Linux-Networking Digest #955, Volume #10 Sat, 24 Apr 99 15:13:32 EDT
Contents:
Re: Network unreachable, cable modem, 2 NICs (Dustin Puryear)
Re: Samba vs. NFS (Dustin Puryear)
SAMBA seems slow....any cure?? ("Alvin")
Re: trouble between inter and intranet connection (Pekka Savola)
Re: Networking errors with Kernel 2.2.6 (Pekka Savola)
Re: MultiLink Linux? (Clifford Kite)
Re: Newbie Question on pppd ([EMAIL PROTECTED])
Routing Problem ("Alexander Samad")
Re: Netscape and internet (Jim Roberts)
Re: FTP: Make Directory problem ([EMAIL PROTECTED])
Re: Routing Problem (Pekka Savola)
Network card problem (Doug Bryant)
Re: ipfwadmmm question ("Grant Lowe")
Help required with IPFWADM (Marcelo Iturbe)
Crash during network traffic (Ronald Hovens)
Re: Networking errors with Kernel 2.2.6 (Pekka Savola)
Can the default message of telnet be modified? (kjei)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Dustin Puryear)
Subject: Re: Network unreachable, cable modem, 2 NICs
Date: Sat, 24 Apr 1999 08:52:10 -0500
Reply-To: [EMAIL PROTECTED]
On Sat, 24 Apr 1999 02:16:37 GMT, [EMAIL PROTECTED] wrote:
>My LinuxBox can't find either the DNS-server (The Internet in general), nor my
>LAN. That kinda like was my point when I threw up this LinuxBox. I wanna make
>my LAN access the Internet.
Make sure you setup your Linux networking correctly:
/sbin/ifconfig eth0 up 192.168.1.1 netmask 255.255.255.0 broadcast \
192.168.1.0
/sbin/route add -net 192.168.1.0 dev eth0
After that you will need to let your other computers know that 192.168.1.1 is
a gateway. Also, you will need to add your ISP's DNS to your /etc/resolv.conf
and to the DNS entries in the window's machines.
--
Dustin Puryear
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (Dustin Puryear)
Subject: Re: Samba vs. NFS
Date: Sat, 24 Apr 1999 08:54:38 -0500
Reply-To: [EMAIL PROTECTED]
On Fri, 23 Apr 1999 17:38:08 -0700, Luca Filipozzi wrote:
>In article <[EMAIL PROTECTED]>, [EMAIL PROTECTED] says...
>>
>> I have heard some horror stories about NFS. Is it safer and faster to just
>> use Samba if I want to mount a filesystem from another machine?
>>
>>
>Use NFS in unix to unix filesystem mounting. Security is a concern, but
>properly configured inetd.conf files and ipchains/ipfwadm rules will take
>care of most of those.
>
>Use Samba in unix / windows sharing of filesystems.
Hmm.. the reason I ask is that I have read that Samba is pretty efficient and
can be setup to be quite secure. If that is the case, what are the arguments
_against_ using it for general purpose remote filesystem mounting?
--
Dustin Puryear
[EMAIL PROTECTED]
------------------------------
From: "Alvin" <[EMAIL PROTECTED]>
Subject: SAMBA seems slow....any cure??
Date: Sat, 24 Apr 1999 23:10:45 +0800
Hi,
My samba seems to be very slow, is there any cure for it??
Thanks...
------------------------------
From: [EMAIL PROTECTED] (Pekka Savola)
Subject: Re: trouble between inter and intranet connection
Date: Sat, 24 Apr 1999 15:45:32 GMT
>I always used the utility pppsetup to set up my internet connections.
>Then I installed a little net: netaddr 192.168.1.0 bcast 192.168.1.255
>server 192.168.1.1 host 192.168.1.2 (i wrote that these addresses are
>reserved for private use). Since then, when I try to connect to
>internet, I get the line, but I can't reach any internet site (my
>browswer stops on "looking up host....."
I take it you're trying to get on the net from host (192.168.1.2)? You
need IP forwarding and masquerading for this.
Does it work from the server? It should, if it's configured properly.
I recommend your read IP-Masquerade howto, but to summarize, you have
to:
- compile the kernel with some IP forwarding/masquerading options
enabled
-.enable forwarding in /proc/net/ipv4/ip_forward (Redhat:
/etc/sysconfig/network)
- configure an ipchains/ipfwadm firewall for system security and
input/output/forwarding rules
- add 192.168.1.1 as default gateway on all host machines.
