in wins, it works fine but my
|network admin doesn't want to make a static map in wins saying it should
|be automated...
He is right, as your IP address may change. That is the nature of
DHCP...
|I am sure this has been resolved by someone, please help... What do I
|have to do in linux conf ?
|If I want to use Samba, must I have my name problem resolved before or
|can I use Samba with ip adresses ?
Actually, you have it the other way around. Samba will solve your WINS
problem. Samba can join the Domain, and hit WINS, so when you bring up
Samba, it will register your name. Remember to set password encryption if
you are running with late NT servers and Win 98.
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. *
Black holes are where God divided by zero. - I am speaking as an individual,
not as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: gfc2206 Netsurf ethernet card problems
Date: Thu, 25 Mar 1999 17:22:31 GMT
On Thu, 25 Mar 1999 17:03:52 GMT, [EMAIL PROTECTED] wrote:
>Hi,
>
> I am trying to use a Netsurf GFC2206 fast pci ethernet card with
>redhat 5.2 and have had no luck...... I have used ne2000 pci<drivers>, ne2000
><drivers>
>with no luck.,.,. i cannot see anything with ifconfig except
>loopback. any ideas and has anyone used this card with success???
>
>billz
>
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