Pekka Savola pekkas at netcore dot fi
---
Across the nations the stories spread like spiderweb laid upon spiderweb,
and men and women planned the future, believing they knew truth. They
planned, and the Pattern absorbed their plans, weaving toward the future
foretold. -- Robert Jordan: The Path of Daggers
------------------------------
From: [EMAIL PROTECTED] (Pekka Savola)
Subject: Re: Networking errors with Kernel 2.2.6
Date: Sat, 24 Apr 1999 15:49:33 GMT
>Since the installation of the 2.2.6 kernel several services fail to
>work. While initialising (running the init files in /sbin/init.d) three
>services fail, namely route, rpc, and nfsserver. I get the following
>error messages:
>
>Do you guys have any ideas?
Didn�t you read the documentation that came with 2.2 kernel? You
need to upgrade (possibly) dozens of pieces of software so that
nothing will break. It looks very likely you have too old versions of
nettools, nfs etc.
Check /usr/src/linux/Documentation/Changes.
Pekka Savola pekkas at netcore dot fi
---
Across the nations the stories spread like spiderweb laid upon spiderweb,
and men and women planned the future, believing they knew truth. They
planned, and the Pattern absorbed their plans, weaving toward the future
foretold. -- Robert Jordan: The Path of Daggers
------------------------------
From: kite@NoSpam.%�inetport.com (Clifford Kite)
Subject: Re: MultiLink Linux?
Date: 24 Apr 1999 10:57:42 -0500
Philip ([EMAIL PROTECTED]) wrote:
: Does any one know how to set-up linux to use multilinking?
http://linux-mp.terz.de
--
Clifford Kite <kite@inet%�port.com> Not a guru. (tm)
/* The signal-to-noise ratio is too low in many [news] groups to make
* them good candidates for archiving.
* --- Mike Moraes, Answers to FAQs about Usenet */
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Newbie Question on pppd
Date: Sat, 24 Apr 1999 14:58:04 GMT
Are you using pap-secrets or chap-secrets? You might have to.
My ISP doesn't so I don't need to... but I tried with a freinds ISP and they
used PAP, and the conneciton hung on me after trying to verify the password.
(My firends ISP was sprint)
-Gut
In article <[EMAIL PROTECTED]>,
Kristof Berger <[EMAIL PROTECTED]> wrote:
> Hi!
>
> I got my Linux to connect to my ISP. But after some seconds pppd dies.
> Why that?
> Any answer would be fine.
> Thanx in advance.
>
> Kristof
>
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Alexander Samad" <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.setup,linux.redhat,linux.redhat.install,linux.redhat.misc,uk.comp.os.linux
Subject: Routing Problem
Date: Sat, 24 Apr 1999 17:59:36 +0100
Hi
I have a problem with my linux box, I am trying to set it to do my main
routing for me
if is attached to 4 network cards
eth0 - 192.168.10.0
eth1 - 192.168.11.0
eth2 - 172.16.1.0 (net mask 255.255.255.0)
eth3 - 195.153.38.144 (net mask 255.255.255.240)
default gw - 195.153.38.145
from my machine on the 192.168.10.0 network it routes to 192.168.11.0 and
through 195.153.38.144 okay. But when I try and ping an address (172.16.1.8)
it failes, tries and sends it through the default gateway. I have even tried
a static route for a host, but this doesn't work.
I can ping the linux box from the 172.16.1.8 box and it reply's no problem.
when i try a traceroute from that machine it uses the wrong interface
Anybody have any ideas ?
Redhat 5.2 2.0.36
net-tools-1.33-7
AlexS
Ps Please mail me as well thanxs again
=======
Routing table
=======
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
127.0.0.1 0.0.0.0 255.255.255.255 UH 0 0 1198 lo
195.153.38.144 0.0.0.0 255.255.255.240 U 0 0 2035 eth3
192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 6547 eth0
192.168.11.0 0.0.0.0 255.255.255.0 U 0 0 250 eth1
172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 13 eth2
127.0.0.0 - 255.0.0.0 ! 0 - 0 -
0.0.0.0 195.153.38.145 0.0.0.0 UG 0 0 525 eth3
--
Alex Samad
Pareto Partners
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (Jim Roberts)
Subject: Re: Netscape and internet
Date: Sat, 24 Apr 1999 17:45:28 GMT
SNIP
> this means that some or all hosts will be unreachable.
> perhaps ther is a problem with your name server?
> if you site must use a non-root name server, you will need to set the
> $socks_ns environment variable to point at the apporpriate name server. it
> may (or may not ) be nesessary to set this variable, or the socks host
> preference, to the ip address of the host in question rather than its name.
>
> this is my nework information on the linux box
>
> Names
> Hostnames: eaglecom.net
> Domain: eaglecom.net
> Search for hostnames in additonal domains:
> Nothing
> Nameservers: 216.96.32.1
>
> Hosts
> IP Name Nicknames
> 127.0.0.1 localhost localhost.localdomain
> 216.96.32.XX .eaglecom.net cvonlintel
> Interfaces
> Interface IP proto atboot
> active
> lo 127.0.0.1 none yes
> active
> eth0 216.96.32.XX none yes
> active
>
> Routing
> Network Packet Forwarding (IPv4)
> Default Gateway: 216.96.32.1
> Default Gateway Device: eth0
> interface network address netmask
> gateway
> nothing in these intries
>
> win98 machine
>
> IP address: 216.96.32.XX
> Subnet Mask: 255.255.255.0
>
> WINS Configuration: Disabled
>
> Gateway: 216.96.32.1
>
> DNS Configuration
> Enabled
> Host : cvonlintel Domain: eaglecom.net
> SNS Server Search Order
> 207.1.165.3
> 207.182.160.2
>
> any help would be appreciated
>
> thanks
>
You have your hostname listed wrong. 'CVONLINTEL' is the hostname
and eaglecom.net is the domain name. In search other doamins it
would help to list the 207. addresses that are listed in the
config for the WIN BOX. This is correct on the WIN
box but not the linux box.
--
Jim Roberts Never enough time!
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: FTP: Make Directory problem
Date: 24 Apr 99 17:35:40 GMT
Many ftp daemons only pick up on the primary group listed in the
password file, not on the secondary groups listed in the /etc/group
file. You might also have restrictions in your ftp server configuration
files that forbid mkdir commands.
In article <[EMAIL PROTECTED]>, Jason McKnight wrote:
>I have an FTP server running (default that comes with Red Hat 5.2) and
>it works great except for creating directories at a certain depth.
>
>i.e. I have a directory called graphics in which I can create
>directories all day long. But I need to create them based on customer
>name like this:
>
>/graphics/MyCustomerName/Surveys/0001
>^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>This much already exists so I cd to there
>/graphics/MyCustomername/Surveys
>
>and try to make the directory via FTP but I get an access denied message
>
>I have samba running on this server too and I can actually create the
>desired directory manually, but I need to be able to do it remotely by
>FTP too.
>
> I am using the same user name and login for both local and remote
>access and the graphics directory is owned by the graphics group (not
>sure I have right term here).
------------------------------
From: [EMAIL PROTECTED] (Pekka Savola)
Crossposted-To:
comp.os.linux.setup,linux.redhat,linux.redhat.install,linux.redhat.misc,uk.comp.os.linux
Subject: Re: Routing Problem
Date: Sat, 24 Apr 1999 18:00:52 GMT
It'd help a lot if you pasted your ifconfig and 'route -n' information
here.
Also, I'd consider upgrading net-tools to see if that helps.. You have
to do that anyway before you move to 2.2 kernels.
>I have a problem with my linux box, I am trying to set it to do my main
>routing for me
>
>if is attached to 4 network cards
>eth0 - 192.168.10.0
>eth1 - 192.168.11.0
>eth2 - 172.16.1.0 (net mask 255.255.255.0)
>eth3 - 195.153.38.144 (net mask 255.255.255.240)
>
>default gw - 195.153.38.145
>
>from my machine on the 192.168.10.0 network it routes to 192.168.11.0 and
>through 195.153.38.144 okay. But when I try and ping an address (172.16.1.8)
>it failes, tries and sends it through the default gateway. I have even tried
>a static route for a host, but this doesn't work.
>
>I can ping the linux box from the 172.16.1.8 box and it reply's no problem.
>
>when i try a traceroute from that machine it uses the wrong interface
>
>Anybody have any ideas ?
>
>Redhat 5.2 2.0.36
>net-tools-1.33-7
>
>
>
>
>AlexS
>Ps Please mail me as well thanxs again
>
>=======
>Routing table
>=======
>Kernel IP routing table
>Destination Gateway Genmask Flags Metric Ref Use
>Iface
>127.0.0.1 0.0.0.0 255.255.255.255 UH 0 0 1198 lo
>195.153.38.144 0.0.0.0 255.255.255.240 U 0 0 2035 eth3
>192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 6547 eth0
>192.168.11.0 0.0.0.0 255.255.255.0 U 0 0 250 eth1
>172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 13 eth2
>127.0.0.0 - 255.0.0.0 ! 0 - 0 -
>0.0.0.0 195.153.38.145 0.0.0.0 UG 0 0 525 eth3
Pekka Savola pekkas at netcore dot fi
---
Across the nations the stories spread like spiderweb laid upon spiderweb,
and men and women planned the future, believing they knew truth. They
planned, and the Pattern absorbed their plans, weaving toward the future
foretold. -- Robert Jordan: The Path of Daggers
------------------------------
From: Doug Bryant <[EMAIL PROTECTED]>
Subject: Network card problem
Date: Sat, 24 Apr 1999 13:07:18 -0400
I just installed Debian 2.1 on a computer and am having problems with
the network card.
The card is a Linksys 10/100. I had it running previously on redhat 5.1
and 5.2 using the tulip.c driver. It worked great there.
All of the network settings are correct, I believe. What the card is
doing is not keeping connected to the hub.
The hub is right under my desk. When the computer is booting up, the
light representing the new debian box stays lit until it tries to go
into "Half duplex" mode upon boot. Then the light flashes on and off (
about 2 seconds on and 2 seconds off ). I can not ping the other
computer on the network.
in the /var/log/messages i get a recurring message about every 2
seconds saying "...eth0: Changing PNIC configuration to half-duplex,
CSR6 01860000"
then the next message is always the same but with "CSR6 00420000"
I think trying to change the card into Half-duplex is causing all of the
problems.
Could someone please point me in to the right direction to fix this
problem.
I am really anxious to get debian fully functioning.
Oh yhea, the hub is a linksys also, 4 port.
And... if anyone could also tell me what the catch is to the mouse. I
remember on Slackware I had to remove a -R in the gpm configuration to
get the mouse working. Is there anything like that that I have to do to
get the mouse working on Debian. I looked through the gpm.conf and ran
gpmconfig but have not had any success.
Thanks very much for any help. I really appreciate it.
Doug
------------------------------
From: "Grant Lowe" <[EMAIL PROTECTED]>
Subject: Re: ipfwadmmm question
Date: Sat, 24 Apr 1999 11:11:16 -0700
Hi Phil.
I thought that kernel 2.0.30 has IP Masquerading built-in. Doesn't it? If
not, then which kernel version should I upgrade to? Thanks.
grant
Phil DeBecker <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Grant Lowe wrote:
> >
> > Hi Mark.
> >
> > Thanks for the reply. I'm using Red Hat 4.2, which has kernel 2.0.30.
Now
> > what?
> >
> > grant
> > Mark Cotherman <[EMAIL PROTECTED]> wrote in message
> > news:[EMAIL PROTECTED]...
> > > What kernel are you using?? If you are using 2.2.x, try using
ipchains.
> > >
> > > Mark
> > >
> > > Grant Lowe wrote:
> > >
> > > > Hi.
> > > >
> > > > I'm new to ipfwadm. Here's my question. I'm guessing on the linux
box
> > > > with ipfwadm you need to add a second ip address? That is, an ip
> > > > address different than the one supplied by the ISP. If not, then
just
> > > > the one supplied by the ISP? Also, when I try running
> > > > ipfwadm -F -a m -S 192.168.1.0/255.255.255.0 -D 0.0.0.0/0, I get the
> > > > following message:
> > > > ipfwadm: setsockopt failed: Invalid argument. What am I doing wrong?
> > > >
> > > > Thanks for any help.
> > > >
> > > > grant
> > >
>
> It sounds as if you haven't compiled IP Masq support into your kernel.
> You need to configure and build a kernel with that support built in.
> The ipfwadm commands won't work otherwise.
>
> Phil
------------------------------
From: Marcelo Iturbe <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,comp.os.linux.questions
Subject: Help required with IPFWADM
Date: Sat, 24 Apr 1999 13:43:46 -0400
Hello,
I am trying to replace the IP Masquerading setup on my Linux box with an
IP Filtering firewall because I need to have valid IP address on the
internal network. SO that I can play Netrek and people can "call" my
boss using his IP address.
I already got rid of ip masquerading and this is what I have so far of
my IP Filtering firewall.
It does not seem to protect the machines behind the firewall because I
can still
telnet to port 139 on the win95 machines from the internet.
Let's say that my network is 209.29.144.86, broadcast is 209.29.144.127
Netmask is
255.255.255.224 / 27
Network card to the internet from linux machine is 209.29.144.98, to
the INTRANET
from Linux machine is 209.29.144.99 and intranet server (NT) is
209.29.144.110
What I want done is that all requests going to the intranet
(209.29.144.100 -127) on ports
bellow 1024 get rejected except for the NT where only DNS (53), WEB(80)
and POP(110) ports are
open.
Here are the IPFWADM tables and resulting ouput:
After this are the results of the ipfwadm -I -l ipfwadm -O -l and
ipfwadm -F -l commands.
# By default DENY all services
ipfwadm -F -p deny
# Flush all commands
ipfwadm -F -f
ipfwadm -I -f
ipfwadm -O -f
# Forward email to your server
ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 209.29.144.98
25
ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 209.29.144.110
25
ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 209.29.144.110
110
# Forward email connections to outside email servers
ipfwadm -F -a accept -b -P tcp -S 209.29.144.98 25 -D 0.0.0.0/0
1024:65535
ipfwadm -F -a accept -b -P tcp -S 209.29.144.110 25 -D 0.0.0.0/0
1024:65535
# Forward Web connections to your Web Server
ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 209.29.144.98
80
ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 209.29.144.110
80
echo "so far so good"
# Forward Web connections to outside Web Server
ipfwadm -F -a accept -b -P tcp -S 209.29.144.* 80 -D 0.0.0.0/0
1024:65535
echo "so far so good"
# Forward DNS traffic
ipfwadm -F -a accept -b -P udp -S 0.0.0.0/0 53 -D 209.29.144.96/27
digit:/etc/rc.d# ipfwadm -I -l
IP firewall input rules, default policy: accept
digit:/etc/rc.d# ipfwadm -O -l
IP firewall output rules, default policy: accept
digit:/etc/rc.d# ipfwadm -F -l
IP firewall forward rules, default policy: deny
type prot source destination ports
acc tcp anywhere digit.cl 1024:65535 -> smtp
acc tcp anywhere 209.29.144.110 1024:65535 -> smtp
acc tcp anywhere 209.29.144.110 1024:65535 -> pop3
acc tcp digit.cl anywhere smtp -> 1024:65535
acc tcp 209.29.144.110 anywhere smtp -> 1024:65535
acc tcp anywhere digit.cl 1024:65535 -> www
acc tcp anywhere 209.29.144.110 1024:65535 -> www
acc udp anywhere localnet/27 53 -> any
------------------------------
From: Ronald Hovens <[EMAIL PROTECTED]>
Subject: Crash during network traffic
Date: Sat, 24 Apr 1999 20:45:22 +0200
Donald,
I have an AMD i486DX4-100 Mhz Linux (redhat 5.2, kernel 2.0.36) server
with a 3C905B Cyclone (your driver 3c59x.c:v0.99H 11/17/98) and a Win 98
laptop with a Xircom 100 Mbps pcmcia card. When I transfer a lot of data
from one to another (doesn't matter which direction), my linux machine
freezes, I cannot do anything anymore. I get a whole screen filled with
error messages:
eth0: Host error, FIFO diagnostic register 0000.
eth0: Host error, FIFO diagnostic register 8800.
eth0: Host error, FIFO diagnostic register 8000. (this line appears 19
times)
eth0: Too much work in interrupt, status 8003.
Temporarily disabling functions (7ffc)
Putting the 3c905 in another PCI slot didn't help. When I use the
original RedHat driver, the error also occurs (I use your driver because
this enables the 100 MBps speed). I read something on the internet that
by using the 3c905 in promiscous mode, every ethernet frame on the wire
invokes IRQ. But since this is beyond my knowledge, I am writing you.
Do you know what causes the lockup? Can I do something about it?
Many thanks in advance, Ronald Hovens
------------------------------
From: [EMAIL PROTECTED] (Pekka Savola)
Subject: Re: Networking errors with Kernel 2.2.6
Date: Sat, 24 Apr 1999 17:57:12 GMT
>Thanks for letting me know about that. I actually forgot to upgrade some
>programmes but nonetheless the services are still *not* working.
>Do you have any other ideas?
Do they give exactly same error messages? Have some programs started
working, while others still don't work?
ifconfig stuff changed a bit in 2.2 - sometimes (I don't know the
exact requirements) it gives that SIOCADDRT error if you specify
netmask of broadcast with it. Try leaving them off.
Pekka Savola pekkas at netcore dot fi
---
Across the nations the stories spread like spiderweb laid upon spiderweb,
and men and women planned the future, believing they knew truth. They
planned, and the Pattern absorbed their plans, weaving toward the future
foretold. -- Robert Jordan: The Path of Daggers
------------------------------
From: kjei <[EMAIL PROTECTED]>
Subject: Can the default message of telnet be modified?
Date: Sun, 25 Apr 1999 02:50:02 +0800
Reply-To: [EMAIL PROTECTED]
When we telnet to Linux, the following screen shows:
+--------------------------------------------------------+
Red Hat Linux release 5.2 (Apollo)
Kernel 2.0.36 on an i586
+--------------------------------------------------------+
Did anyone know how can I replace that message to my faviour one or
disable that message?
Thanks.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
